Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
File: mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft (raw, json)
Hash identifier: l/5QvovnI+nZopS/0VLIqM7ytC40ummbtD+KO3XF6GU=
Subject key identifier: 87:BE:DB:B5:F2:4D:4B:E1:FE:6D:1F:4E:DC:66:34:B6:A0:12:21:A6
Authority key identifier: 99:B0:42:5B:71:C2:B5:1C:D7:EB:E4:7D:3E:FE:7C:B9:86:1B:4D:82
Certificate issuer: /CN=99b0425b71c2b51cd7ebe47d3efe7cb9861b4d82
Certificate serial: 019D39415240F5CA9B01D6EF0464ACE4D824
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
Manifest number: 0E65
Signing time: Sun 29 Mar 2026 11:01:15 +0000
Manifest this update: Sun 29 Mar 2026 11:01:15 +0000
Manifest next update: Mon 30 Mar 2026 11:01:15 +0000
Files and hashes: 1: ateB1eMixo1Q5bIvGLLCwGfK3Yk.roa (hash: hmzWGsdutZHKJhCIH0ky2UAWl4Fsdp5ElC7q6jHDT04=)
2: mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl (hash: B48b4H8gIIjyivwNKnCuYSApn7K3bkPNI4wNmcwx/Fw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:52:40:f5:ca:9b:01:d6:ef:04:64:ac:e4:d8:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=99b0425b71c2b51cd7ebe47d3efe7cb9861b4d82
Validity
Not Before: Mar 29 11:01:15 2026 GMT
Not After : Mar 30 11:01:15 2026 GMT
Subject: CN=87bedbb5f24d4be1fe6d1f4edc6634b6a01221a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:6f:2f:f1:38:33:58:c0:de:68:da:59:d7:5a:
19:d1:1a:37:94:46:02:77:b0:9c:44:8c:2d:d3:8a:
60:19:48:86:49:9f:91:31:1d:ac:3c:79:70:ff:c9:
ca:53:9e:e4:1a:a5:e2:59:df:83:60:c5:34:65:c6:
98:09:a5:02:80:e2:26:ce:e7:3a:f6:a5:b7:0f:ba:
65:2e:cd:e3:a2:01:36:62:7c:30:c7:4e:47:7b:3a:
a2:1b:92:63:83:66:f6:44:9b:e9:14:1a:ea:21:ba:
83:e7:f7:8e:3e:f1:7e:d2:25:58:22:b0:07:29:54:
ef:cf:2e:ee:65:b8:95:d8:c5:b6:e4:9f:5c:b8:3a:
15:1b:c9:70:ae:89:a8:91:79:29:e3:10:b0:51:20:
40:0e:15:07:99:74:db:4a:96:27:72:44:66:15:5d:
8b:13:4f:82:eb:59:8c:27:c3:cb:3a:76:74:75:26:
ae:d7:5d:c6:56:3d:cf:d3:4f:2b:d7:42:ed:6e:84:
ff:5e:66:4c:60:4c:11:14:a8:76:2b:ad:bd:5f:9d:
f1:f2:8e:d5:04:7c:9b:d9:24:31:16:29:2b:9d:59:
3e:6b:f1:4c:8e:f3:9d:09:e7:f6:d9:75:ed:5a:9b:
50:f7:72:d2:da:49:85:18:9e:7f:d9:73:85:a0:b7:
9f:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:BE:DB:B5:F2:4D:4B:E1:FE:6D:1F:4E:DC:66:34:B6:A0:12:21:A6
X509v3 Authority Key Identifier:
keyid:99:B0:42:5B:71:C2:B5:1C:D7:EB:E4:7D:3E:FE:7C:B9:86:1B:4D:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mbBCW3HCtRzX6-R9Pv58uYYbTYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/9e982d-ad5b-4100-8d9d-d1efceec34c1/1/mbBCW3HCtRzX6-R9Pv58uYYbTYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:65:17:e9:77:ac:93:a0:f1:e2:a4:07:fd:10:79:db:53:ed:
63:0d:6b:60:c2:ce:fa:72:75:4d:d7:c8:1e:90:94:56:71:5e:
23:3b:7d:82:9b:b8:9f:8d:74:77:db:52:52:fe:ed:29:d3:ec:
84:1e:c6:7b:45:c5:3a:07:5a:6f:a5:06:7c:35:15:d4:5a:95:
fa:20:8b:63:12:24:c3:c2:95:03:23:3d:68:0b:c3:ec:52:8d:
63:de:46:10:a0:e9:a7:6d:2a:3a:7b:b7:75:ed:f4:c2:35:4f:
18:ff:df:36:40:d3:70:b7:41:f6:30:8b:41:a1:c1:06:c9:26:
01:f3:05:87:70:a1:1e:38:28:b2:6d:30:8a:66:ac:06:68:87:
e1:6e:0b:99:51:19:86:23:41:ad:2b:cd:fe:70:4e:38:bb:85:
be:d6:0c:59:86:0e:f8:33:7a:c8:2b:f9:5f:4b:dc:47:31:ed:
8f:81:fe:67:c2:1f:2b:3a:7d:87:cb:f0:32:75:1c:70:e1:f5:
52:a3:ed:c4:df:8e:45:04:25:44:d0:36:b3:e9:95:28:3c:af:
70:ca:53:83:0f:39:93:a4:7a:9c:f1:e9:1f:8e:7f:74:f0:18:
2a:e3:55:fe:06:cf:0c:fe:c4:db:8f:e2:21:53:d7:88:23:64:
03:47:fe:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:21:59 2026 by rpki-client