Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
File: MXBn6Bphoh_cFIWY72ull1f6A4A.mft (raw, json)
Hash identifier: aVq5rkO3Mc/oQnhZF7P/vxVfmfW+sM11hciGiyllhoE=
Subject key identifier: BD:24:6F:75:F4:29:6E:27:68:8E:2E:DA:D1:E0:36:09:27:A6:EA:57
Authority key identifier: 31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
Certificate issuer: /CN=317067e81a61a21fdc148598ef6ba59757fa0380
Certificate serial: 019D3940F47F1A350133587BD82ED85F5F1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
Manifest number: 0B17
Signing time: Sun 29 Mar 2026 11:00:51 +0000
Manifest this update: Sun 29 Mar 2026 11:00:51 +0000
Manifest next update: Mon 30 Mar 2026 11:00:51 +0000
Files and hashes: 1: BbwIiJ0dE-v7C232paq9FAoO3W4.roa (hash: WYFi/4LJa1Z0T8GMuSQAQGpR48GKoJ2nZUJN8YeKMtE=)
2: MXBn6Bphoh_cFIWY72ull1f6A4A.crl (hash: V88VhskhN6+Uw4ey4tbK38tIdehLbTiNEUne7m9WLqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:f4:7f:1a:35:01:33:58:7b:d8:2e:d8:5f:5f:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=317067e81a61a21fdc148598ef6ba59757fa0380
Validity
Not Before: Mar 29 11:00:51 2026 GMT
Not After : Mar 30 11:00:51 2026 GMT
Subject: CN=bd246f75f4296e27688e2edad1e0360927a6ea57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:64:5d:4d:a5:6d:ae:e9:8c:6f:f5:aa:31:71:
dc:a5:d7:e6:3c:32:99:fa:ea:fb:85:55:4d:9f:6d:
3c:5f:d5:d2:0c:ab:55:33:45:1c:52:0b:6a:e6:2d:
63:56:e9:9e:07:f1:97:67:7d:99:21:cb:ef:b2:83:
94:48:45:76:97:0b:63:b7:0b:55:6b:d9:08:ad:67:
b3:5c:6b:e7:72:da:49:2c:63:19:fa:92:e3:99:b1:
67:43:3e:a6:5f:d6:33:78:98:45:5a:fd:d4:10:61:
9e:ad:97:62:47:27:1c:11:47:59:5e:df:ad:2e:3a:
e4:a6:ba:7c:c4:57:22:e5:ab:78:43:fd:55:a5:44:
75:63:7f:7e:47:a9:86:e6:dd:82:6c:52:8a:48:6a:
41:f6:da:3c:d6:c5:2e:0e:12:7b:67:e0:19:0b:cd:
7f:2c:9c:f5:42:8b:98:b6:7b:43:65:b9:cf:6f:8b:
8d:a8:64:9e:35:8d:d9:57:4c:4e:a3:6f:1a:ce:89:
9e:a8:f3:55:d9:fc:73:5b:66:29:86:9b:f5:72:4d:
32:bf:36:98:68:31:91:b7:b8:e6:1c:40:58:87:3b:
1a:e6:ea:fd:3f:e2:63:21:d3:48:fc:c1:cc:55:7d:
ef:fb:55:37:7f:52:e9:94:e3:b4:68:28:46:a0:8c:
3b:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:24:6F:75:F4:29:6E:27:68:8E:2E:DA:D1:E0:36:09:27:A6:EA:57
X509v3 Authority Key Identifier:
keyid:31:70:67:E8:1A:61:A2:1F:DC:14:85:98:EF:6B:A5:97:57:FA:03:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MXBn6Bphoh_cFIWY72ull1f6A4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/58a4e1-dfc1-4d81-b2c6-216597e03f11/1/MXBn6Bphoh_cFIWY72ull1f6A4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:d7:65:3e:d8:f1:a1:0d:08:98:fc:db:ee:ca:dd:af:d2:ea:
cf:9e:ff:ca:3e:84:70:ef:94:cd:89:47:65:d0:58:85:03:3d:
73:25:c1:f7:e6:f1:0f:42:c5:81:1f:81:41:80:02:95:26:f2:
dd:df:27:3d:2a:68:54:26:4f:2f:59:83:79:e5:d0:5b:4e:a7:
d2:46:bb:bd:62:a2:49:ac:bd:09:a1:46:6d:fc:65:22:22:1e:
59:45:69:0e:f2:67:b5:18:05:b4:b1:8d:81:17:18:be:37:48:
70:68:76:af:01:ff:1f:a8:b1:99:de:39:f3:dd:46:96:06:99:
e6:19:28:d6:2a:ec:a5:f6:6d:da:d9:5d:bc:ee:ba:c0:ca:69:
32:83:44:35:1b:ac:40:53:35:e2:84:14:88:81:d3:d0:ce:78:
e4:7f:21:1f:56:99:ae:a9:e4:16:68:0d:0b:04:57:4a:b5:a1:
c1:86:21:1f:42:4d:d2:23:92:69:69:2c:30:01:94:74:3a:aa:
86:f3:69:f0:74:5a:3f:4e:d5:b8:04:c2:ba:e4:ae:ed:85:6a:
0f:f1:cd:24:db:89:55:89:d6:26:ec:37:0f:84:2d:c3:f3:63:
70:37:cf:d6:33:b9:a2:c2:a4:0b:d5:b9:d7:7d:e6:11:0b:f6:
6b:47:4a:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:46:00 2026 by rpki-client