Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: bDSZ+/LASTF5aLI3pFNHCqGEsRUSztfsv/8yDVtirM0=
Subject key identifier: 23:54:4C:9E:C6:E6:91:D7:52:DC:12:B8:11:84:A3:DE:42:50:18:03
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 019D27DFCB3A0551D9EFE20F293AD771E061
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 0B0E
Signing time: Thu 26 Mar 2026 02:01:11 +0000
Manifest this update: Thu 26 Mar 2026 02:01:11 +0000
Manifest next update: Fri 27 Mar 2026 02:01:11 +0000
Files and hashes: 1: BbwIiJ0dE-v7C232paq9FAoO3W4.roa (hash: WYFi/4LJa1Z0T8GMuSQAQGpR48GKoJ2nZUJN8YeKMtE=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: TSUMCQu/amTwjME13R+lVxUgpVhlpeFI8mp33nTD5rk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:cb:3a:05:51:d9:ef:e2:0f:29:3a:d7:71:e0:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Mar 26 02:01:11 2026 GMT
Not After : Mar 27 02:01:11 2026 GMT
Subject: CN=23544c9ec6e691d752dc12b81184a3de42501803
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f1:b6:34:52:51:41:fb:f2:b9:a6:16:a8:35:
cf:79:00:78:68:89:84:3b:13:d4:8a:eb:a6:ec:48:
5d:93:f0:ef:5c:88:78:38:26:c0:8f:6b:9e:d3:e8:
d1:b1:1a:37:cf:44:85:50:b2:83:25:27:d1:62:b0:
68:3d:2c:20:96:bd:67:50:5a:e6:b2:c2:8b:af:2a:
a5:43:27:c9:8b:d1:7a:a3:98:23:ed:02:58:f9:15:
0b:c4:1c:6e:8f:37:8b:2f:fb:e6:0e:51:f6:ac:d4:
8d:4a:90:4a:bc:a0:36:c2:76:f6:c2:78:e5:fc:8a:
da:dc:63:28:27:1e:ad:6b:84:84:06:bc:88:29:79:
8f:0a:95:90:22:b3:e1:be:82:fd:98:d0:bb:ff:97:
23:20:79:33:7a:a1:6b:07:f0:0c:3f:2b:17:f8:84:
07:be:49:0d:a4:7f:f5:22:8c:a7:d4:47:9b:22:12:
96:1a:20:a4:9d:45:01:e4:45:94:b4:c8:62:60:f2:
ec:ab:d9:e1:95:59:3f:bd:c4:db:1f:ed:e7:31:36:
32:b6:7d:9c:c3:df:ae:96:0c:29:13:3d:b6:a5:39:
e8:26:98:c0:57:05:63:39:86:01:96:f7:07:af:0d:
9d:b1:fa:7a:ef:ad:d3:b6:24:c1:e4:42:2c:bc:c2:
64:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:54:4C:9E:C6:E6:91:D7:52:DC:12:B8:11:84:A3:DE:42:50:18:03
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:26:c7:17:e4:a0:7d:40:9e:7a:62:d8:a6:af:c2:ba:cc:59:
ba:d4:11:d2:cd:47:c3:eb:e1:c3:84:cd:cd:20:93:04:0f:25:
87:15:67:48:76:a8:36:d2:38:b0:25:7d:f7:43:6b:41:66:49:
02:62:0e:d5:01:32:00:ea:d4:18:73:6e:ef:6d:22:45:cc:f6:
70:c2:86:3f:9a:f7:fc:1d:ae:d6:16:d4:61:e5:83:70:be:15:
f6:da:eb:0b:ff:5e:72:d4:c1:44:a2:17:55:5b:59:d5:18:cc:
8c:e6:a6:09:03:4b:45:62:6b:d0:e9:3d:49:6d:69:48:2f:79:
8f:a2:60:b8:51:5f:aa:e6:62:54:63:63:1e:d1:64:bf:97:d5:
db:d2:52:c7:75:ec:dc:f5:b2:ef:90:51:89:db:e7:d9:88:1c:
66:9c:e3:90:56:35:da:e9:1a:52:d3:89:45:e5:8c:d5:52:05:
e6:13:82:ae:23:e2:46:a1:ca:71:e8:31:d8:39:57:34:f6:72:
f9:1c:4a:ee:cd:97:20:dc:77:79:2e:fd:de:1d:90:6e:93:9f:
84:b4:ba:67:9f:9b:1b:32:19:67:49:f0:51:7b:b0:73:b7:7a:
46:54:92:17:be:8b:a4:7b:00:0c:7d:1a:09:fb:dd:8f:46:de:
e5:b2:76:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:34:32 2026 by rpki-client