Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
File: bOrnoCiJYKda-M6A54iFQ8f3fNc.mft (raw, json)
Hash identifier: fp4ThWyjoINrSohN7wlIWoshWxcIQ/zAMPwKvolf3J4=
Subject key identifier: FF:A5:38:DE:F7:76:EC:A3:CA:CE:20:CA:12:6D:5F:0C:17:20:E5:98
Authority key identifier: 6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
Certificate issuer: /CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Certificate serial: 019CA94587207A64C2AFC27E32BAD1684C14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
Manifest number: 1553
Signing time: Sun 01 Mar 2026 12:00:31 +0000
Manifest this update: Sun 01 Mar 2026 12:00:31 +0000
Manifest next update: Mon 02 Mar 2026 12:00:31 +0000
Files and hashes: 1: 06iciWMnCvsa1G81d73kMnybKl0.roa (hash: 9/zv2guSkQOWznP9YeG/uAwYzC8tOeda3ReFt/vmKVQ=)
2: bOrnoCiJYKda-M6A54iFQ8f3fNc.crl (hash: tJsAJdywGn1ZY+1yu0nTjcnT7Mn8+i7zMObLBI7JIF8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 12:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:45:87:20:7a:64:c2:af:c2:7e:32:ba:d1:68:4c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Validity
Not Before: Mar 1 12:00:31 2026 GMT
Not After : Mar 2 12:00:31 2026 GMT
Subject: CN=ffa538def776eca3cace20ca126d5f0c1720e598
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:4b:40:e9:a0:e9:83:0a:7a:da:4c:67:5e:95:
90:1b:b0:1e:0b:0e:1b:7d:c6:4d:bb:0e:42:1e:04:
d7:10:88:cd:bd:c4:cc:f7:e0:b4:e8:62:91:4c:58:
93:47:c6:b1:07:4b:03:b6:fb:a7:de:8a:de:c0:be:
06:10:06:f3:c3:7d:e8:1a:c9:21:d0:f6:3a:69:97:
01:f5:e9:65:42:0d:13:4b:a9:60:12:ef:34:69:51:
6f:0b:44:53:db:1b:5c:48:23:17:f9:94:3e:d8:63:
af:71:25:c8:ff:e2:be:ef:75:e2:71:4e:8f:b8:74:
8c:ae:e7:25:4c:99:99:1b:37:55:74:9f:72:a0:d0:
15:7f:8e:37:7e:bf:a1:4b:f5:e6:74:95:c6:65:6a:
cd:e6:d5:94:1b:e4:ba:d4:7b:db:21:cb:8e:91:06:
ed:bf:ff:ef:81:35:e0:a0:1a:bd:f8:f9:66:b3:33:
db:9c:2b:14:47:cd:34:40:3e:e0:00:bc:bf:34:bb:
24:e8:16:cf:b0:b3:a9:94:37:a4:5c:9f:5e:a7:68:
7d:a8:be:91:9a:98:34:35:68:71:cc:5e:e0:b7:f4:
bd:64:d0:6b:41:0c:92:8d:8f:1b:ae:c2:e8:d3:c0:
43:af:af:06:7f:41:0e:e7:da:5b:06:1a:1c:46:6f:
42:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:A5:38:DE:F7:76:EC:A3:CA:CE:20:CA:12:6D:5F:0C:17:20:E5:98
X509v3 Authority Key Identifier:
keyid:6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:59:64:80:7c:38:e9:4d:b1:25:55:73:e1:40:fe:28:ef:e3:
4b:ed:4e:be:7e:3f:27:81:ac:7f:02:81:eb:56:76:d7:5a:da:
57:6e:8d:7a:45:ec:5c:20:46:cc:bb:9e:8a:fe:5a:b2:2a:0a:
9c:a8:64:75:18:4b:17:78:c7:d3:78:a6:b6:70:a6:76:a7:8c:
8f:17:37:53:c9:98:2e:79:6a:e0:ff:f7:05:79:bf:bb:33:16:
89:79:64:f0:0c:b2:21:5b:41:e8:8a:46:69:64:e9:f6:d8:2f:
11:52:9e:d8:f8:c4:c7:15:50:f4:b6:f7:26:8c:18:8d:cd:50:
55:03:1d:b4:b3:fc:98:d6:14:0c:0a:b0:86:19:27:93:6c:bd:
80:83:c1:b9:6e:8a:8a:c3:2e:78:df:b3:b1:f6:a3:07:19:46:
3a:a1:c3:6e:cd:0b:ed:68:95:95:08:e9:1a:91:0c:c8:5d:d3:
75:2d:04:7a:78:5f:46:d8:f5:52:c4:a5:61:27:c0:c9:f1:9f:
05:c9:10:43:70:a0:10:74:12:9c:e2:60:e7:dd:e7:0e:d4:40:
49:7e:77:f4:63:4b:13:69:0d:83:0d:e2:c5:a4:38:89:b4:76:
84:31:01:2c:4d:2d:e4:9d:97:82:40:59:70:85:93:ea:7a:5e:
09:df:0a:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:43:35 2026 by rpki-client