Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
File: bHOgSn0Ost9H2vDDn7p142XIhT0.mft (raw, json)
Hash identifier: FTzYP4j4cpLlZ3TVM1zsAqrmATQTlT99jKiXd13ptAM=
Subject key identifier: B4:F4:68:A2:67:91:6F:CA:F5:A0:79:9B:D8:89:5A:56:7B:8C:C2:B7
Authority key identifier: 6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D
Certificate issuer: /CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d
Certificate serial: 019D2B171676CF6345E4F20C0E7F096E02FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
Manifest number: 125A
Signing time: Thu 26 Mar 2026 17:00:26 +0000
Manifest this update: Thu 26 Mar 2026 17:00:26 +0000
Manifest next update: Fri 27 Mar 2026 17:00:26 +0000
Files and hashes: 1: B2icUM6CeeejuMgcUvx_kDaA564.roa (hash: MnhHbagUBXFrbwkwtXZWHt9EfUip9vPtnZBoYPXkEak=)
2: I_-ZDRnwIe3YxtISBfXd7uTtNzo.roa (hash: CvvU8QwgatBH8M1Cq+F7WmSuoj+U0VtrnMnDWpsz+50=)
3: bHOgSn0Ost9H2vDDn7p142XIhT0.crl (hash: KpXAkYjhpbhQFL1kmKGk/5UhyF1dcJBuUJmAPrqWhFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:17:16:76:cf:63:45:e4:f2:0c:0e:7f:09:6e:02:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c73a04a7d0eb2df47daf0c39fba75e365c8853d
Validity
Not Before: Mar 26 17:00:26 2026 GMT
Not After : Mar 27 17:00:26 2026 GMT
Subject: CN=b4f468a267916fcaf5a0799bd8895a567b8cc2b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9d:0e:b7:46:6c:05:fd:62:19:87:00:8f:d2:
00:71:d9:6b:c9:f9:0b:37:73:31:fa:8a:3e:6a:ca:
49:cf:a9:ee:70:f9:1f:cf:ed:84:f7:b5:c1:b2:a1:
e8:b6:fb:cf:bc:ad:e2:ab:fc:b7:4f:bb:61:b8:dd:
9f:71:01:f3:59:d7:5a:00:13:d3:89:aa:a7:9c:bc:
f5:c4:20:bb:1a:61:80:d4:36:75:f0:b4:18:dd:e6:
fa:61:16:3c:64:b9:dd:fb:f5:d7:19:e4:c1:ea:45:
cb:66:e4:35:e2:a6:8b:c4:71:39:33:f6:27:ad:54:
ba:a8:95:e6:3e:66:6d:fa:a5:fd:b3:4c:7d:da:3e:
e3:19:af:4c:54:8a:62:12:67:13:40:69:c5:42:b5:
0b:c8:64:0b:99:8e:c0:55:7e:0e:fe:21:8e:a1:55:
4a:be:6d:32:76:dc:f1:02:bb:60:3f:39:64:fd:e9:
5f:ef:90:83:d1:90:f3:7a:97:8a:2c:77:04:b5:cf:
d5:5c:a2:89:f9:04:de:2d:30:60:74:a7:21:97:01:
75:c5:56:6c:f3:36:cc:2c:21:ee:fe:9d:0d:8e:ff:
5e:b1:78:f3:34:63:5d:7c:ff:8a:04:45:49:b6:92:
36:d3:4d:ec:0a:8e:36:b8:41:4d:cc:d4:3e:8f:9f:
3b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:F4:68:A2:67:91:6F:CA:F5:A0:79:9B:D8:89:5A:56:7B:8C:C2:B7
X509v3 Authority Key Identifier:
keyid:6C:73:A0:4A:7D:0E:B2:DF:47:DA:F0:C3:9F:BA:75:E3:65:C8:85:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHOgSn0Ost9H2vDDn7p142XIhT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/42af1e-d553-4fe6-9fc3-f9633292c977/1/bHOgSn0Ost9H2vDDn7p142XIhT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:ed:aa:55:a7:f9:ac:1a:cd:92:48:28:8e:07:91:70:0b:8a:
b3:f6:70:ce:47:97:a2:3d:3f:29:49:41:29:02:57:9e:15:67:
59:11:af:1c:3e:3a:d0:72:bd:43:78:e6:38:f6:d1:a4:5e:ce:
3a:09:e9:b6:2d:ff:59:17:29:02:7b:d2:67:c4:17:88:cd:8b:
68:ce:50:00:b4:b5:ef:b7:06:fa:9e:8d:52:74:ed:b7:70:36:
90:3a:e2:18:8a:af:2c:ff:62:bd:69:59:5f:bb:55:21:63:a6:
0d:3f:82:cc:17:67:db:19:41:cb:8f:c4:97:e9:95:57:1f:27:
dd:f2:00:8e:83:26:04:4f:dd:12:eb:f3:b5:b5:e9:0a:c3:12:
75:89:f5:50:01:3e:c0:5f:ca:c8:c9:63:c8:65:52:6d:b8:ea:
da:50:5a:b8:f6:46:7c:84:3d:91:81:ab:cb:5b:bd:21:6a:f6:
5e:13:7a:ea:13:07:9f:3b:dd:17:2a:33:c2:65:53:4e:4a:b1:
11:26:44:55:45:45:33:7d:dd:67:08:3b:53:89:cb:ff:1e:3e:
e7:85:dc:2b:fb:74:99:8a:a6:e3:e0:cf:16:a9:27:30:08:61:
22:f4:d0:90:5a:41:41:62:0f:a7:61:47:24:04:0a:e7:a8:74:
ec:13:35:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 23:46:21 2026 by rpki-client