Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
File: bws2ahNvj8xd9SPI1G95B5HBs7s.mft (raw, json)
Hash identifier: +vy7L6L5TdzNgjhfseuMC2Nc771u9DNLAVxD8dOvTLA=
Subject key identifier: 0B:7F:E5:E3:1A:3F:FA:E2:7D:3F:1F:65:B8:01:2C:E0:2E:18:52:34
Authority key identifier: 6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
Certificate issuer: /CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Certificate serial: 019E3F40821883CD45656FB0A0AA0FCD5109
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
Manifest number: 118B
Signing time: Tue 19 May 2026 08:00:52 +0000
Manifest this update: Tue 19 May 2026 08:00:52 +0000
Manifest next update: Wed 20 May 2026 08:00:52 +0000
Files and hashes: 1: bws2ahNvj8xd9SPI1G95B5HBs7s.crl (hash: 0kn7VtstHXK1MWHURIw2RGORMwNuprcSU2mslObX5dk=)
2: egKdfoe4jr_OcoA2zw7t88jvhNw.roa (hash: Rm9ZrDiXC3MyZptxhCKpvW8pxI8d9wrZAzUEIDnaY8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 20 May 2026 08:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:3f:40:82:18:83:cd:45:65:6f:b0:a0:aa:0f:cd:51:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Validity
Not Before: May 19 08:00:52 2026 GMT
Not After : May 20 08:00:52 2026 GMT
Subject: CN=0b7fe5e31a3ffae27d3f1f65b8012ce02e185234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:40:c6:02:b8:b3:0c:a9:f1:4c:de:ce:94:48:
14:41:e9:eb:74:1d:1b:23:02:d4:f4:d0:02:dd:4d:
e9:f4:96:8f:35:d0:54:9a:07:56:fc:23:82:37:6e:
a6:36:d5:1e:4d:a3:e9:27:69:b5:65:ba:b9:a0:72:
21:13:f3:0e:3a:a1:f2:76:8d:fd:6c:78:30:5c:9a:
22:3a:45:e5:9e:fc:59:e9:d3:26:33:38:cf:70:7f:
03:e7:d2:2f:8d:5e:ec:ed:ce:8b:d2:4c:8e:af:ea:
53:1f:17:b5:e3:af:2a:8c:8b:18:9b:4b:a7:69:57:
f3:9a:d1:10:0a:e4:6f:4f:22:de:ab:fc:e0:d5:c2:
75:4b:8c:a7:d3:3d:20:69:9e:f7:7e:29:b1:2f:3b:
7a:ea:df:59:5f:41:2e:ce:f2:4f:00:db:d8:cd:d8:
b7:30:5d:5b:18:4e:62:0d:7c:0d:13:56:43:e0:5c:
6a:2d:6b:44:8e:2d:6c:a8:98:d7:73:28:24:e8:a1:
be:ad:da:1c:52:97:a2:94:c0:53:40:21:34:8e:c2:
fb:c8:1c:18:ec:5f:5a:d1:33:af:5f:48:5b:1b:12:
77:10:d4:05:f5:3e:be:af:06:68:56:17:68:66:c6:
e7:a0:bc:98:13:cd:a1:51:33:45:59:24:27:f1:f4:
d8:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7F:E5:E3:1A:3F:FA:E2:7D:3F:1F:65:B8:01:2C:E0:2E:18:52:34
X509v3 Authority Key Identifier:
keyid:6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ef:a2:94:fc:3d:22:e0:d3:23:00:89:57:e2:ae:1a:7a:7e:b8:
d8:95:16:88:f9:04:5a:69:0c:aa:2b:31:52:72:7a:4b:09:c2:
12:b4:3c:37:34:e5:ea:58:92:ae:ea:c2:b1:a6:bd:e4:92:03:
97:e8:29:c6:b4:d6:c8:12:60:3a:3c:ce:2b:4e:1d:c9:ef:fb:
6b:6f:12:01:ba:07:d2:4c:47:7b:81:e0:e8:f3:d5:a7:a1:a1:
81:8b:f6:f6:f0:26:78:42:17:fe:88:26:5c:4d:81:c6:10:7c:
90:9c:41:e4:90:cd:22:24:a6:c0:bc:21:ff:7c:62:2f:4c:54:
46:e2:d0:29:6c:66:1f:62:ae:05:cd:2a:86:12:48:30:1f:c0:
32:4c:26:01:85:e0:f3:b4:d1:18:74:b2:79:63:7a:2e:fd:37:
db:f3:3c:0e:f8:ba:95:ff:fb:17:b6:39:c4:1d:17:d2:c0:f6:
c8:09:32:33:fd:3b:d5:18:6b:f4:9c:a7:27:8f:87:e0:d8:d7:
55:d1:a6:51:80:72:96:70:5a:00:f5:39:8f:4a:a5:dc:72:4d:
98:e9:71:35:8b:2c:2c:f4:58:5d:86:00:4e:fd:bb:d0:c0:a5:
0d:9d:13:a2:3f:4b:f7:22:2e:e3:3d:31:71:17:a8:b9:6a:78:
01:f2:a4:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 19 15:44:13 2026 by rpki-client