Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: xsgqRo1JeDoKJkaWJorhB6yEWxxXAJofFOJcOYCc0+w=
Subject key identifier: AF:D4:07:7B:B6:07:85:72:CC:DF:7B:F8:3E:6F:AA:A7:46:21:B2:0E
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 019E1F109D1AA0C26EDE38E33A5F319F87A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 05C2
Signing time: Wed 13 May 2026 02:00:42 +0000
Manifest this update: Wed 13 May 2026 02:00:42 +0000
Manifest next update: Thu 14 May 2026 02:00:42 +0000
Files and hashes: 1: YDy6wLds96Yf3zX0RUfnfXQDw5Q.roa (hash: 86RzS+pw/jn2zDtIOdA8fDYlhM/9zcSkfL4mjAAa2B4=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: ygYTGi1aaFFyPEGAk/yqAlG9S1QeMT2iPInKkgUh3bk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:9d:1a:a0:c2:6e:de:38:e3:3a:5f:31:9f:87:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: May 13 02:00:42 2026 GMT
Not After : May 14 02:00:42 2026 GMT
Subject: CN=afd4077bb6078572ccdf7bf83e6faaa74621b20e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:14:a5:84:9c:8b:ae:d3:38:7e:2e:20:86:cc:
d1:87:3c:91:4e:11:48:9f:53:fe:a1:06:21:a9:5b:
e6:49:9d:be:5c:01:64:b6:43:2a:93:05:ce:11:29:
4d:57:c5:6b:28:df:71:a4:9a:44:b6:b2:32:4d:de:
3d:f3:99:0d:3b:5b:3b:db:22:76:f0:e8:65:b8:f1:
ee:c7:77:13:37:5b:b7:aa:d7:00:ce:d1:f3:57:78:
50:02:c2:76:4b:e0:ab:ed:9c:38:0e:9e:63:7a:96:
28:2c:ae:61:f6:b0:7f:e3:47:8f:b3:10:f7:4b:2b:
cd:c3:e6:16:bc:ca:b8:ca:56:1f:69:21:cc:98:ea:
71:99:2f:f9:4d:98:f1:6b:b4:84:ec:e3:f4:a2:09:
2c:f1:29:6e:a2:9e:cf:90:bf:36:de:8b:e6:91:50:
86:57:1a:3c:62:32:80:df:ec:42:47:58:97:e0:b9:
3e:4c:0e:ae:9c:c2:f4:b8:0d:f7:5c:50:d3:f5:4c:
b9:79:4a:67:b7:fd:90:6d:6c:1e:d3:87:5b:4f:ca:
f6:32:2c:ca:72:8c:f1:c9:08:83:de:23:9e:dd:56:
b6:fb:61:54:e1:e6:4e:af:2f:ea:c8:84:99:32:95:
00:d0:8e:5d:18:88:1b:f2:63:6d:1f:c3:95:f2:3e:
7d:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:D4:07:7B:B6:07:85:72:CC:DF:7B:F8:3E:6F:AA:A7:46:21:B2:0E
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:2a:d1:67:1b:d1:02:f6:a2:0d:df:bf:0e:7f:72:81:8e:ec:
11:3c:2a:51:0f:10:17:d8:7f:f1:24:90:fa:e1:8d:51:c2:e1:
80:80:b1:4c:bc:c7:36:9c:c9:ef:07:2c:f7:87:2d:93:46:f7:
5c:b5:4e:4f:52:f8:4c:ec:56:74:c6:9d:ed:a5:64:fe:3e:54:
3b:82:b0:74:6d:5f:de:1b:89:3c:e5:86:94:29:fd:7d:55:17:
79:a7:1c:f1:51:72:16:fc:dc:38:64:18:c4:eb:85:03:4a:8c:
51:9e:7e:3d:11:e7:0f:29:36:50:68:11:7c:af:4f:64:09:21:
08:31:a0:c6:0f:90:82:6a:c5:f4:4c:e2:ef:8f:a9:8f:ae:b6:
46:99:c0:61:d8:38:91:24:11:ed:d9:a8:c3:65:9f:33:2b:1e:
5e:a7:e9:bb:67:82:2b:6e:45:0c:93:29:22:1d:78:7f:fe:51:
2a:dc:6d:fb:4c:9b:e3:73:df:d3:6b:f2:db:9b:23:0c:33:bf:
1c:03:3e:2d:2b:69:80:3d:4c:a4:f6:97:7d:d0:87:3a:d6:8a:
f3:fe:cb:29:51:21:a4:8f:92:f9:9a:60:9f:b3:21:0f:db:e6:
cb:f3:e3:62:c1:f2:6b:85:4a:e5:cb:a3:f8:39:93:cd:79:6d:
db:4e:90:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:13:22 2026 by rpki-client