Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: GUk0ClDyIvoyJYGrXtMCdRG0cpdJ/t+9r+NnTch9Yeo=
Subject key identifier: 1E:88:01:F4:8C:53:24:ED:59:64:38:FF:92:FB:AE:C3:A5:A4:34:D6
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 019D28BB1A8CBCFCA40FFADC85101B99AD66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 15FD
Signing time: Thu 26 Mar 2026 06:00:43 +0000
Manifest this update: Thu 26 Mar 2026 06:00:43 +0000
Manifest next update: Fri 27 Mar 2026 06:00:43 +0000
Files and hashes: 1: 1-2P8OWE-nT9yglepyYQAlaB5NfE.roa (hash: hXJitTuZsInHr+UtjyUxAZf5csxkpDvw7CF/W7Cve9U=)
2: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: nXqrUwrXruPaY6VZYF67FVik/3pQZ37QxcHtAe9eh7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:1a:8c:bc:fc:a4:0f:fa:dc:85:10:1b:99:ad:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Mar 26 06:00:43 2026 GMT
Not After : Mar 27 06:00:43 2026 GMT
Subject: CN=1e8801f48c5324ed596438ff92fbaec3a5a434d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:97:3a:79:80:74:25:94:af:12:e3:78:32:4c:
46:c1:aa:c8:11:02:5e:f6:4e:ca:e0:e4:82:fd:c4:
30:ff:e7:33:69:be:da:83:fb:e6:e9:4e:1e:cb:d9:
ea:72:16:5a:fd:b1:45:f7:54:6a:5a:60:b3:e6:75:
91:ac:8a:f6:9a:8b:29:ff:16:1e:82:0c:93:b2:50:
8a:cf:3c:61:44:23:66:8a:8c:b2:9e:de:fe:25:9c:
37:e3:25:a5:d1:c0:96:93:82:d8:e7:0c:3a:98:f5:
87:b4:e9:44:03:9a:e1:4c:37:5c:67:4c:af:c6:11:
d0:91:bb:64:df:0e:87:85:5f:13:d4:c3:28:46:a7:
3a:bb:16:26:ad:74:1a:ba:ff:25:4c:64:ea:6f:38:
68:27:e0:0d:fd:33:17:e8:ce:3b:f8:e4:bd:43:9f:
06:a3:76:96:0f:d7:c1:b6:c2:b3:62:6c:ae:fa:ca:
74:12:f3:aa:ed:a1:3e:4f:8a:0f:ee:66:63:c3:eb:
bf:f0:f5:54:df:5c:b7:4b:20:9e:40:12:21:56:50:
7d:74:c0:35:93:55:3c:34:17:e7:5d:1c:c5:0e:73:
8d:44:1e:ee:ba:1e:c8:16:88:a0:00:f6:2c:4b:27:
56:cf:df:a8:56:e5:1e:56:77:86:ae:f3:7b:15:1d:
64:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:88:01:F4:8C:53:24:ED:59:64:38:FF:92:FB:AE:C3:A5:A4:34:D6
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:ed:84:82:56:6f:de:3d:89:d6:7f:fd:6f:a6:ca:b5:7d:20:
88:9a:98:e2:d6:2d:fc:bf:e9:93:48:c3:28:d4:58:49:bc:70:
a5:bd:f0:56:88:66:e3:75:84:17:bc:94:bb:51:79:18:75:d7:
1f:f5:ba:cb:a7:2b:8f:de:8d:f7:8a:f3:a6:11:f5:b6:a5:f4:
3b:39:62:3a:ba:a5:13:d7:4d:51:3b:79:d5:28:5e:08:ee:cb:
a8:71:50:b3:03:e9:7e:6d:7e:f7:50:55:b7:d9:ba:a7:6e:03:
eb:1d:d4:9a:9e:d9:71:5b:1f:91:45:ab:f4:7f:f5:89:64:19:
e5:3c:36:42:5f:1a:36:8d:ee:5e:aa:aa:03:50:2c:24:2a:51:
bb:c6:0e:d8:bc:82:99:9e:de:aa:03:6a:39:c5:df:7e:21:11:
cd:82:ec:ac:85:53:b2:61:be:ea:b9:6f:ab:16:43:f3:8c:69:
01:17:84:b1:0d:01:ad:68:c5:0c:a0:af:0d:37:f0:e4:3e:a2:
5d:de:a5:7f:31:e3:4f:08:29:37:77:8f:a8:ee:c0:c3:83:ef:
4b:ef:f8:c9:6b:f7:f4:3f:80:ed:8d:5e:15:a6:65:20:65:e0:
d4:98:33:36:40:bb:f7:0c:ba:6b:36:30:a0:89:ef:67:0f:00:
85:06:dd:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:25:05 2026 by rpki-client