Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.mft
File: b0dz8kDNYmnCUbZRcKp-KYroxB8.mft (raw, json)
Hash identifier: d+TLvQj2Exs1MjkEp1Fu8+hIX3gzXsbE5CH3b3aKiGQ=
Subject key identifier: 75:A6:F9:F6:54:96:C9:11:56:F0:04:AF:F3:C6:FD:14:D2:62:80:63
Authority key identifier: 6F:47:73:F2:40:CD:62:69:C2:51:B6:51:70:AA:7E:29:8A:E8:C4:1F
Certificate issuer: /CN=6f4773f240cd6269c251b65170aa7e298ae8c41f
Certificate serial: 019D299757473606C72679675B1617FE2489
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b0dz8kDNYmnCUbZRcKp-KYroxB8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.mft
Manifest number: 0D67
Signing time: Thu 26 Mar 2026 10:01:17 +0000
Manifest this update: Thu 26 Mar 2026 10:01:17 +0000
Manifest next update: Fri 27 Mar 2026 10:01:17 +0000
Files and hashes: 1: SGmRPs7E_Ar65qS0PZ3szYEetUo.roa (hash: wn4/5O7naNsigvGqXsvxbt3WPlLI3oIhfBuN4K6i6Ro=)
2: b0dz8kDNYmnCUbZRcKp-KYroxB8.crl (hash: KzfTIie9z23yvORLB5RyK0NWsx5/BFzpJL1uCinzsHc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.mft
rsync://rpki.ripe.net/repository/DEFAULT/b0dz8kDNYmnCUbZRcKp-KYroxB8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 10:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:57:47:36:06:c7:26:79:67:5b:16:17:fe:24:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f4773f240cd6269c251b65170aa7e298ae8c41f
Validity
Not Before: Mar 26 10:01:17 2026 GMT
Not After : Mar 27 10:01:17 2026 GMT
Subject: CN=75a6f9f65496c91156f004aff3c6fd14d2628063
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e2:1e:a3:15:b8:eb:71:7c:f5:f2:02:0c:42:
35:b4:7c:76:13:b2:a8:53:0a:8f:07:e7:9a:d6:a7:
aa:50:4e:1d:6a:cf:fb:9e:c4:3c:27:00:6c:f5:85:
f3:fd:20:3d:01:e1:14:d9:18:a4:6f:f6:7f:58:92:
49:31:7a:15:31:72:8f:7b:32:b1:ec:62:b6:2c:94:
ab:58:54:cc:96:36:18:e5:43:b1:da:43:1c:ee:ed:
a3:0c:5b:66:aa:aa:c5:3a:60:3b:bf:21:44:dd:81:
af:2d:da:38:df:8e:0f:b4:06:a3:9c:7e:9e:7e:a1:
02:d6:f6:22:64:12:1f:ae:46:c7:63:c3:57:af:91:
a2:d2:64:c7:d0:1e:40:3e:b4:ea:b4:2b:06:76:f3:
f3:da:17:b5:73:50:4f:7f:f6:c9:2c:fb:a8:7b:51:
aa:f5:e8:73:6e:26:06:8f:dc:47:f2:dc:35:15:02:
f3:d4:27:46:29:d7:a6:38:60:0d:f6:10:4f:b6:64:
3b:1f:ac:fc:e7:5c:e2:25:79:2a:ac:1d:5e:b9:00:
d5:46:ea:65:34:03:40:f7:9e:8f:0b:77:9c:b8:46:
a9:8d:df:5e:c4:33:71:96:71:a6:d8:e9:d8:66:f5:
9e:53:f9:62:27:0f:99:2a:28:15:bb:22:fc:e8:d4:
3a:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A6:F9:F6:54:96:C9:11:56:F0:04:AF:F3:C6:FD:14:D2:62:80:63
X509v3 Authority Key Identifier:
keyid:6F:47:73:F2:40:CD:62:69:C2:51:B6:51:70:AA:7E:29:8A:E8:C4:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0dz8kDNYmnCUbZRcKp-KYroxB8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/9ed4b2-32b9-498a-b8dc-769cd7dcc938/1/b0dz8kDNYmnCUbZRcKp-KYroxB8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:ed:59:fa:5d:9a:66:54:6d:cc:e7:7a:05:2f:f0:9f:d4:3d:
b7:dc:1d:49:c8:4a:b9:5f:e5:0a:24:7a:bd:cb:18:a2:36:e4:
f8:8f:9b:75:38:79:8f:8e:ea:87:0b:f4:2e:48:ea:ab:98:b8:
30:26:cd:ba:58:da:5a:a8:ab:bc:27:64:31:7f:98:3d:da:dc:
e0:25:75:8b:4c:f1:52:ad:e7:07:61:f8:3a:d1:88:2a:74:64:
f0:b2:99:52:9a:e3:e3:4b:88:22:0a:38:3e:24:30:02:ec:95:
40:99:26:9f:98:8c:0e:6e:bb:6c:69:74:7c:f2:b7:9b:0f:88:
5b:46:79:be:dc:68:4d:b2:6b:70:1e:d2:44:b9:a7:f3:ca:9f:
cc:b6:42:85:70:91:5d:84:e6:a6:ea:8b:c3:ff:71:e2:7d:8f:
45:61:2d:2f:e1:b2:ed:5f:6e:d1:5d:11:a2:92:f5:e3:f5:b1:
61:6a:a9:a2:6e:4c:21:26:6d:f5:a7:84:db:8f:ff:29:31:9c:
0d:9a:88:bb:5a:f9:c9:c8:fa:be:74:94:79:0c:8a:91:63:8d:
cd:94:74:b1:d9:d0:99:91:9c:d0:d8:1d:ee:46:0f:5e:c1:4d:
14:38:49:bb:6a:88:a1:fc:72:74:93:ea:e0:20:e4:a3:7b:00:
c7:c8:d1:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 20:59:03 2026 by rpki-client