Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json)
Hash identifier: 1fXxGFXsk8C5jnZBspIHb3MLlbHgt8nijXNR6Shy1ec=
Subject key identifier: C8:76:1C:8A:17:17:92:98:B9:E3:F6:9D:C4:BC:45:92:E2:00:A9:5A
Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Certificate serial: 019D38D2D7ECC31BCB14A9D58B69799C0604
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
Manifest number: 13D3
Signing time: Sun 29 Mar 2026 09:00:35 +0000
Manifest this update: Sun 29 Mar 2026 09:00:35 +0000
Manifest next update: Mon 30 Mar 2026 09:00:35 +0000
Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: QhoK7+Ax0PlpoDkCcdj88XA10fTgh+WZR055xVloxWg=)
2: skgCaWxmIa3l2drnsUs1g9IHP6k.roa (hash: 38OQkMAm1X1v8VW5NmpHGjFcQdQR+2I5zzoNHi9K3wk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:d7:ec:c3:1b:cb:14:a9:d5:8b:69:79:9c:06:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Validity
Not Before: Mar 29 09:00:35 2026 GMT
Not After : Mar 30 09:00:35 2026 GMT
Subject: CN=c8761c8a17179298b9e3f69dc4bc4592e200a95a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:4f:46:15:63:a7:cf:97:d6:4c:8c:4e:d5:b8:
35:a4:64:db:48:27:61:b0:45:a4:96:22:c1:14:1c:
67:bf:4d:8c:2b:4a:7a:6c:a5:24:45:58:2f:1a:4e:
3c:88:94:e4:bb:72:6d:16:16:d6:0e:be:e2:cd:1a:
73:0b:76:21:5b:04:13:a2:87:82:b2:14:e2:af:f1:
1d:5e:31:e2:c3:7f:04:75:8a:9e:a1:f4:b0:35:12:
1c:08:62:3e:f6:4d:e8:ae:6f:85:a9:9d:49:bb:a9:
05:d1:c3:7c:2c:b7:f6:4d:85:2d:2d:11:b3:b0:94:
51:e4:ed:9e:01:1c:e2:47:7c:45:27:aa:7b:2c:6f:
a9:5a:0d:76:92:b1:58:91:91:01:86:81:03:85:09:
be:17:f1:2a:2d:d5:f6:23:65:02:2d:f2:bf:df:1d:
10:79:82:20:e5:52:b2:24:66:49:3b:06:ed:e3:9b:
33:89:81:03:25:f9:96:69:b9:81:44:12:2d:77:85:
cd:15:90:d2:b6:7a:90:22:f8:f7:d6:b6:c0:ef:57:
b3:ef:6d:b1:4f:86:16:61:70:78:f7:a1:b1:e3:5d:
c3:12:60:96:ec:1a:4d:d9:40:49:20:17:4c:dc:dc:
10:11:e7:69:dc:50:a6:87:bb:72:92:7a:60:1a:55:
f3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:76:1C:8A:17:17:92:98:B9:E3:F6:9D:C4:BC:45:92:E2:00:A9:5A
X509v3 Authority Key Identifier:
keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:94:54:dd:12:33:87:fa:9d:84:aa:81:19:32:71:07:4c:24:
5d:f8:e3:96:1a:20:43:f8:57:70:60:d2:30:19:0b:1a:ec:39:
cc:d1:09:98:bd:2c:ff:6c:00:82:38:77:f2:41:b6:1e:c5:0b:
fe:40:f3:0c:91:41:fa:f2:7b:a0:99:56:ec:87:8c:2e:ca:58:
fd:b0:b2:67:b3:4b:02:88:09:46:c2:a2:92:b6:1a:0a:a6:b9:
7f:bf:b6:e6:20:dd:b1:a7:45:25:2f:b2:26:f4:38:4a:c8:2c:
5b:03:11:3b:ef:76:f8:97:2e:02:84:60:15:81:e8:cc:53:90:
e1:80:8a:12:03:6b:f2:96:14:b8:f0:1f:80:81:53:ba:a0:21:
6c:82:27:f1:88:40:e1:26:6c:48:47:68:76:8d:a8:3e:53:ed:
f6:69:82:47:ee:17:ae:1f:82:8f:a1:4a:cd:52:6a:f1:60:1d:
71:82:09:98:53:db:94:f9:b5:25:85:aa:aa:a5:d3:d2:29:86:
b5:a5:18:9f:7b:22:ea:cb:43:02:50:f0:c6:92:cc:c2:71:f7:
bb:41:f5:67:4f:22:b4:1a:d6:32:da:09:cc:e1:54:8a:b8:27:
46:1b:8b:74:f5:8b:1e:f3:05:4c:59:33:bb:45:7a:f6:2f:cf:
55:45:97:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:32:00 2026 by rpki-client