Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: jSB/UdGNilF69et9XAFZLLWG+eLFdF4cNVQlDXkezmQ=
Subject key identifier: 0D:35:41:1E:51:3A:21:C6:A6:F5:25:E7:42:44:4F:7D:B9:9D:D0:DE
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 019D382E840EDFFB28DFE7DF939545B91CF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 1605
Signing time: Sun 29 Mar 2026 06:01:05 +0000
Manifest this update: Sun 29 Mar 2026 06:01:05 +0000
Manifest next update: Mon 30 Mar 2026 06:01:05 +0000
Files and hashes: 1: 1-2P8OWE-nT9yglepyYQAlaB5NfE.roa (hash: hXJitTuZsInHr+UtjyUxAZf5csxkpDvw7CF/W7Cve9U=)
2: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: TddnC6yrZKbtMeoV7W1tZauWEItlZGBHb42rXGrVdwg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:84:0e:df:fb:28:df:e7:df:93:95:45:b9:1c:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Mar 29 06:01:05 2026 GMT
Not After : Mar 30 06:01:05 2026 GMT
Subject: CN=0d35411e513a21c6a6f525e742444f7db99dd0de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c2:43:47:d6:4e:18:a6:bb:cd:5f:64:ff:e5:
46:83:77:01:23:e9:78:b5:11:4e:5d:35:4f:4b:de:
de:2b:49:11:b5:0c:3e:91:eb:d3:f1:81:51:71:88:
e9:23:d9:f5:23:0a:1f:dd:0a:a8:35:18:2a:a5:f5:
8b:52:44:ce:d6:f4:21:25:07:68:04:7b:0f:28:8d:
52:f6:78:24:c4:07:ae:be:77:d6:80:c1:46:7a:47:
e2:b6:d6:13:9b:fc:79:99:64:6f:c8:79:98:28:80:
06:0b:73:fa:cd:c4:42:54:6d:33:8a:b6:da:a0:0f:
b0:6f:f3:c9:4d:62:f5:b8:ee:1f:63:24:01:8d:71:
36:17:6e:75:38:21:a5:93:78:47:61:3d:72:de:96:
d4:f9:4d:1d:60:67:2d:08:e0:03:a1:36:92:e3:09:
af:59:35:f3:4e:d5:b7:65:05:c4:8d:78:ae:51:13:
11:f1:a2:37:a9:74:60:61:a0:02:84:05:a6:9a:e7:
3d:48:b3:f0:0f:83:5c:16:dd:93:bb:7a:57:ef:7d:
5c:6d:37:15:65:b7:62:3c:87:84:32:e6:39:52:42:
41:0a:4c:ec:61:86:d2:f5:28:02:c0:20:41:0d:8c:
77:37:45:b8:8e:70:b2:f8:a3:28:14:41:90:b4:5c:
34:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:35:41:1E:51:3A:21:C6:A6:F5:25:E7:42:44:4F:7D:B9:9D:D0:DE
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:a6:57:e0:40:55:f3:99:82:ce:c8:05:4d:86:85:62:f5:43:
e5:4f:52:63:9e:d4:48:38:95:97:92:9d:e5:90:31:6b:11:4b:
c2:2d:9c:51:bc:d4:c7:fc:7e:7e:41:92:49:d1:10:7a:90:c8:
af:a0:36:64:05:7b:97:fb:39:e7:66:3f:82:dd:cf:47:c8:e6:
bf:5c:e6:ff:8d:0f:f5:fc:b7:dd:65:62:bb:d9:b8:c9:04:5c:
e0:c9:89:96:ec:12:b4:f4:07:3a:4a:af:09:26:f4:7e:c3:08:
12:a1:3b:c4:41:50:26:f5:ec:30:c7:67:8a:73:5a:88:90:0d:
66:33:fc:19:c1:15:5e:bd:10:3a:90:da:e5:3b:5a:2d:96:0a:
1b:79:eb:ab:f1:a2:06:c7:0d:3d:61:e2:69:4e:58:bf:fd:3e:
e7:39:f8:1b:1d:ca:11:a6:66:54:38:d2:0a:39:58:b8:e3:9c:
98:50:c9:c1:7f:e8:30:2c:30:6e:fe:d6:4e:d1:ff:ab:c6:50:
dd:f9:1c:31:b7:f3:44:cd:4a:be:91:01:b3:a4:1b:b2:04:c2:
24:dc:b2:01:cc:e3:ab:0a:e7:de:8e:a5:59:98:5c:38:58:63:
af:dd:a6:bd:2b:48:7a:4f:be:17:96:17:fd:94:11:91:35:3c:
03:42:0c:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:24 2026 by rpki-client