Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: 8zm/HCYEcAebVJb7qGCKN6UqXZfG0/gS176HKy2Spy4=
Subject key identifier: 75:03:44:61:48:32:99:E5:A2:27:D8:12:A0:9D:C5:1C:3C:8F:7E:EA
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 019E314EAAE23F5F4E04E5F8E8574124143D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 1686
Signing time: Sat 16 May 2026 15:01:39 +0000
Manifest this update: Sat 16 May 2026 15:01:39 +0000
Manifest next update: Sun 17 May 2026 15:01:39 +0000
Files and hashes: 1: 1-2P8OWE-nT9yglepyYQAlaB5NfE.roa (hash: hXJitTuZsInHr+UtjyUxAZf5csxkpDvw7CF/W7Cve9U=)
2: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: ob6jmL4fREUyjUp+tbY/v92JngZWzapWsDk+NWbkUyU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:4e:aa:e2:3f:5f:4e:04:e5:f8:e8:57:41:24:14:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: May 16 15:01:39 2026 GMT
Not After : May 17 15:01:39 2026 GMT
Subject: CN=75034461483299e5a227d812a09dc51c3c8f7eea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0b:f7:e1:9c:c2:a8:0d:2d:69:21:56:65:f4:
d2:c7:cb:46:70:ba:c1:36:41:8e:92:b8:20:27:c8:
36:6e:97:57:1d:cd:6d:68:60:49:15:4b:9f:e3:06:
df:6a:01:ce:b9:c0:96:ab:99:43:97:57:63:b3:64:
12:14:1b:1f:95:14:6c:cf:41:d7:7d:47:91:c9:44:
a4:03:96:0a:09:92:60:07:3f:a2:05:d3:8b:d2:c8:
cf:04:80:ba:6e:54:d8:45:84:88:da:58:8f:f5:c0:
b7:2d:de:1e:cc:24:36:63:40:47:27:28:74:0e:bd:
2b:0c:88:b5:69:c0:35:d6:5c:9d:61:f4:48:ac:43:
76:3c:4f:39:41:c1:cc:b4:66:fa:4c:94:9c:fd:7b:
c2:9d:bb:7b:c0:95:b0:c5:fc:61:af:54:41:36:74:
7f:b1:77:83:d0:9b:75:e2:d8:63:c9:6c:93:5d:9f:
bb:29:3e:c2:94:86:81:80:e9:42:c6:60:d9:53:bf:
23:12:22:4d:e2:ed:e3:e9:25:11:ef:52:f8:b2:f0:
fd:cf:98:c1:9e:fd:5c:f1:25:cf:ba:9d:a0:4f:81:
34:4c:fc:ca:48:38:80:a7:15:87:86:a4:0d:6b:61:
6f:60:58:81:91:b4:ca:63:4c:f0:bc:88:67:01:65:
3c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:03:44:61:48:32:99:E5:A2:27:D8:12:A0:9D:C5:1C:3C:8F:7E:EA
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:fb:d6:96:dd:91:0f:a6:bb:d5:a9:28:ac:69:ef:d3:49:31:
a6:41:cb:82:3a:23:f1:3c:71:55:bd:b3:ba:21:a6:9f:45:7e:
37:b1:bb:9a:9b:7f:4e:96:68:a2:cb:58:a3:8f:27:40:6e:cd:
72:68:10:90:b4:69:19:cf:7d:0e:75:2a:36:ec:34:df:7d:a7:
bd:5f:9f:80:35:82:77:3c:11:d7:98:20:d1:d4:77:40:d5:16:
04:bf:91:96:c7:2c:b8:89:e0:53:1d:7b:7b:d4:f3:ae:10:6c:
db:c8:01:6f:b1:42:58:ff:10:15:1d:c4:f7:3a:18:2b:40:b0:
5e:01:73:bf:93:59:6c:db:ff:ca:44:ec:b4:58:f8:d6:23:ac:
a8:f3:94:4b:3b:25:26:a9:18:78:d5:ef:7b:1b:e0:18:26:db:
3d:c0:86:ed:35:31:fd:98:3c:d4:63:39:66:02:32:bb:92:f8:
5a:29:8b:0e:42:65:a0:c1:ce:6c:0b:7e:a1:34:ae:68:5a:c1:
5a:58:e3:46:0f:d7:95:b3:6f:21:60:15:11:f9:6b:87:ca:96:
63:93:da:1d:06:1e:9f:90:92:d2:a5:00:11:2e:35:00:f2:f6:
b1:b9:de:f6:69:a6:76:f1:93:cd:c4:28:53:ae:2b:2d:af:f3:
f8:a8:e5:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:29:33 2026 by rpki-client