Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json)
Hash identifier: uunoTcafnntr//vCVvdCevIIdCD0atuRXhXh019n9jk=
Subject key identifier: A0:B1:BC:1E:62:57:4E:33:0A:BA:1A:3E:02:F7:5C:E4:29:60:9C:20
Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Certificate serial: 019CAAFCED2B3CF196328546C7B2BB254E48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
Manifest number: 0CB2
Signing time: Sun 01 Mar 2026 20:00:28 +0000
Manifest this update: Sun 01 Mar 2026 20:00:28 +0000
Manifest next update: Mon 02 Mar 2026 20:00:28 +0000
Files and hashes: 1: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: a3c8oJMqRvBpyX76xkboSc/hJUj0iYoIKusJfL9uaxI=)
2: vnH2NBbn3Q3LtUPrFoU9by3eF_0.roa (hash: UPdVY5abeB5lX+0Aslp3HBLsCZjZtVMWKp5zyq6x038=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fc:ed:2b:3c:f1:96:32:85:46:c7:b2:bb:25:4e:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af
Validity
Not Before: Mar 1 20:00:28 2026 GMT
Not After : Mar 2 20:00:28 2026 GMT
Subject: CN=a0b1bc1e62574e330aba1a3e02f75ce429609c20
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:4c:6f:f1:b6:dd:cf:69:7d:e9:e9:f2:4d:59:
e8:e6:ac:9f:7a:29:2e:cd:f1:b9:6e:e4:be:12:87:
1c:88:64:bd:24:2a:d9:7f:2e:dd:27:87:e5:b9:5a:
33:b0:07:de:72:7b:b0:d9:e3:7d:39:a7:0c:5c:d5:
4d:e8:a7:d9:5b:a4:60:9e:c9:f8:e7:81:74:6f:05:
83:50:16:d5:10:23:e8:fe:93:47:e2:fc:93:9e:63:
8a:4e:e5:f8:04:15:a1:5e:2b:71:2e:84:6c:20:fd:
f7:74:24:7d:91:f5:88:91:2d:9c:37:68:8e:b7:ea:
e5:b4:9d:5a:d8:87:fa:e3:cb:c1:9d:0d:0d:bd:9f:
4d:7f:b9:89:49:9c:4f:c4:38:3f:9b:52:17:03:4a:
ed:54:36:7a:85:26:01:cc:e2:e4:f5:0e:0e:b6:6e:
13:7a:65:d7:14:04:57:ab:de:38:8b:1e:22:6e:35:
7a:05:c7:3f:07:3c:8f:2a:d3:6b:99:a3:d6:60:cf:
0b:13:71:75:84:af:c6:c8:54:c1:8f:10:79:f0:a8:
20:87:f4:74:28:6f:92:61:00:82:91:70:9e:8a:20:
5f:12:45:b0:27:a0:cb:23:e4:19:61:2f:eb:98:6c:
b7:d5:5a:be:b0:84:55:6e:ca:38:14:9c:96:31:04:
e9:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:B1:BC:1E:62:57:4E:33:0A:BA:1A:3E:02:F7:5C:E4:29:60:9C:20
X509v3 Authority Key Identifier:
keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:b9:b0:0e:3f:0b:1f:ec:c9:47:2e:82:1b:72:90:a3:5c:f3:
e8:c6:29:7f:5d:cf:b4:7a:6f:78:f0:6e:72:7b:fd:59:5e:5f:
91:bc:58:c6:c4:37:9b:0c:8f:5e:49:ef:9e:fa:cd:b9:77:be:
65:29:cb:cf:da:ec:3f:2a:4d:3d:24:af:4f:84:c7:c2:39:0b:
a1:b8:e6:4c:40:d3:b6:00:fc:c6:c6:6c:e7:40:69:5d:70:9a:
b1:83:55:2a:f9:40:ed:4b:1e:c3:5c:56:84:f7:30:90:d4:13:
32:50:cb:09:3e:a6:0e:4c:85:39:0c:ad:4d:fa:f4:22:2a:56:
73:d8:a2:7f:4c:23:d9:73:15:44:2c:55:ba:db:a8:98:e4:ae:
66:cc:07:c9:d6:56:01:41:33:9a:5c:c9:23:97:63:52:c0:1b:
83:42:d8:71:2a:73:d2:76:0b:5c:27:23:bc:25:77:58:3c:dd:
74:03:2e:b4:64:f1:b4:88:13:88:81:e8:19:ae:db:0e:aa:a4:
3b:a5:bd:16:81:bc:11:74:e5:03:2d:33:41:fe:d1:98:5c:c1:
d0:6c:71:e4:ce:c6:3d:da:48:7a:fa:d5:e0:f3:81:d4:f7:b3:
6f:1e:c1:04:71:12:57:0c:9f:98:ac:ef:c1:3e:19:67:cf:2b:
ef:7e:49:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:46 2026 by rpki-client