Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
File: b2oouFuReYIHK59PQG1-sJmROjE.mft (raw, json)
Hash identifier: O9svgb5wPOGXBPYp1x7REmrITqPEOpUHnHCmtqiH2Io=
Subject key identifier: 8C:E7:11:B8:59:7A:0A:28:BA:49:C5:A7:8A:6D:A1:B4:C7:40:B7:C0
Authority key identifier: 6F:6A:28:B8:5B:91:79:82:07:2B:9F:4F:40:6D:7E:B0:99:91:3A:31
Certificate issuer: /CN=6f6a28b85b917982072b9f4f406d7eb099913a31
Certificate serial: 019D37895F2EC5991D764929AA9B8119D94F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
Manifest number: 08C0
Signing time: Sun 29 Mar 2026 03:00:42 +0000
Manifest this update: Sun 29 Mar 2026 03:00:42 +0000
Manifest next update: Mon 30 Mar 2026 03:00:42 +0000
Files and hashes: 1: 9WUdlcQ5fqjlIOk94Y7apBnhqK4.roa (hash: iMHDaVVyw97sJKm4tMkOQNi+vM7rb8DvrW8HPvEWx7Y=)
2: b2oouFuReYIHK59PQG1-sJmROjE.crl (hash: nwHRB/x37N7YtTPJZ0BqSmbY+4ZLmXhB9kngOnFXRNI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:5f:2e:c5:99:1d:76:49:29:aa:9b:81:19:d9:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f6a28b85b917982072b9f4f406d7eb099913a31
Validity
Not Before: Mar 29 03:00:42 2026 GMT
Not After : Mar 30 03:00:42 2026 GMT
Subject: CN=8ce711b8597a0a28ba49c5a78a6da1b4c740b7c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b3:80:0c:9a:d2:d1:e9:6e:ba:bc:6b:a9:20:
74:2e:88:09:d8:ce:64:ab:a0:eb:fa:4d:b6:ee:26:
8d:76:4b:f4:ca:94:a8:27:18:b1:f5:6b:00:25:65:
95:f2:76:cf:f3:d0:46:25:68:d1:95:36:cd:1c:58:
aa:ff:90:b0:b0:e5:12:1c:5a:ea:88:60:aa:50:73:
1f:92:82:9b:83:80:34:f3:5e:19:b6:ce:d0:dc:13:
0e:11:2c:5e:d8:79:60:a7:e9:bc:18:1d:88:8f:27:
e0:d4:a8:07:78:16:95:65:c5:eb:10:ab:14:c0:f5:
4f:a9:c9:9b:96:b4:e7:41:00:58:6f:70:db:36:83:
ad:e3:8f:0f:15:17:68:db:6b:4c:22:6a:50:7d:fa:
fc:02:8c:78:b7:60:41:9a:75:6f:6f:83:72:7a:d4:
c3:67:01:23:c4:3b:94:02:86:6e:c1:e0:7e:20:60:
d5:56:7b:4d:58:7d:c7:fa:54:48:15:09:50:7c:3e:
9f:b3:63:cc:36:cf:32:01:23:3d:d2:28:c8:31:ad:
51:71:66:95:29:bd:88:5c:e0:9f:44:ac:76:29:88:
4d:29:df:d8:c5:b2:2a:85:fa:6d:78:05:8a:81:c7:
dd:3d:21:6a:0f:76:3f:5b:14:d0:d1:4a:0d:cd:8d:
a0:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:E7:11:B8:59:7A:0A:28:BA:49:C5:A7:8A:6D:A1:B4:C7:40:B7:C0
X509v3 Authority Key Identifier:
keyid:6F:6A:28:B8:5B:91:79:82:07:2B:9F:4F:40:6D:7E:B0:99:91:3A:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2oouFuReYIHK59PQG1-sJmROjE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/52554c-389d-4aea-a00c-741d0898da4e/1/b2oouFuReYIHK59PQG1-sJmROjE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:be:10:84:17:d4:c3:82:2a:2d:48:d2:b2:d2:9f:df:77:68:
6e:00:19:72:00:c7:b8:64:b7:be:3e:90:0f:ad:7f:d6:af:ec:
c8:39:82:8a:d9:6f:2c:2b:ee:bd:33:6d:5e:b5:e3:44:9f:51:
bb:4e:e7:b2:f8:35:fb:3a:99:16:ee:63:2a:f3:68:4c:00:a4:
a0:e9:4d:d8:70:48:ed:6a:5c:6e:36:57:ec:ed:d7:27:20:65:
2a:24:7c:58:23:f0:85:6a:53:a9:92:42:88:76:90:45:93:a8:
ca:4b:b1:76:b6:8d:f7:ea:55:70:40:bf:76:85:b7:bf:c4:6e:
7b:34:0b:b5:42:06:93:ae:94:90:5c:57:a2:45:ca:bb:fd:34:
e1:43:9b:67:56:8c:47:09:19:1b:01:82:0f:27:5d:f3:1f:7c:
5d:8c:8c:0b:cc:dd:99:1e:f7:bb:1f:31:50:0c:17:38:85:a6:
95:cc:a1:42:25:0b:88:ab:33:1a:f3:35:d4:74:4d:aa:1d:3c:
d1:0d:85:11:62:27:ee:25:9b:0c:84:5c:b6:be:7b:6c:ce:dd:
79:d3:61:4d:b0:a4:7b:a2:4a:99:40:0c:ba:49:1c:19:38:b8:
cc:83:6b:41:08:ec:a2:97:9b:fa:ca:aa:40:d8:11:eb:26:32:
05:d4:9c:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:07 2026 by rpki-client