Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
File: bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft (raw, json)
Hash identifier: DohBLZlc8rGZ/2TP8t9aS5cydiT62hwBDcqx23wJvV4=
Subject key identifier: 42:9A:0A:87:24:E4:35:BC:D5:8A:07:E8:71:A6:78:C9:EB:3D:BE:DB
Authority key identifier: 6D:64:A8:67:F4:5C:48:F2:02:7B:00:B8:3C:77:79:6F:BB:BE:03:28
Certificate issuer: /CN=6d64a867f45c48f2027b00b83c77796fbbbe0328
Certificate serial: 019D37F7102DAC95938D80878C4A9504FF87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
Manifest number: 043A
Signing time: Sun 29 Mar 2026 05:00:31 +0000
Manifest this update: Sun 29 Mar 2026 05:00:31 +0000
Manifest next update: Mon 30 Mar 2026 05:00:31 +0000
Files and hashes: 1: _kQKugUbFDKzjAHcApu2141cq6c.roa (hash: /1a50vxH9IeUabW9ZG6RdtEES2xJ9jyKfKc7dsU4ebc=)
2: bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl (hash: TixGVAwUQpkVeNKc/NlQV7AVlb5C1nAHlCM65qJJ9uk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:10:2d:ac:95:93:8d:80:87:8c:4a:95:04:ff:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d64a867f45c48f2027b00b83c77796fbbbe0328
Validity
Not Before: Mar 29 05:00:31 2026 GMT
Not After : Mar 30 05:00:31 2026 GMT
Subject: CN=429a0a8724e435bcd58a07e871a678c9eb3dbedb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e9:5f:aa:6d:03:05:76:9d:1a:53:f3:e0:d0:
27:da:42:17:ce:c6:fc:4d:50:4d:d5:91:fc:00:cd:
c8:bf:58:74:f7:af:57:c6:f7:dd:4f:e8:67:b5:bc:
72:3e:99:12:f8:4a:19:2e:d3:55:58:b8:71:86:00:
98:3c:f6:3c:63:c5:7e:de:aa:46:77:4e:c9:c2:e4:
7c:11:d4:ec:8f:77:1f:24:d8:b3:75:fa:8d:3c:b5:
9c:b6:f6:d1:2f:04:d7:9d:89:37:d5:17:bd:32:1f:
ba:d5:9d:a7:0b:b0:b1:c8:59:c3:46:d2:e3:a7:63:
86:15:c4:a6:c0:7c:36:6f:35:6a:ea:23:6d:a8:6a:
6d:1a:eb:48:27:bb:6b:6d:7b:20:35:bd:37:42:22:
25:aa:62:81:c1:42:1f:99:cb:ea:b4:e0:8b:d2:e9:
f7:45:5f:26:05:3d:d9:0b:da:66:94:b7:62:6e:1c:
0d:b6:f1:01:93:2d:0d:a7:e7:76:21:c4:d7:67:a4:
78:ef:a3:3e:6b:8f:aa:ef:81:55:b4:c4:1a:40:5d:
65:95:ff:cc:d6:0f:6f:e4:79:8d:8d:e7:a7:25:ee:
12:88:a5:e9:35:f3:13:55:00:6f:75:be:f1:90:9d:
ed:04:0b:6a:24:85:5d:03:03:c3:26:88:09:a7:7e:
f6:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:9A:0A:87:24:E4:35:BC:D5:8A:07:E8:71:A6:78:C9:EB:3D:BE:DB
X509v3 Authority Key Identifier:
keyid:6D:64:A8:67:F4:5C:48:F2:02:7B:00:B8:3C:77:79:6F:BB:BE:03:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:6a:a8:eb:81:62:48:65:fc:fa:e9:28:3e:d6:02:56:8e:73:
13:ae:e0:e7:d4:c4:ec:cb:a1:2e:86:a3:60:26:e2:01:8d:1a:
13:b6:87:49:73:23:08:6a:2f:ca:df:0c:b4:ab:69:71:bf:54:
c9:da:3d:9e:78:40:df:c4:af:90:e4:b3:be:f7:84:c5:8a:8e:
97:e9:fa:ce:8a:d6:bd:3f:3f:4a:a9:a2:f3:d0:c3:14:eb:73:
c4:27:ab:8a:60:4f:e7:c1:46:1e:0e:e4:bd:2d:0e:84:71:0c:
ed:9c:a0:1b:48:97:81:3c:80:2d:37:ea:bb:3e:cc:e7:11:b5:
13:63:01:85:46:7c:29:7e:91:d8:6c:97:0c:2e:07:34:ca:60:
d2:af:7a:46:37:16:60:a1:a1:d2:0d:06:7e:da:46:60:45:5a:
79:a3:9d:bb:ce:90:d2:6f:ea:45:08:0c:64:f5:5e:0a:f2:5f:
65:2a:e7:07:68:99:41:32:80:0c:45:9a:5b:be:e6:f3:cc:c0:
4d:a4:52:37:b3:c8:cb:96:98:22:59:44:4b:74:5c:7a:5e:7e:
fa:3f:98:b6:b3:7e:73:4e:54:8c:20:36:3a:6a:55:d6:26:66:
f5:64:ea:27:e2:d0:00:14:70:52:8b:ef:cc:95:51:20:bb:3f:
ed:a5:8e:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:29:39 2026 by rpki-client