Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json)
Hash identifier: K47TZIhhNlGaEIb5DVANO0ssfPKDqtYoBHWJiPugDmI=
Subject key identifier: 2C:0D:79:8D:9D:01:26:C3:94:46:C9:25:D2:20:D0:44:46:2B:ED:34
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 019D292952D2E7F1615BCBC18E5AD000BCA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
Manifest number: 1088
Signing time: Thu 26 Mar 2026 08:01:07 +0000
Manifest this update: Thu 26 Mar 2026 08:01:07 +0000
Manifest next update: Fri 27 Mar 2026 08:01:07 +0000
Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: raYfvz/T89ed+y8RBYX2nNXDBL7MxX94L527uwCC/Zc=)
2: BBKAblizkGIJV_f06RIh70XLtr0.roa (hash: EDuWd1ayZXpmIRskDvDc511OzhDthWRGsbu0u3My31o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:52:d2:e7:f1:61:5b:cb:c1:8e:5a:d0:00:bc:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: Mar 26 08:01:07 2026 GMT
Not After : Mar 27 08:01:07 2026 GMT
Subject: CN=2c0d798d9d0126c39446c925d220d044462bed34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:12:6f:17:cf:66:03:0a:b2:cd:4e:dc:6a:f6:
ba:9c:25:e4:50:12:d0:72:a1:e9:e4:64:92:64:fc:
29:7c:1f:e4:e6:5a:4f:fe:4c:e9:a6:11:bf:b9:b0:
33:96:b0:5f:f6:15:b7:0d:ee:cb:4a:8d:de:bb:bf:
13:bb:4d:6a:17:80:79:61:13:54:42:f4:90:6d:5b:
0e:f1:50:43:bf:9c:4a:fd:52:46:c8:c1:7f:3c:76:
d7:df:26:c9:96:0e:97:5d:10:b1:91:07:a2:46:66:
ea:d9:b2:b6:54:9a:7d:76:c6:7a:2e:1d:61:2e:f3:
a7:3a:18:5e:c0:2b:e2:32:fc:4f:6d:e6:1f:b8:40:
a6:fb:93:65:c9:f2:50:ac:2a:f2:b2:a2:44:25:da:
30:a2:02:53:41:38:64:ce:2d:a9:35:ee:02:f1:8a:
71:c5:1b:49:01:70:d9:c4:c5:8e:c1:21:41:0f:b5:
d7:16:c0:19:34:ac:8a:d5:46:79:b8:f2:b4:49:e8:
8d:a2:a2:36:3b:e0:ef:0a:64:fe:29:73:6a:ea:c3:
37:e3:72:83:b3:c5:64:32:05:9a:23:94:f5:27:10:
c2:48:ee:af:4d:0e:f2:6b:3a:f5:5d:57:46:38:fa:
df:7c:f0:04:45:c1:8b:5c:a5:2f:60:30:21:f2:92:
8e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:0D:79:8D:9D:01:26:C3:94:46:C9:25:D2:20:D0:44:46:2B:ED:34
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:51:ff:aa:9d:53:7f:15:ff:d5:0c:ea:a8:3b:05:af:b6:08:
ed:41:d6:5e:dd:29:13:12:5a:40:08:7a:f5:d3:f3:87:0f:05:
f0:db:3a:e7:3f:67:38:22:12:6b:6d:66:15:b7:a3:d9:b2:72:
92:d3:7d:61:90:b9:77:35:aa:3b:e3:82:37:38:eb:67:0f:86:
57:b5:f3:4e:71:ba:60:34:71:77:4f:1c:de:13:62:20:98:a4:
5b:c3:26:ed:f9:fe:98:9d:9b:76:27:b2:35:81:22:14:26:fa:
f1:6b:6b:03:b7:26:c5:a3:74:64:cf:7f:cc:98:26:a9:81:1e:
37:26:00:98:6f:77:f1:0d:a9:13:5d:0b:9b:0a:62:70:76:66:
3b:01:1f:a5:a7:97:0c:80:9f:bd:71:a2:21:e6:67:9b:ba:fe:
75:ec:75:ed:de:78:86:aa:b7:a5:4c:16:c1:9a:35:ef:4c:58:
32:62:0a:ed:6d:a5:64:24:e2:a8:b4:b2:8b:42:39:77:65:d3:
fb:ea:b3:6d:4f:d7:6e:4e:5d:6a:22:59:1d:40:d0:82:3b:62:
98:da:35:c0:9b:48:a1:e3:43:f3:36:a3:3b:7d:c8:63:a5:b4:
35:a2:20:06:42:f9:f9:85:32:cc:52:91:0e:34:d5:d5:e2:2a:
d1:43:ef:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:50:02 2026 by rpki-client