Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
File: bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft (raw, json)
Hash identifier: dKTHjb4dCSa15CpKfSUfTkCqKfvGCL4ljC2i/BsTUqc=
Subject key identifier: F1:47:7C:29:5F:A5:60:67:64:BB:EE:FC:C4:75:04:48:7C:BB:2F:C3
Authority key identifier: 6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD
Certificate issuer: /CN=6f060474088606ec4ee8eed7c41b6943f89a09bd
Certificate serial: 019D27A861B84930C12328B95258A4731B1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
Manifest number: 0BCB
Signing time: Thu 26 Mar 2026 01:00:39 +0000
Manifest this update: Thu 26 Mar 2026 01:00:39 +0000
Manifest next update: Fri 27 Mar 2026 01:00:39 +0000
Files and hashes: 1: bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl (hash: 01uMyb6WENfnovmDgVna6UGlQyC3huvpahutsLcIX+s=)
2: u2DoRyUakqrjwSyZA3BmkWIxCdY.roa (hash: ysQW56gBC1VncDg2ReMXXp9OOHCKYs21ZfB3qLDw5IY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:61:b8:49:30:c1:23:28:b9:52:58:a4:73:1b:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f060474088606ec4ee8eed7c41b6943f89a09bd
Validity
Not Before: Mar 26 01:00:39 2026 GMT
Not After : Mar 27 01:00:39 2026 GMT
Subject: CN=f1477c295fa5606764bbeefcc47504487cbb2fc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:3f:2a:f8:cf:53:fb:35:20:c9:56:2f:2a:89:
27:14:ec:17:ee:40:be:2b:b4:05:07:1f:c2:fe:3b:
52:3f:37:ad:a1:a0:51:36:11:04:de:3d:de:d9:17:
d0:f6:06:3d:da:65:2f:8a:cb:94:c5:27:27:61:9f:
21:af:ee:7b:80:95:c4:5b:18:97:0e:d0:cb:6d:8e:
82:cc:02:f3:ad:56:2c:17:ac:6c:1e:8c:2a:a0:12:
81:39:a2:e7:a5:7a:79:ce:74:7f:a0:4e:bf:73:a4:
87:01:6f:1a:ce:40:a3:71:27:c1:4c:b9:0c:ab:dc:
b6:b6:1c:1e:07:91:2f:82:9e:b9:d3:f1:5b:e3:b0:
2c:d1:50:28:b3:04:86:c2:fa:ef:1a:82:b0:6c:26:
e3:c1:1e:57:73:9e:6e:b2:3a:98:63:bb:6f:f3:ff:
50:59:6d:c9:1a:40:3c:a8:9b:d4:29:21:dc:11:a0:
4e:aa:1a:18:11:c2:f0:97:ce:51:a6:58:50:bb:94:
ff:59:37:73:ef:d8:43:30:75:b9:fb:ab:7c:2f:6f:
c3:7a:20:d1:0f:51:a9:46:15:b1:2b:a9:4e:e0:fe:
2e:dc:e8:88:5a:52:a6:9a:2f:be:23:89:fd:98:89:
b3:24:d3:ae:e9:b5:f4:ca:46:1e:28:c0:86:78:f4:
9c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:47:7C:29:5F:A5:60:67:64:BB:EE:FC:C4:75:04:48:7C:BB:2F:C3
X509v3 Authority Key Identifier:
keyid:6F:06:04:74:08:86:06:EC:4E:E8:EE:D7:C4:1B:69:43:F8:9A:09:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/2bfa6b-baa8-4c8c-9bc6-7aa6eb012190/1/bwYEdAiGBuxO6O7XxBtpQ_iaCb0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:cf:aa:4a:69:62:8c:11:c7:32:ab:c9:b6:4b:86:80:9b:19:
e1:1c:84:b8:27:24:f1:ad:ac:d4:95:4a:55:2a:a8:de:21:0b:
05:00:b7:b6:5c:a4:bd:53:67:b0:15:9e:36:75:2a:3a:a6:b6:
a4:75:01:ff:9c:9a:ba:19:aa:6c:b3:27:e9:4e:67:7f:9f:06:
47:bc:ea:82:a4:d1:69:c6:79:10:c5:77:af:60:3b:1f:c3:1c:
c0:3e:c9:5a:2d:6c:5d:c2:f5:65:5b:84:19:10:6f:5c:5d:81:
d0:95:2b:20:6a:d0:55:92:8f:b8:87:29:e6:21:8c:51:74:01:
fb:93:37:dd:0d:15:f7:0b:6b:bd:95:72:f5:c2:24:b1:1a:39:
66:ce:7b:f2:9f:8e:9c:96:b2:4e:84:d5:86:a2:0b:5f:ae:53:
41:85:c5:32:e9:50:00:f4:5f:3a:c0:1d:00:0a:63:1f:23:4b:
f6:4b:26:ce:8b:06:49:62:a3:42:be:64:74:f0:b5:dc:a6:ef:
0e:98:e1:27:04:cb:0c:3e:60:cd:b9:f8:de:ec:d5:72:1a:96:
1a:c6:22:26:91:53:85:f8:fb:5a:90:7f:84:36:99:a5:cb:0f:
b8:48:bb:e6:eb:2d:e5:d3:ac:31:e5:fa:bb:19:40:46:54:df:
8f:7c:4c:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:37:08 2026 by rpki-client