Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
File: bSPOewwQBo-8RMAhlD4zkBPyruA.mft (raw, json)
Hash identifier: I5hq6x50O8csN1p1uYOzjaBHRYJmrQkTcwv8dfpKHX0=
Subject key identifier: BD:6D:CD:EC:81:31:20:B7:7F:15:C2:9C:F2:69:70:E5:F1:65:30:68
Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Certificate serial: 019D38D31DCBA6157F7B1F4F06D1B89B477D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 09:00:52 +0000
Manifest this update: Sun 29 Mar 2026 09:00:52 +0000
Manifest next update: Mon 30 Mar 2026 09:00:52 +0000
Files and hashes: 1: WK4FeKC76gPpIjRhyORnL_0frZU.roa (hash: vdHNIiugtJJb19ih4gpWPEIdemNrQgRmwJqyp8Z7ys0=)
2: bSPOewwQBo-8RMAhlD4zkBPyruA.crl (hash: +hSdAON4URUc+hBXWBIulZgBstdBgapuDdd7df/k5A8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:1d:cb:a6:15:7f:7b:1f:4f:06:d1:b8:9b:47:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Validity
Not Before: Mar 29 09:00:52 2026 GMT
Not After : Mar 30 09:00:52 2026 GMT
Subject: CN=bd6dcdec813120b77f15c29cf26970e5f1653068
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f9:55:13:38:92:c9:68:d6:0e:00:3a:40:12:
d4:e9:be:b5:d4:a6:67:2e:7e:2b:30:f1:6a:4a:ff:
dd:4b:a4:cd:9a:79:17:d1:44:24:42:25:12:d3:62:
be:37:b1:22:ce:c5:31:f2:e1:14:3e:9e:62:b6:91:
5e:f2:84:53:54:27:de:e4:48:58:01:53:c5:f7:50:
c1:01:a5:c0:13:03:bc:76:f2:ee:ec:e7:91:0f:6c:
e9:d5:f8:36:96:62:a8:6e:f6:58:94:62:a0:17:5d:
3c:1c:a5:df:91:52:10:90:10:9f:7f:6f:a1:6f:3b:
c0:14:87:58:10:81:9b:1a:ec:1a:91:b3:83:2d:6e:
ec:99:55:c0:40:c1:82:20:17:af:3f:f0:02:3c:4a:
e3:b9:f6:44:33:33:b0:4f:50:28:c9:7d:0d:53:c7:
29:29:b8:dc:1d:dc:52:ba:17:a2:48:d3:2e:f0:f6:
46:b5:b5:0b:3c:f3:7c:86:fe:8a:a8:8a:af:71:d5:
ca:9e:ad:d3:85:05:d0:81:26:60:58:2b:77:4c:3f:
aa:70:a3:82:bf:62:68:c0:96:14:d1:1f:d1:4c:3e:
c6:a1:9f:2c:66:f3:ac:88:de:63:7f:f6:64:93:b8:
e3:bf:c3:8f:6d:f1:8c:73:d0:8f:76:a7:b1:aa:b8:
c4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:6D:CD:EC:81:31:20:B7:7F:15:C2:9C:F2:69:70:E5:F1:65:30:68
X509v3 Authority Key Identifier:
keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:7d:8e:db:86:a8:c2:d6:77:42:db:6f:43:d1:43:fb:29:42:
51:0d:49:24:c6:3e:a0:2b:15:3f:1b:1b:dd:8d:6a:c8:02:0c:
98:d2:1f:9b:8a:3a:d3:15:ad:ab:ea:ef:d1:db:25:ca:fb:fc:
51:1e:9b:a3:5f:40:c0:83:fa:ab:a5:88:de:80:19:c6:8d:ca:
dc:f7:b9:d6:5c:e8:ab:9f:a4:48:36:52:96:b2:74:06:74:88:
b1:a3:27:63:db:8f:99:cd:31:44:57:6a:fd:fa:53:f5:75:3b:
d1:45:43:01:34:cf:41:18:ba:90:81:0a:46:80:6d:c6:5c:8a:
a9:07:7f:7b:88:35:a5:6a:70:d5:73:aa:ac:66:89:64:61:d6:
f7:c1:24:64:bf:ca:54:36:f8:49:31:87:33:12:9e:10:b5:fe:
d1:ce:5d:fb:a8:d7:a0:e8:b4:16:4e:83:a2:39:1a:fb:02:70:
87:9b:e1:13:b7:6b:f2:51:b4:22:80:42:81:fe:f7:62:80:20:
f6:2e:e1:89:39:b3:81:58:41:e4:fd:22:46:ed:3d:16:51:3e:
06:35:19:9b:17:14:24:72:3a:f8:86:6e:c9:20:34:e1:e8:8d:
00:af:27:1e:cb:b1:25:95:75:5b:d5:8d:3e:fe:a8:86:fe:b9:
55:7c:38:55
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:29:58 2026 by rpki-client