Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
File: bHO9JP2DCIa_otKWFBbSGF3jN3I.mft (raw, json)
Hash identifier: AIJLxxe3sgQxx7bocfCOZAp2VXfF53CW/T/Ppa83eLg=
Subject key identifier: B0:EB:5A:F1:C2:F3:69:45:B5:74:5C:AF:EE:5E:F1:FA:D0:91:F0:49
Authority key identifier: 6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72
Certificate issuer: /CN=6c73bd24fd830886bfa2d2961416d2185de33772
Certificate serial: 019D9886D624E434E11905D0315A66A6FCD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
Manifest number: 0C0D
Signing time: Thu 16 Apr 2026 23:01:06 +0000
Manifest this update: Thu 16 Apr 2026 23:01:06 +0000
Manifest next update: Fri 17 Apr 2026 23:01:06 +0000
Files and hashes: 1: WKluDkXLbOUe3fiyMU_sfUku4Zk.roa (hash: g8pqi7RglCM3KJkQHe8MWM6i4Vof+uHKV1U9w7O5DtE=)
2: bHO9JP2DCIa_otKWFBbSGF3jN3I.crl (hash: 81qQXRlIG5MDu9Ta3XapgVKE+f7Wb7lwLtOJMTF8ZSI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 23:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:d6:24:e4:34:e1:19:05:d0:31:5a:66:a6:fc:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c73bd24fd830886bfa2d2961416d2185de33772
Validity
Not Before: Apr 16 23:01:06 2026 GMT
Not After : Apr 17 23:01:06 2026 GMT
Subject: CN=b0eb5af1c2f36945b5745cafee5ef1fad091f049
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:bd:52:ad:38:3d:fe:ef:cc:ac:90:63:0c:e4:
d0:e8:bf:07:9c:7c:f8:a5:51:d1:9c:4d:51:21:07:
16:80:27:5e:8e:9d:b1:1e:74:7b:e8:96:6d:89:fe:
cb:58:3a:7e:62:18:5d:8d:aa:73:b0:30:16:2b:ba:
bf:c7:18:d8:bc:d4:f3:5a:a6:7a:f5:7f:d3:ea:e4:
46:50:dd:34:bb:cb:09:06:fe:71:98:f9:30:fd:9b:
56:60:e9:ff:dd:02:c1:a0:f5:a1:8e:0a:e1:a0:32:
eb:21:cf:14:05:91:ff:81:c7:99:d8:bf:eb:28:2b:
87:d7:51:43:83:7e:ac:f4:b6:97:f4:19:0e:53:b2:
40:72:13:6b:61:e5:f8:da:36:68:8a:4e:f3:f8:f0:
d4:cd:92:1d:b9:eb:9d:16:23:b7:b9:6b:a1:40:5c:
14:70:3f:f7:00:53:ad:25:46:d5:22:a5:a2:1f:64:
e4:6b:d6:00:38:a7:ce:39:47:f6:d1:b8:77:86:d2:
a7:a3:a6:af:f0:96:6d:1d:1e:00:24:af:af:cf:ad:
dc:e9:c2:6d:b0:81:81:b7:a6:f6:b5:2b:00:af:5e:
73:60:20:eb:59:29:da:fc:a5:64:e2:f3:07:28:a5:
d7:3d:86:80:d0:6b:80:1e:1f:50:17:83:f9:2b:66:
c9:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:EB:5A:F1:C2:F3:69:45:B5:74:5C:AF:EE:5E:F1:FA:D0:91:F0:49
X509v3 Authority Key Identifier:
keyid:6C:73:BD:24:FD:83:08:86:BF:A2:D2:96:14:16:D2:18:5D:E3:37:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHO9JP2DCIa_otKWFBbSGF3jN3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/98dab8-7b24-49f3-a36f-73a157a2b99f/1/bHO9JP2DCIa_otKWFBbSGF3jN3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:4b:02:b4:51:da:10:97:46:f1:55:e7:ad:b1:27:a4:e9:9e:
05:98:33:17:ff:cd:ff:31:83:e3:93:21:36:e7:74:9d:c7:47:
8a:4b:31:a3:47:19:71:b1:43:c1:f0:8d:ed:25:49:c4:d1:06:
4e:c3:de:de:10:5f:a2:55:88:1b:ac:00:88:ad:c7:cd:42:c2:
93:42:9e:f6:10:fe:35:d5:14:a4:4f:34:99:63:eb:09:c9:b5:
6f:0e:11:39:56:7d:cd:66:5c:37:25:a3:62:54:fc:98:a1:a7:
e4:8e:2c:8c:fb:48:5b:fc:c1:f6:bd:c0:0d:55:f8:1d:a7:a8:
2e:62:1e:7f:9e:38:3a:b4:d2:71:2e:e2:b3:b0:e8:dd:c1:7d:
18:bc:1a:d8:17:6a:39:49:41:a3:be:25:43:30:c8:88:d6:00:
b5:df:5d:4b:a0:ca:9d:00:d7:ae:5d:e8:7a:13:54:c3:f0:ff:
a7:87:9e:1b:3e:73:e1:6c:df:4e:e9:cb:33:84:53:c1:bb:8f:
c7:3e:a5:48:d0:d7:5c:5b:b7:e8:56:8d:5a:f1:31:30:e1:52:
2c:3d:bb:58:c9:17:1f:cd:ab:46:5f:01:1f:11:21:5b:d3:4e:
19:c7:fb:1c:74:ba:d2:81:dc:0d:0d:bf:23:20:be:e3:04:b7:
ea:4c:66:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:26:11 2026 by rpki-client