Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: vbXZD7EV2ZZQ+Dj+gTFYnQD2jWJf5tmnLvCSJfPcD4c=
Subject key identifier: A0:CE:B2:92:83:3C:1E:9E:A8:F3:8A:4A:AE:B6:E8:43:CD:D3:42:DB
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 019D27DFA3825681D7F404E0086D2A5C5EDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 0542
Signing time: Thu 26 Mar 2026 02:01:00 +0000
Manifest this update: Thu 26 Mar 2026 02:01:00 +0000
Manifest next update: Fri 27 Mar 2026 02:01:00 +0000
Files and hashes: 1: YDy6wLds96Yf3zX0RUfnfXQDw5Q.roa (hash: 86RzS+pw/jn2zDtIOdA8fDYlhM/9zcSkfL4mjAAa2B4=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: JyeONbFmIURBe7w9obNh8scXoHMjAdoBUT3Yapd63iw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:a3:82:56:81:d7:f4:04:e0:08:6d:2a:5c:5e:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: Mar 26 02:01:00 2026 GMT
Not After : Mar 27 02:01:00 2026 GMT
Subject: CN=a0ceb292833c1e9ea8f38a4aaeb6e843cdd342db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:8c:6c:6d:16:14:22:ce:0e:10:38:49:13:35:
45:67:f8:6d:38:19:ba:5c:0d:4b:99:63:86:4a:50:
9c:1e:3d:f6:a9:59:9c:75:99:3b:27:67:7d:26:36:
c0:8f:cf:a0:00:0e:ed:f8:63:2d:34:76:46:5f:64:
64:1b:69:56:59:e3:23:4b:b3:53:d4:7a:7d:0a:01:
6e:4e:3f:13:69:1f:64:85:eb:45:f2:30:2b:26:f2:
96:91:81:e1:28:cf:26:df:b5:d6:29:51:b9:4b:7c:
59:55:ea:7c:4e:25:1b:67:8c:7e:53:65:54:6e:8c:
48:72:e5:d7:9d:ad:5a:a0:76:a7:9f:6f:18:24:be:
2c:2e:71:c0:3a:2d:66:ce:7e:47:4a:88:d7:a0:e3:
6f:9a:9d:0a:0d:2d:19:84:16:b7:84:6a:c4:19:9b:
f6:aa:0f:c9:c9:33:20:ff:06:fe:6b:25:54:90:a8:
a0:64:6d:2f:1a:1f:9a:86:79:bb:96:05:ab:72:81:
f5:07:10:91:70:04:42:b0:33:9e:4d:5f:e1:c2:e0:
9a:4f:b6:b0:11:05:73:5b:81:89:f2:db:bb:5d:ae:
bf:fa:f2:07:ec:ff:bd:0f:ca:4f:63:b8:b5:49:e3:
bf:2c:ee:41:97:e5:90:55:b9:82:ba:ef:d2:39:b9:
73:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:CE:B2:92:83:3C:1E:9E:A8:F3:8A:4A:AE:B6:E8:43:CD:D3:42:DB
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:e3:b9:d7:af:5e:c0:e7:f6:60:4a:04:57:c0:e1:96:c3:b2:
84:8e:78:10:e1:4c:15:9d:2f:76:d1:40:ff:0a:a8:34:cb:75:
45:7c:47:81:ed:5c:0b:03:f9:e5:82:e0:a9:09:66:c1:5f:93:
2c:62:56:b1:63:e1:cb:2c:2b:28:0a:3b:ab:e4:07:bf:6c:cc:
50:c9:71:1f:99:93:74:10:2f:e1:40:4c:ea:6d:00:8a:5b:36:
43:7b:f3:51:57:b1:2c:74:54:76:34:59:b6:b4:e8:15:b5:4c:
59:39:c8:a2:e6:f1:6d:5e:31:e4:2b:17:d1:67:9a:e8:38:74:
8f:8e:31:28:7b:42:7f:9b:a0:44:23:b0:d3:4c:bc:e3:f5:7d:
8b:06:fd:95:da:0b:f1:e5:13:4d:16:9c:5b:ff:e3:48:4f:b8:
05:4e:72:49:d9:f1:89:58:0b:04:b7:c7:bc:dd:d2:08:d8:00:
db:b5:d5:10:d5:5b:07:6a:a2:fe:f2:41:c8:fd:49:a5:13:a7:
63:cd:2c:93:73:58:fb:09:a6:f4:d9:1a:e3:b5:da:6e:8a:07:
c9:b9:c0:c8:4a:65:17:ee:52:eb:af:8a:d0:07:6c:e4:e0:c7:
0c:af:00:68:a1:d7:16:66:6f:fa:f5:4f:b1:de:0f:65:3f:1c:
74:ef:fa:a8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:59:54 2026 by rpki-client