Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
File: bws2ahNvj8xd9SPI1G95B5HBs7s.mft (raw, json)
Hash identifier: ZDJF0rysoETqabvSZZjb0YBb/p3LjGHJgsZfrGoVwpg=
Subject key identifier: 12:FE:05:8E:85:BE:D5:BA:AA:F4:4F:FD:C6:54:EE:A3:40:69:C8:66
Authority key identifier: 6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
Certificate issuer: /CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Certificate serial: 019D389C25DFB3D22BF730BA9C4F2390448E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
Manifest number: 1103
Signing time: Sun 29 Mar 2026 08:00:50 +0000
Manifest this update: Sun 29 Mar 2026 08:00:50 +0000
Manifest next update: Mon 30 Mar 2026 08:00:50 +0000
Files and hashes: 1: bws2ahNvj8xd9SPI1G95B5HBs7s.crl (hash: vazart/etmLaPGOr8ICtVgvUqUcUaJda51fnxJP6/OA=)
2: egKdfoe4jr_OcoA2zw7t88jvhNw.roa (hash: Rm9ZrDiXC3MyZptxhCKpvW8pxI8d9wrZAzUEIDnaY8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:25:df:b3:d2:2b:f7:30:ba:9c:4f:23:90:44:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f0b366a136f8fcc5df523c8d46f790791c1b3bb
Validity
Not Before: Mar 29 08:00:50 2026 GMT
Not After : Mar 30 08:00:50 2026 GMT
Subject: CN=12fe058e85bed5baaaf44ffdc654eea34069c866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:83:72:21:a5:f8:ab:35:e2:29:91:e0:d1:c9:
94:98:1c:81:ec:b1:7f:be:3b:f4:d1:6e:6b:61:22:
2a:b4:5e:8c:a2:1a:c5:38:58:d1:83:f5:ab:3c:d2:
64:88:26:4b:70:08:07:69:79:43:9d:57:0e:d2:3f:
b6:c2:28:fa:7a:2a:ad:14:35:1d:55:e3:4a:a5:ac:
6f:50:d1:49:9c:3a:a6:70:5a:84:a3:d0:63:c6:5e:
52:00:46:15:2a:6c:ce:11:91:45:e5:9c:38:92:23:
65:ad:73:88:fc:1a:83:96:1d:ad:78:77:a0:5c:92:
d9:ee:6b:1e:5f:a9:3c:f0:09:00:9d:14:4f:a1:f6:
04:8a:de:8c:d4:c1:e7:6a:88:6d:e1:00:32:68:50:
67:62:ce:e9:d0:d0:70:9e:a0:82:1b:a8:cb:63:79:
70:e4:60:81:5a:ad:0d:6c:88:0c:20:41:d1:77:a2:
c1:52:8f:38:dc:1c:80:26:54:76:01:e5:b7:ca:69:
42:4d:d9:38:a1:0d:5a:da:59:6f:a2:1a:e8:e8:c1:
07:41:06:d3:4b:34:61:d2:8f:0e:5d:a4:a9:e8:b8:
9d:40:82:19:d0:c1:d6:94:f6:70:ed:b8:0a:01:ab:
46:cf:27:75:af:db:78:06:7c:12:d1:44:5a:84:e5:
2c:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:FE:05:8E:85:BE:D5:BA:AA:F4:4F:FD:C6:54:EE:A3:40:69:C8:66
X509v3 Authority Key Identifier:
keyid:6F:0B:36:6A:13:6F:8F:CC:5D:F5:23:C8:D4:6F:79:07:91:C1:B3:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bws2ahNvj8xd9SPI1G95B5HBs7s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/d23dde-e24f-4258-a7ce-eef6c2f45176/1/bws2ahNvj8xd9SPI1G95B5HBs7s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:65:3f:a5:b4:d3:15:07:09:1f:b3:14:d0:cb:15:fb:f7:f8:
f6:3d:ab:ac:7e:f4:fc:29:5b:e8:0e:63:d4:75:bd:c0:bc:96:
99:e7:4b:c1:fe:b6:04:46:4b:9f:de:52:7a:05:71:ca:a3:1e:
cf:ba:15:fe:97:2b:da:32:82:74:a2:04:d4:31:d3:09:5f:bd:
6a:87:a9:36:15:24:87:bc:ac:52:97:53:60:1d:d4:e6:6e:28:
f1:8a:4c:dd:02:35:10:bf:da:cc:da:c2:79:22:e1:17:62:cd:
e6:1f:60:c5:fd:69:46:68:2c:fc:bd:f7:2b:c2:bb:80:68:3e:
4c:bc:15:93:58:04:75:8a:91:7a:c0:3d:5f:d0:9b:b1:49:51:
33:f6:da:37:2b:69:45:98:a2:53:04:30:be:f7:31:fd:2b:53:
3b:a1:e2:51:19:64:dd:2f:cd:d1:ab:8a:1d:e9:e2:1b:d5:85:
f5:b5:80:d3:38:a1:6b:d7:6b:d7:26:eb:f6:bf:a6:6c:aa:f3:
da:7d:12:9a:76:39:53:23:2f:52:c9:0c:f3:b5:33:2b:27:66:
0d:43:34:46:f1:f0:c7:0b:b0:67:9c:98:34:33:a2:2a:c9:45:
5b:43:36:3e:44:6e:55:8d:b1:69:b0:d3:88:bb:f9:b7:1f:8f:
0a:ad:23:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:09 2026 by rpki-client