Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: 7tckOYcuavwZLNiDoywKanI2F+WFD+KgGsQO3gLziTE=
Subject key identifier: D8:EE:7C:08:F8:C8:35:A9:95:19:52:96:E5:25:3B:FB:A5:9A:C7:66
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 019E1DFDE262690D5B1E9B722CC02C4CAB61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 167C
Signing time: Tue 12 May 2026 21:00:38 +0000
Manifest this update: Tue 12 May 2026 21:00:38 +0000
Manifest next update: Wed 13 May 2026 21:00:38 +0000
Files and hashes: 1: 1-2P8OWE-nT9yglepyYQAlaB5NfE.roa (hash: hXJitTuZsInHr+UtjyUxAZf5csxkpDvw7CF/W7Cve9U=)
2: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: oMSPZUbyf3OdPc6396pZgcG4CgY2lkV0Nf3j0Snjk1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fd:e2:62:69:0d:5b:1e:9b:72:2c:c0:2c:4c:ab:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: May 12 21:00:38 2026 GMT
Not After : May 13 21:00:38 2026 GMT
Subject: CN=d8ee7c08f8c835a995195296e5253bfba59ac766
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:9b:21:d0:7b:d7:a1:81:af:a4:6f:ea:c3:d8:
7b:5f:19:cf:05:90:8d:de:49:27:a8:3f:dc:18:39:
5a:57:cb:a3:64:c1:9a:b6:32:9b:62:02:3f:28:33:
be:f2:c6:d0:c6:21:a5:e5:8d:59:47:9a:1f:27:34:
72:ac:6c:b4:a8:9c:62:b2:fd:25:cf:79:09:6f:2e:
10:d1:38:73:a8:a9:43:b9:9d:9d:8e:29:ce:6e:5f:
d1:49:fb:3b:b3:e9:13:ed:b5:fb:ed:0a:67:d0:ff:
b1:1b:c7:d3:72:dd:7d:99:82:43:08:6d:bd:bf:17:
bc:6f:04:a0:20:34:db:84:a1:d0:0c:d3:c2:bb:91:
9a:a1:93:1f:62:75:4c:1b:fb:39:56:44:5e:55:87:
cb:21:9f:bb:84:05:60:9e:fd:16:cb:c5:c1:61:74:
ea:3a:52:97:b7:99:d0:a4:32:db:96:98:f0:ea:d8:
7b:02:88:ca:7f:29:6f:39:5d:54:ed:33:5a:51:45:
14:48:7c:77:7e:30:65:88:bf:8d:b9:f7:5f:9e:9f:
97:a7:a1:9b:6c:ff:26:87:b8:ce:31:6c:f9:bc:16:
26:a5:f0:68:7c:7d:6c:e8:72:09:1a:b9:67:0d:9e:
73:ed:83:6c:17:7e:06:ef:3a:12:ad:a4:c9:e1:31:
ee:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:EE:7C:08:F8:C8:35:A9:95:19:52:96:E5:25:3B:FB:A5:9A:C7:66
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:5a:d3:db:25:20:ff:07:dd:cb:37:16:f1:aa:e0:c4:36:21:
33:87:3e:ab:45:74:97:33:28:d2:91:26:fc:f7:a2:62:8b:fc:
2c:ac:fb:0f:66:b5:d2:31:0b:f7:6f:80:52:8e:8e:0a:2e:e3:
1e:df:62:e7:5e:d6:bd:12:53:01:4a:71:a4:24:2f:4e:8f:89:
f4:05:b9:15:39:b1:a2:07:f0:f2:fa:bb:3d:62:6b:32:70:2c:
6a:f0:b8:12:55:74:a1:75:63:74:31:e8:85:ca:1f:61:41:65:
32:03:a4:02:08:c9:b1:20:58:c5:6c:ca:6b:69:24:93:c9:0c:
f0:17:cf:9c:71:cc:88:5d:73:c6:73:b2:45:68:8c:6d:8e:a5:
f8:06:8b:34:4a:4c:e7:7d:db:5d:cf:12:2a:23:14:83:7b:b7:
ab:b3:e6:36:15:0b:ac:0e:cb:bc:e1:f4:66:97:0e:e3:d4:ad:
1d:39:d9:83:5f:bb:f7:4c:64:5d:68:29:76:3c:1c:f5:91:03:
e3:c9:ef:84:52:f0:12:81:36:44:a1:b0:89:c3:e5:1e:8b:4c:
b7:b0:da:2e:76:02:e5:5b:3e:2a:e2:e2:2d:21:fc:e2:c7:4f:
38:0d:9b:81:2b:3b:44:25:a1:43:ac:62:f7:3f:7d:ce:22:05:
b1:05:39:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:22:12 2026 by rpki-client