Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
File: BoekrKWB2OvN_iS2Xx5woS8omng.mft (raw, json)
Hash identifier: aGZ5xhhBYqKSRoyYfto1JyZ2KVC1FdU/wbpNEW0S8+I=
Subject key identifier: 96:6F:77:B0:60:56:45:97:D7:B2:31:78:DC:99:53:EB:3A:D9:AD:AF
Authority key identifier: 06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78
Certificate issuer: /CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78
Certificate serial: 019D27A88812FC0A4A6680A2F14792A99F8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
Manifest number: 0A40
Signing time: Thu 26 Mar 2026 01:00:49 +0000
Manifest this update: Thu 26 Mar 2026 01:00:49 +0000
Manifest next update: Fri 27 Mar 2026 01:00:49 +0000
Files and hashes: 1: BoekrKWB2OvN_iS2Xx5woS8omng.crl (hash: +jG059nx/jUKQRJg1k7158AQ73M77qOP9JVSjydk5VE=)
2: xNUHHeKL5gyglULSwBpb7Qy-WwI.roa (hash: +glq0PaufWCQhOFjvFVpKvbSAAw+d7Af8r+hPXAyxiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:88:12:fc:0a:4a:66:80:a2:f1:47:92:a9:9f:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0687a4aca581d8ebcdfe24b65f1e70a12f289a78
Validity
Not Before: Mar 26 01:00:49 2026 GMT
Not After : Mar 27 01:00:49 2026 GMT
Subject: CN=966f77b060564597d7b23178dc9953eb3ad9adaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:8d:2b:db:22:61:ac:db:de:76:85:94:fe:c3:
25:13:88:91:85:87:55:ec:fe:e3:f9:88:10:8f:ac:
bb:92:af:76:84:f3:99:05:6b:f1:0e:e5:fa:1c:73:
cf:93:6c:95:a9:e3:d4:34:90:28:59:bc:d0:8a:4b:
2f:23:27:d8:70:e2:6d:b2:66:60:7a:56:9b:7c:a1:
72:e4:87:2a:4b:68:ae:6f:ac:ac:fb:e5:ef:d8:e5:
79:7a:f2:19:c4:de:e0:2d:d7:a3:f1:de:ad:19:6d:
40:ec:8f:70:08:31:68:dc:e7:8b:ff:dc:67:5a:e5:
cf:27:91:35:76:8d:e0:18:78:78:89:8c:e9:8c:89:
b0:67:26:5f:92:13:8c:3c:03:1d:04:32:84:b0:09:
9a:55:85:a3:1e:49:ef:a7:1f:d7:ea:c7:64:de:40:
ff:c4:64:0c:47:78:54:70:a0:e1:c9:70:22:c2:04:
84:88:f4:6f:06:4b:95:f5:7b:5c:ee:ce:9e:f0:37:
c6:90:77:76:44:3b:dc:42:04:71:f6:91:99:69:85:
23:d1:c9:b0:e3:e6:f4:03:a7:37:ee:5b:91:6c:18:
09:8b:38:9c:0e:7d:b0:fc:0e:74:d1:7b:24:2b:e9:
c9:1e:b8:d5:eb:56:e6:5e:fb:6d:ce:5e:5e:c6:6f:
8e:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:6F:77:B0:60:56:45:97:D7:B2:31:78:DC:99:53:EB:3A:D9:AD:AF
X509v3 Authority Key Identifier:
keyid:06:87:A4:AC:A5:81:D8:EB:CD:FE:24:B6:5F:1E:70:A1:2F:28:9A:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BoekrKWB2OvN_iS2Xx5woS8omng.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9df11b-0187-4a91-b5d1-2d28a19135fd/1/BoekrKWB2OvN_iS2Xx5woS8omng.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:4c:1c:71:7b:9d:c1:31:7b:79:23:18:d5:66:65:5f:04:72:
c9:0b:b8:f7:51:68:dd:8e:8b:fc:58:9e:dd:02:e1:19:9f:cc:
eb:9a:8f:57:72:af:f0:bf:ea:33:68:50:78:41:bb:41:9a:d2:
03:c4:ae:9a:94:23:31:de:bf:a3:1b:09:d3:06:f1:b3:b2:61:
93:7e:41:d1:08:84:35:ed:ab:79:a5:d9:5d:8a:73:90:e2:6b:
5f:70:d3:b8:5e:cf:d0:23:12:e4:5a:3d:10:be:d6:be:c5:26:
9c:fd:d5:ca:5b:ab:e7:7d:80:07:df:9c:c6:c6:68:45:ac:0f:
a8:26:be:6f:de:7e:e0:63:2c:26:2b:d3:f7:66:23:39:29:b7:
c4:0e:49:f1:f2:51:91:8b:40:2d:7a:51:1d:92:0d:2b:5d:db:
85:3e:ce:86:f3:55:f6:06:41:22:e9:c3:4a:d1:14:ea:76:d9:
c8:a6:70:63:4f:64:8a:b4:6c:01:a4:5a:90:64:b0:77:3c:fc:
94:7c:63:d1:d3:cc:6a:a4:5e:ae:87:e5:18:79:4c:89:9b:e2:
ad:c5:e1:bf:73:6c:b0:fb:95:08:91:b0:fa:a4:79:4f:79:17:
9c:3a:88:8b:b7:74:3c:f3:f6:3d:52:19:a4:74:fd:e1:a6:89:
2a:78:8e:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:26:37 2026 by rpki-client