Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: bTw0ICK/TNgPDpU22Hnuiw8B7iBgs6va+mOrjECXxL8=
Subject key identifier: 27:C7:C6:62:80:46:38:96:6D:1C:85:F3:5C:52:11:01:BC:26:8C:57
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 019D37F70D5185CA29D75478CE122AD4421D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 0CFB
Signing time: Sun 29 Mar 2026 05:00:30 +0000
Manifest this update: Sun 29 Mar 2026 05:00:30 +0000
Manifest next update: Mon 30 Mar 2026 05:00:30 +0000
Files and hashes: 1: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: Dhth7qCYdr3FpUl1mlPyersDNN/8bsdWAruo9iMTP38=)
2: vnH2NBbn3Q3LtUPrFoU9by3eF_0.roa (hash: UPdVY5abeB5lX+0Aslp3HBLsCZjZtVMWKp5zyq6x038=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:0d:51:85:ca:29:d7:54:78:ce:12:2a:d4:42:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Mar 29 05:00:30 2026 GMT
Not After : Mar 30 05:00:30 2026 GMT
Subject: CN=27c7c662804638966d1c85f35c521101bc268c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:73:57:cc:f3:b2:71:39:c3:f7:48:56:33:cc:
a1:5d:44:6a:f5:df:2a:15:8d:3d:06:b5:cf:f9:2b:
5d:e5:28:74:9b:3e:a6:8c:4e:6f:93:7f:18:14:29:
08:2e:f4:3d:c1:34:da:d7:57:08:f4:d3:86:02:91:
cf:cb:27:67:30:3c:85:91:eb:87:15:af:7e:35:8d:
41:29:b9:70:3a:6a:1b:27:f0:2a:d7:f0:58:8e:7a:
8c:bb:93:01:a8:3a:6f:c7:18:a5:2a:65:9b:98:4d:
8c:50:f5:f9:c0:17:7c:85:05:c4:85:ed:76:97:87:
ed:dc:f7:fc:cd:8a:ac:de:d9:93:93:2e:11:9f:b9:
10:ba:5c:e2:96:ed:c0:90:6d:ae:3e:b6:ff:02:67:
06:b0:c7:d7:e1:33:4f:ae:b9:d0:a7:39:dc:7f:ef:
d2:8b:57:1f:c7:4c:b3:2f:21:ec:83:26:d5:dd:6a:
1b:b5:70:f3:c3:9e:58:74:6c:df:54:79:ed:ee:fc:
41:df:5e:61:64:55:d1:7f:48:63:06:fd:69:2d:eb:
6a:29:51:e1:54:4e:29:d6:a5:59:8a:29:e2:be:d4:
71:2b:b8:1a:77:e5:7d:c3:74:b1:b6:26:ad:a0:12:
20:c3:29:29:4d:26:d1:bc:4b:27:eb:df:a2:a9:25:
a3:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C7:C6:62:80:46:38:96:6D:1C:85:F3:5C:52:11:01:BC:26:8C:57
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:e7:15:28:81:ef:27:34:ca:5a:69:40:e6:b1:c6:ff:bd:6b:
f2:d2:e4:21:6a:32:e0:c4:9c:bd:0a:9b:a1:76:0c:36:e6:45:
47:80:23:d2:d6:c7:42:78:fa:99:98:5d:a3:29:69:96:82:4f:
2c:ed:a6:76:68:62:07:c8:eb:a0:64:26:98:76:6c:9f:61:ed:
fe:48:33:45:05:72:65:86:34:94:20:b7:6f:f0:38:ba:a8:37:
3b:d7:d0:98:6f:81:bc:b4:32:80:22:d3:bf:4b:5e:d1:e2:b0:
52:46:7a:ff:30:5c:ab:a0:78:92:c5:13:d8:e5:80:9c:45:b6:
f7:cd:4f:3c:56:4b:ce:4c:55:9f:c8:a5:94:66:d5:9d:fd:30:
e6:59:26:92:52:c2:35:bd:ed:a0:04:dc:b9:c9:f8:e5:d8:7e:
14:ff:54:eb:9f:86:e6:c4:87:e5:84:bf:1d:ce:fa:52:91:15:
d3:2d:fc:fa:a0:a3:40:85:b9:5e:27:aa:df:90:e0:ad:d1:42:
28:70:41:e7:7e:fb:ef:29:54:ff:49:e5:68:f5:0c:29:38:a1:
ec:a4:99:52:0f:49:07:23:e1:0e:46:b2:56:89:30:92:9b:43:
2d:a0:0e:dd:cc:40:cb:8c:f4:d9:cf:b6:b3:bb:ba:69:e0:45:
30:13:7e:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:23 2026 by rpki-client