Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
File: bsJOKsnNUzmWUVkM85Gta78bPiY.mft (raw, json)
Hash identifier: B59vMYLRNEwKlCqPXb7h+vBfQW7mKz9rh0iVlz0nhIM=
Subject key identifier: 50:F3:17:BD:E0:10:6A:B9:D7:1E:9F:27:C6:B6:01:26:AE:E5:1B:FC
Authority key identifier: 6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
Certificate issuer: /CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Certificate serial: 019D27DFC999F1172AB2AE5CB670FB60F5D8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
Manifest number: 09F0
Signing time: Thu 26 Mar 2026 02:01:10 +0000
Manifest this update: Thu 26 Mar 2026 02:01:10 +0000
Manifest next update: Fri 27 Mar 2026 02:01:10 +0000
Files and hashes: 1: V4zAIgAoy_1XQ7dP32lAlqC0nxM.roa (hash: o+vrELIZ0yNZvQJf/bVnVUZJH4II7t1VE+Z62K1MGg8=)
2: bsJOKsnNUzmWUVkM85Gta78bPiY.crl (hash: Rh7upaxKRDG68k8S6/QEPNM8MLp5hSJ2gDjvZ/QUDtk=)
3: wRsM-J-_RdemGYQhUq06PflenDM.asa (hash: pjI+PT7nOc9seCJaC2jOV5Z3Ysbs3FSmgOLK6vNi+4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:c9:99:f1:17:2a:b2:ae:5c:b6:70:fb:60:f5:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Validity
Not Before: Mar 26 02:01:10 2026 GMT
Not After : Mar 27 02:01:10 2026 GMT
Subject: CN=50f317bde0106ab9d71e9f27c6b60126aee51bfc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:df:40:c6:14:80:bd:a1:07:c9:75:23:af:87:
6f:9c:31:f8:b9:fc:0f:63:9b:5a:89:56:c2:dc:02:
5f:ba:a2:a7:9c:a7:d4:0f:f7:3c:16:86:d5:0a:78:
e4:6c:c2:fd:49:7f:34:6a:11:52:06:92:25:13:a1:
16:d2:b6:37:8b:08:f6:0d:5c:42:b2:c8:cb:bf:94:
48:3d:c4:a4:6e:7f:f6:5d:ce:e4:b8:9b:18:7b:26:
b0:2d:20:fc:e3:7d:d3:a3:ca:69:89:3b:e1:f7:89:
88:17:d5:46:69:cd:d6:e3:b9:37:14:fd:df:e7:0d:
c5:83:3f:22:cd:41:62:43:53:71:73:70:ea:fb:ff:
05:86:31:65:76:d3:6c:5c:39:c6:dd:f6:20:8a:24:
0f:32:09:44:c5:6d:df:f8:53:e6:95:cb:eb:78:3e:
36:d5:b4:3f:b0:08:d6:c2:c7:b4:5d:12:5e:78:7a:
d5:c8:aa:f5:d5:f0:59:d7:1e:12:a8:33:8d:8d:ce:
74:a4:5d:a0:11:52:ec:f8:6e:18:09:48:b3:a0:20:
f6:12:bc:2d:ea:59:40:cf:be:ad:a0:36:7d:5a:3f:
fe:a4:82:93:99:83:a1:a7:11:65:b1:99:09:d8:83:
9a:ad:af:69:a7:88:46:4f:88:46:72:8f:a3:80:b7:
cf:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:F3:17:BD:E0:10:6A:B9:D7:1E:9F:27:C6:B6:01:26:AE:E5:1B:FC
X509v3 Authority Key Identifier:
keyid:6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:7a:53:0b:5f:00:ae:ee:38:31:59:b1:2d:1d:30:54:a9:d4:
bb:6e:ac:20:6a:5e:02:5b:21:0d:3f:85:de:57:cf:5a:cb:54:
4d:85:cb:3f:93:1c:66:f9:e4:6e:24:e8:35:43:ea:d6:77:87:
17:28:af:8c:4b:e9:aa:64:02:21:6d:30:e2:dd:f5:17:89:40:
44:05:12:bf:13:12:90:72:45:53:93:78:e4:7a:d9:c2:1d:af:
fe:26:fc:cc:10:6c:7e:f6:d5:d2:77:63:b8:dc:ed:e9:32:47:
80:c9:5a:be:9c:75:d2:03:c1:07:77:c1:30:4a:ef:21:29:a7:
5b:de:5c:e8:ab:12:23:49:1f:0e:6c:50:04:66:fb:aa:8b:92:
06:02:f1:16:d0:d3:e7:48:54:06:53:fd:6e:f4:d7:59:73:62:
57:ec:4e:8e:6a:22:6a:68:d7:e9:38:26:f4:75:2f:37:1d:92:
34:d6:e9:53:42:28:91:23:77:f1:83:d0:5f:cd:08:11:2f:e0:
5b:70:20:4f:c1:2a:4b:6d:60:a0:38:33:f9:df:57:bd:e6:0f:
ed:e4:87:bc:ba:bd:cc:71:d4:81:24:e0:7a:a9:a4:16:15:b1:
ab:48:ba:65:67:83:eb:a0:a4:2b:28:fd:04:da:a0:a3:cc:ed:
0c:89:f9:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:56:35 2026 by rpki-client