Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft
File: B9oDycgmha5taz0h1oS7z0aL91s.mft (raw, json)
Hash identifier: xGrM2vJKlbMuEb4o0PpCrGDJm4uV89Sq7aSR44BDjZg=
Subject key identifier: 2E:EB:B8:02:88:17:CE:A3:0F:FC:43:7D:E7:0A:F6:A2:F5:4A:72:CB
Authority key identifier: 07:DA:03:C9:C8:26:85:AE:6D:6B:3D:21:D6:84:BB:CF:46:8B:F7:5B
Certificate issuer: /CN=07da03c9c82685ae6d6b3d21d684bbcf468bf75b
Certificate serial: 019F18D6656132DBB4450290F1872DBCF962
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/B9oDycgmha5taz0h1oS7z0aL91s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft
Manifest number: 1988
Signing time: Tue 30 Jun 2026 14:02:11 +0000
Manifest this update: Tue 30 Jun 2026 14:02:11 +0000
Manifest next update: Wed 01 Jul 2026 14:02:11 +0000
Files and hashes: 1: B9oDycgmha5taz0h1oS7z0aL91s.crl (hash: j2MhAHxWLiNtt6Ug0kI1LqNEZC1u+R7Fte+vyl0Avso=)
2: Syb092w3bd2oaQmW0hCkBeEn6RU.roa (hash: mb8QxEtZKShJ4BbZE89JSkmaplhcEQtWMF/0Fv1cDnU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft
rsync://rpki.ripe.net/repository/DEFAULT/B9oDycgmha5taz0h1oS7z0aL91s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:65:61:32:db:b4:45:02:90:f1:87:2d:bc:f9:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=07da03c9c82685ae6d6b3d21d684bbcf468bf75b
Validity
Not Before: Jun 30 14:02:11 2026 GMT
Not After : Jul 1 14:02:11 2026 GMT
Subject: CN=2eebb8028817cea30ffc437de70af6a2f54a72cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:31:05:9f:90:94:c4:aa:e0:cd:11:8d:95:24:
f1:3e:df:4d:55:da:13:c0:f6:87:ce:e7:4f:fc:b9:
7f:ce:6e:9b:6c:4a:48:94:6c:09:dc:e6:e3:2e:a9:
59:25:0b:cb:ab:38:38:ba:c4:aa:04:32:57:81:c8:
51:e8:e5:c6:16:ca:ae:ed:a4:6e:cb:f9:59:13:1a:
4b:fa:cf:71:00:85:48:b4:6f:4b:da:fd:29:02:3c:
08:56:0c:a7:db:50:62:11:c9:f0:3d:b0:60:d7:80:
84:12:46:1d:a4:b0:b9:74:24:80:48:7b:b2:ca:7b:
ad:28:b3:cd:7a:c0:bb:be:ec:4d:12:db:91:18:60:
9d:48:b2:92:5c:54:45:06:a3:30:4d:ec:b0:23:00:
95:2c:25:c1:22:53:7a:e4:f1:62:f1:83:6e:2f:93:
5a:e7:87:60:2f:ec:0d:ca:e0:f1:87:3f:dc:20:f1:
a2:d2:79:c4:f4:9c:1f:33:01:c8:e2:08:ed:7a:dc:
04:e4:8d:37:b0:4c:1b:b9:6a:03:29:29:50:51:33:
8e:2e:6e:7b:6c:3e:58:6e:69:f0:9e:56:cc:9b:cb:
0c:89:b8:b7:b3:6a:71:46:f5:72:9b:fa:b4:fd:43:
c1:08:3e:58:c1:db:04:ec:cf:45:fb:fd:56:e8:25:
d2:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:EB:B8:02:88:17:CE:A3:0F:FC:43:7D:E7:0A:F6:A2:F5:4A:72:CB
X509v3 Authority Key Identifier:
keyid:07:DA:03:C9:C8:26:85:AE:6D:6B:3D:21:D6:84:BB:CF:46:8B:F7:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/B9oDycgmha5taz0h1oS7z0aL91s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/deef22-2624-49b6-a23b-aa01dcd3dfa7/1/B9oDycgmha5taz0h1oS7z0aL91s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:30:f1:5a:f4:bc:5f:87:09:f5:f8:4c:ad:cc:06:f8:a0:09:
93:51:11:0a:8b:9e:4e:5d:35:72:6e:d9:17:dd:03:67:43:31:
77:3e:5b:fa:84:11:cf:48:91:b6:7b:24:c5:c2:fc:e4:55:7a:
fa:20:98:4c:2e:5f:9d:c9:23:52:98:5c:72:3b:ce:70:3f:ba:
bf:6f:95:7f:0c:00:3b:27:19:8d:37:99:47:e8:95:7b:31:bc:
55:1e:c1:e9:a6:06:64:f2:c9:13:36:28:a6:39:db:d4:68:61:
9c:a6:54:2e:61:9e:c2:5f:86:f9:10:0e:0f:a6:a3:42:33:65:
fe:32:10:31:de:b1:1c:5a:a4:b6:e0:c3:03:7b:c8:b4:72:fb:
9b:e9:9d:35:f1:06:11:69:f4:12:61:98:ab:1a:f7:bd:8b:3e:
67:d1:13:8b:cb:f3:e3:0c:c3:66:3e:81:d6:66:7f:17:6c:4b:
16:3b:da:1f:c7:5e:0d:b9:a6:a6:7d:ac:43:e2:89:4d:60:a0:
27:34:a4:5d:dc:c6:79:58:54:b6:e6:e2:09:8a:dc:0f:bf:f0:
dd:54:15:f3:f1:49:e5:16:76:4b:0a:c1:f6:88:04:e4:da:ac:
a4:96:28:43:be:e1:dd:24:8b:db:93:32:7a:7a:2c:2a:a1:a1:
9a:03:22:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:30:19 2026 by rpki-client