Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
File: bsJOKsnNUzmWUVkM85Gta78bPiY.mft (raw, json)
Hash identifier: pKZTiWTrBmQhcnQ+mOzkDL2+hd0WtkKzk/+vF7lcNL8=
Subject key identifier: 46:E3:30:C8:4E:F6:83:35:30:A6:E6:A3:82:1C:2B:4D:8A:62:7D:AB
Authority key identifier: 6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
Certificate issuer: /CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Certificate serial: 019E28B8ABA582C92A56B2812ACECB1BDAC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
Manifest number: 0A75
Signing time: Thu 14 May 2026 23:00:51 +0000
Manifest this update: Thu 14 May 2026 23:00:51 +0000
Manifest next update: Fri 15 May 2026 23:00:51 +0000
Files and hashes: 1: V4zAIgAoy_1XQ7dP32lAlqC0nxM.roa (hash: o+vrELIZ0yNZvQJf/bVnVUZJH4II7t1VE+Z62K1MGg8=)
2: bsJOKsnNUzmWUVkM85Gta78bPiY.crl (hash: o68xERGgkTfKfiE6QTw/sxeZSf8/2iVbE+pkroldvKU=)
3: wRsM-J-_RdemGYQhUq06PflenDM.asa (hash: pjI+PT7nOc9seCJaC2jOV5Z3Ysbs3FSmgOLK6vNi+4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 15 May 2026 23:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:28:b8:ab:a5:82:c9:2a:56:b2:81:2a:ce:cb:1b:da:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Validity
Not Before: May 14 23:00:51 2026 GMT
Not After : May 15 23:00:51 2026 GMT
Subject: CN=46e330c84ef6833530a6e6a3821c2b4d8a627dab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:92:4c:20:74:15:75:3a:3f:5d:0f:5f:82:82:
e7:4d:f5:bc:85:8b:3b:e1:5e:a8:00:d9:13:c2:b5:
68:9c:96:df:a6:70:0b:d2:43:2b:81:42:99:f1:45:
08:b7:eb:0e:78:ad:b0:c8:dd:5c:0b:a8:b8:d7:da:
34:9e:1e:cc:ae:5a:81:d5:e7:b7:84:f3:69:39:54:
52:53:71:98:06:ad:43:64:34:fc:71:44:b8:d3:91:
eb:1d:85:0c:7f:29:8e:dd:22:8e:e5:73:e5:33:bc:
a6:bb:bf:4a:c8:71:46:51:c4:db:b5:58:3f:0c:35:
18:c2:ce:83:bb:37:ca:47:dd:41:1b:c2:e7:9a:1b:
a2:d1:ed:19:78:bf:df:35:a3:69:71:1b:ac:67:0b:
3d:6b:75:17:d3:ac:10:06:72:88:50:45:10:73:86:
bb:75:03:5f:0d:8d:36:9d:88:29:50:ad:cb:0a:28:
9d:f6:ad:af:0f:a1:8a:11:0f:4c:4b:96:77:08:cb:
39:84:cb:4d:e3:8a:da:7d:9b:b5:1c:cd:38:86:a9:
14:29:d8:a5:d0:b9:1e:91:a2:c9:0f:4c:9b:87:34:
cd:3d:3e:de:e3:e9:95:15:7a:54:06:cd:06:9d:4c:
19:c6:77:ed:b4:f2:2a:a9:c2:07:a0:b8:e8:f0:fd:
04:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:E3:30:C8:4E:F6:83:35:30:A6:E6:A3:82:1C:2B:4D:8A:62:7D:AB
X509v3 Authority Key Identifier:
keyid:6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:6e:3b:fb:b6:52:d2:b1:da:db:27:8e:5b:1e:60:04:5a:6b:
3e:90:47:c5:b1:0b:c0:f5:28:fe:ac:0e:e8:c5:d7:26:cd:28:
72:51:95:76:8a:b7:93:24:47:27:be:1c:a4:98:82:13:c2:b1:
ef:26:1d:d7:24:0f:54:ec:4b:00:27:f3:00:fd:5b:b5:c1:7f:
38:ef:29:5a:eb:0e:bf:ae:6e:b8:f8:2f:68:5d:85:c8:e3:78:
2a:8e:32:53:81:67:ed:d5:47:bd:27:a1:65:10:2a:2e:c6:39:
d4:93:37:dc:d7:7f:03:38:85:0b:53:f0:60:d9:aa:f1:31:57:
43:a3:54:1d:26:66:58:cf:db:8c:77:97:48:bd:58:5b:10:c5:
e0:81:02:66:ed:e3:de:9c:b7:1c:72:fc:fe:d6:4b:a8:26:23:
21:12:f4:c6:8e:eb:92:6a:92:8d:64:d1:32:cf:5b:87:0a:b5:
01:b7:1a:c6:b1:6c:91:c8:17:9b:97:c0:f2:f7:3d:9e:d1:c8:
00:1b:93:06:72:f5:3d:46:a7:28:3f:08:14:ad:f8:37:6c:8a:
d7:9b:84:5b:4b:68:22:69:63:e6:98:36:5c:2c:da:83:92:6a:
10:ea:1b:4a:cc:dc:05:8d:a1:7c:84:fb:37:9b:b9:9f:3f:b9:
9b:a7:87:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:20:18 2026 by rpki-client