Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
File: bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft (raw, json)
Hash identifier: YmEB2QemOdnJxFCBSLstkEa8ibbB1kLdVGY7gySw1/U=
Subject key identifier: C9:28:0A:5F:A3:53:01:4C:DB:FA:6A:06:8D:31:1E:E1:D3:5A:C0:31
Authority key identifier: 6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68
Certificate issuer: /CN=6ce3fb867861daafd781279897fe25a8eb371468
Certificate serial: 019D26CCF170A9D2B012150810D766FA81AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
Manifest number: 04DA
Signing time: Wed 25 Mar 2026 21:00:58 +0000
Manifest this update: Wed 25 Mar 2026 21:00:58 +0000
Manifest next update: Thu 26 Mar 2026 21:00:58 +0000
Files and hashes: 1: 9r8kEPo4Ro8lOBvQIbJAndcJdE4.roa (hash: 2P9k8xWZyyhAgwgcrLsXCdtwf5v3K304PlZNuStdbuA=)
2: bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl (hash: og+9zYG1jzmU/+1tzel4UnDkNIpVwIxwpPzqA9/dGg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:f1:70:a9:d2:b0:12:15:08:10:d7:66:fa:81:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce3fb867861daafd781279897fe25a8eb371468
Validity
Not Before: Mar 25 21:00:58 2026 GMT
Not After : Mar 26 21:00:58 2026 GMT
Subject: CN=c9280a5fa353014cdbfa6a068d311ee1d35ac031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:f0:36:b1:6d:55:34:e3:07:5c:29:1b:6e:e4:
5d:11:d4:b5:cc:a8:b4:86:42:0b:98:7d:1b:31:1a:
02:96:22:47:77:63:d9:fb:fa:51:94:58:60:36:21:
cc:62:35:94:81:da:97:57:d6:e3:35:d0:e0:4a:9e:
ff:03:c0:ff:c3:32:81:02:64:c5:62:1b:64:2f:6a:
7f:b6:1a:a5:23:54:ee:7f:09:5e:d1:29:3d:7f:01:
22:e4:b4:dc:ba:b7:0a:a2:8c:64:5c:7f:d9:34:fa:
60:b8:22:13:f8:5a:0d:26:2b:cf:34:27:06:64:40:
f6:d9:a3:88:ca:ea:bb:ee:00:3a:d4:78:30:24:66:
ff:ff:a8:50:c9:f6:72:23:52:65:a1:08:c8:ff:1d:
27:bf:f5:fe:a8:ab:4f:54:eb:66:2e:42:a1:91:53:
f2:5e:72:a7:e1:48:0f:3d:cd:29:15:4e:b6:87:28:
98:fa:05:b1:08:6c:06:3a:a4:a9:c3:df:b5:84:2a:
b7:3a:9f:fe:57:a0:42:6e:0b:b4:6b:7f:c4:1c:e7:
43:e7:31:4f:83:39:9d:0a:fb:4d:86:e7:72:3a:cc:
78:07:7e:58:7c:82:5f:d1:22:d1:49:b9:8d:d3:90:
b1:8b:ab:4b:a2:c3:12:c9:cf:97:45:96:0f:4b:f6:
93:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:28:0A:5F:A3:53:01:4C:DB:FA:6A:06:8D:31:1E:E1:D3:5A:C0:31
X509v3 Authority Key Identifier:
keyid:6C:E3:FB:86:78:61:DA:AF:D7:81:27:98:97:FE:25:A8:EB:37:14:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOP7hnhh2q_XgSeYl_4lqOs3FGg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/c3f995-86ef-4a67-acac-e4391fbcaf14/1/bOP7hnhh2q_XgSeYl_4lqOs3FGg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:5e:74:76:34:a0:11:ef:32:04:e0:0b:ca:94:41:12:12:8c:
92:87:95:1e:ef:88:37:01:02:ab:35:f9:16:7a:10:08:1a:02:
a9:c0:3f:85:40:85:05:4e:f1:ee:2c:98:3b:40:51:97:e5:9b:
2a:1e:ef:b5:a8:ac:87:5f:09:47:5c:7f:87:a7:c4:2d:f5:a8:
b2:3b:9d:60:f4:f4:d8:e0:53:43:87:45:43:0d:42:fa:e2:09:
c5:5c:9d:74:8e:7f:29:db:44:16:25:cd:72:d4:66:8e:a3:fc:
b7:d2:8d:1c:25:ee:ee:45:29:42:ac:51:a0:81:f7:2a:d5:cf:
cc:a8:4f:d9:39:f1:b1:da:c1:cf:a9:e6:63:f4:2f:9b:0d:4f:
85:a1:ba:28:43:0a:1c:1e:6d:98:ad:f8:00:e5:9c:47:03:a8:
34:81:f9:1f:92:1f:88:9b:88:2a:d4:43:4f:8c:8f:00:70:3d:
44:cb:05:ed:e5:8d:e7:5d:f1:d1:dd:a5:a1:51:c3:63:f1:0c:
d9:03:57:7b:d0:e1:e7:53:82:16:07:1b:a5:2a:3c:5c:74:45:
4b:63:9c:03:dd:7a:7f:6d:7f:d9:4e:29:fe:f0:67:b1:e1:ec:
51:ca:13:6a:7d:63:2f:eb:df:ec:47:18:be:3a:68:03:6c:8b:
e8:0d:1c:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:05:26 2026 by rpki-client