Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
File: bHO9JP2DCIa_otKWFBbSGF3jN3I.mft (raw, json)
Hash identifier: az7ISpsOWTjyduPbMbALu+x2S7vHXk3vVHc0D4FqHj0=
Subject key identifier: 28:BF:54:37:53:08:29:74:C5:2C:24:A6:CC:3B:AF:0B:59:A9:73:A2
Authority key identifier: 6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72
Certificate issuer: /CN=6c73bd24fd830886bfa2d2961416d2185de33772
Certificate serial: 019CACEB8EFD243F68D610D44195D487575B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
Manifest number: 0B93
Signing time: Mon 02 Mar 2026 05:00:44 +0000
Manifest this update: Mon 02 Mar 2026 05:00:44 +0000
Manifest next update: Tue 03 Mar 2026 05:00:44 +0000
Files and hashes: 1: WKluDkXLbOUe3fiyMU_sfUku4Zk.roa (hash: g8pqi7RglCM3KJkQHe8MWM6i4Vof+uHKV1U9w7O5DtE=)
2: bHO9JP2DCIa_otKWFBbSGF3jN3I.crl (hash: OhIv0z4kfz44psR18cCFzDlNMl/vadDF5ivGHm4k6hw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:8e:fd:24:3f:68:d6:10:d4:41:95:d4:87:57:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c73bd24fd830886bfa2d2961416d2185de33772
Validity
Not Before: Mar 2 05:00:44 2026 GMT
Not After : Mar 3 05:00:44 2026 GMT
Subject: CN=28bf543753082974c52c24a6cc3baf0b59a973a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:f4:a6:b6:cc:db:bd:28:3e:35:14:17:69:73:
da:09:96:ad:f4:2b:d5:1b:ce:fc:83:92:46:7c:dd:
2e:6b:cf:3a:41:72:98:0f:7e:f0:9d:08:ad:c8:8c:
31:6e:57:d9:43:96:7d:8a:6e:19:2c:dd:21:8a:0a:
95:db:b9:05:04:79:7b:0a:56:b7:bd:31:81:cd:c6:
8f:4c:f3:ec:28:84:15:7f:4f:08:9f:0c:b4:8f:91:
0d:d4:bf:b5:fb:1a:da:cf:c6:0c:61:20:7a:ba:08:
33:60:21:ec:6d:e0:e9:90:c1:b9:1a:33:4a:75:15:
5c:a5:85:42:d4:04:47:b6:a8:1d:53:f5:d2:b2:77:
9a:80:4c:d1:5b:c7:d3:7c:92:15:b8:e6:01:5a:4b:
88:d4:c8:79:61:d6:0f:35:9c:43:17:84:dd:e2:d5:
f1:f1:29:d4:ad:ec:87:1e:da:2c:a6:f2:35:6e:74:
40:25:20:8f:63:f1:34:3a:28:8e:3a:cd:ee:73:06:
00:3c:f5:d1:74:95:eb:24:82:d1:6e:f8:93:b2:8c:
04:ca:76:64:1d:66:3a:18:21:c4:c3:e3:39:e5:94:
42:96:d1:28:1c:6c:92:c7:0d:a2:13:ed:8c:1f:40:
16:27:aa:7b:76:ca:7b:c2:23:9e:ff:79:d7:d9:ee:
f3:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:BF:54:37:53:08:29:74:C5:2C:24:A6:CC:3B:AF:0B:59:A9:73:A2
X509v3 Authority Key Identifier:
keyid:6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:a5:18:60:ac:8a:9d:b0:fb:17:cb:64:ba:8f:6c:93:fe:c0:
ba:28:3f:12:30:7b:b6:07:30:8f:44:ab:f8:9c:57:7f:0e:54:
13:80:4d:87:2b:00:74:56:13:f5:6d:1a:51:87:69:10:a3:b0:
8e:f4:af:4f:4c:cc:88:91:e0:a3:d5:4f:f6:cd:8a:9e:fe:d1:
9e:93:c6:38:c2:ac:41:8b:68:96:b6:c2:76:92:74:4c:bc:89:
10:db:7b:9e:15:99:e7:81:fa:35:1a:fd:8c:68:e9:2f:4e:c5:
54:87:88:a6:b6:06:32:6a:87:8a:1f:45:ce:8c:4e:4c:10:a2:
59:4c:61:55:99:d5:96:09:37:90:21:ed:19:5e:71:42:cf:1b:
d7:f0:89:1f:d0:3a:4b:ca:42:1b:bc:98:8a:98:b0:0d:8b:98:
b4:a5:89:55:0f:b0:63:8d:66:3b:3b:75:1a:a7:e7:89:fb:91:
30:c3:dd:51:a8:28:fe:ea:48:f5:21:2a:3f:1e:6a:58:33:7c:
9d:1d:6e:18:1f:73:24:fa:6e:37:33:b7:4a:6b:29:09:0a:8f:
27:74:98:fa:1a:4d:98:56:37:83:f4:ba:fc:45:79:6f:41:0e:
56:00:98:68:31:93:f8:05:48:89:36:94:92:58:5a:34:60:f3:
4d:79:71:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:41:17 2026 by rpki-client