Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json)
Hash identifier: CbQleBCANwpL5NzMIcREu7b3qJU/Wzmg/EIxdM6hgR0=
Subject key identifier: 07:9B:3C:B1:7A:6F:A9:91:36:A4:0F:26:3D:FA:0F:E7:B2:9D:25:ED
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 019E1E6C63683C8AED73CB69C7674787BD2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
Manifest number: 1107
Signing time: Tue 12 May 2026 23:01:20 +0000
Manifest this update: Tue 12 May 2026 23:01:20 +0000
Manifest next update: Wed 13 May 2026 23:01:20 +0000
Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: TioCoXrYyfRa+2ZzmYoJWC9PLTPkwsgAvhQtpQ48b10=)
2: BBKAblizkGIJV_f06RIh70XLtr0.roa (hash: EDuWd1ayZXpmIRskDvDc511OzhDthWRGsbu0u3My31o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:63:68:3c:8a:ed:73:cb:69:c7:67:47:87:bd:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: May 12 23:01:20 2026 GMT
Not After : May 13 23:01:20 2026 GMT
Subject: CN=079b3cb17a6fa99136a40f263dfa0fe7b29d25ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:15:6e:c0:19:ff:e9:ac:1e:a1:5f:cf:dd:4f:
8c:0a:44:84:8d:be:77:64:90:bf:14:2d:6e:f3:1d:
1e:77:52:08:c8:42:51:c8:b5:91:6d:2d:e8:89:8f:
86:13:b8:d2:6a:e2:88:86:28:b7:40:03:6a:ad:10:
b7:8d:42:03:28:8a:c9:be:7a:76:a0:3d:cd:06:81:
e8:f1:86:2a:bf:37:27:a1:8a:cd:51:bd:4f:d7:54:
12:65:8b:60:d7:2a:78:ea:81:19:06:42:14:03:d1:
37:3c:88:61:bd:f5:b5:d6:e5:d1:76:86:36:ff:01:
91:78:a6:63:e6:30:7e:46:b5:27:49:f4:40:e1:4f:
53:35:ff:ff:b4:09:67:b2:79:4f:f4:fa:38:09:c9:
52:ba:21:ab:31:79:1a:8f:25:3d:4b:9b:03:7c:88:
b1:9f:96:e7:ba:31:cc:54:ad:4b:19:17:fb:31:51:
c7:66:6f:98:10:20:fd:e3:2c:c2:66:b0:83:20:bc:
5b:41:aa:1e:73:47:c1:eb:3a:12:1c:0f:70:75:e8:
9f:c6:0e:da:72:f3:05:4b:da:e2:96:b1:0c:da:e8:
72:8e:a5:a8:de:76:91:b6:34:e4:d5:65:f2:f4:f9:
de:97:e3:34:8e:7d:e2:47:9c:48:5a:4f:c1:fb:8f:
07:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:9B:3C:B1:7A:6F:A9:91:36:A4:0F:26:3D:FA:0F:E7:B2:9D:25:ED
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:3c:f8:72:c5:f0:04:79:fa:42:2c:dc:1e:77:6a:85:c9:e2:
6a:bc:94:cb:91:d5:09:8c:3d:61:c8:7b:32:76:41:d3:05:3d:
b7:11:0e:36:9e:90:96:5b:85:ed:62:ef:50:ff:62:79:df:8e:
cb:b5:d8:89:b3:da:94:a3:59:58:eb:20:36:b7:8e:c5:89:29:
da:97:aa:a7:e6:13:fa:09:fd:57:82:5f:33:7a:bd:96:88:34:
b0:6c:73:7f:e1:7e:c1:18:61:9d:6a:bd:59:29:d0:2c:54:96:
50:9c:cc:8d:d8:28:a3:96:19:2a:f3:57:0c:58:e3:d9:f1:b3:
b0:92:f4:e1:5d:d7:97:a6:15:c8:bd:58:b7:01:d1:34:93:99:
45:7f:ce:09:2f:6f:38:56:ae:02:7a:f1:33:08:a6:7f:76:e5:
84:dd:7e:66:b9:ea:5c:c8:48:10:80:54:ce:5d:8b:ac:3f:0c:
43:1a:14:4f:b3:c8:5f:55:bd:47:21:4e:68:49:49:75:dc:4b:
cc:e5:14:c7:56:45:0c:6a:f2:9c:25:f9:39:31:9b:9a:5b:5e:
e6:54:e8:f6:5f:12:2b:e6:b5:87:81:06:d2:bd:f3:ad:d4:5c:
e7:72:ba:19:42:d8:eb:42:37:3e:3d:37:1f:fd:d2:a1:a6:98:
b6:95:5b:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:10:54 2026 by rpki-client