Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
File: bQih9MOF86e2KYTVPoFmWplUEPM.mft (raw, json)
Hash identifier: aw54+Gi7nL9lBg2ckF7YlOx8OZQpMNKts23YXL1qd8k=
Subject key identifier: 32:A2:1C:C4:1C:B8:9A:0E:2B:AC:9E:31:FB:7B:19:81:6F:FD:AB:C6
Authority key identifier: 6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
Certificate issuer: /CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Certificate serial: 019CABA23847E43CFD616423B0027CE83D28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
Manifest number: 0C46
Signing time: Sun 01 Mar 2026 23:01:01 +0000
Manifest this update: Sun 01 Mar 2026 23:01:01 +0000
Manifest next update: Mon 02 Mar 2026 23:01:01 +0000
Files and hashes: 1: ALmp9QVk21GznNgt6Dz8ZcrWqhg.roa (hash: O+KLwwhLgCZOa9Dra8cvY4Q3raXGnTT+rDZassQxMZs=)
2: bQih9MOF86e2KYTVPoFmWplUEPM.crl (hash: x3xNfDoqxtzosl3yNRhkKRjw4G3kIZ7zdrvXzEA5QsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:38:47:e4:3c:fd:61:64:23:b0:02:7c:e8:3d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d08a1f4c385f3a7b62984d53e81665a995410f3
Validity
Not Before: Mar 1 23:01:01 2026 GMT
Not After : Mar 2 23:01:01 2026 GMT
Subject: CN=32a21cc41cb89a0e2bac9e31fb7b19816ffdabc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:51:eb:69:85:8f:03:bb:bb:7e:e5:21:ce:b2:
90:0c:18:a2:28:c0:79:4b:6f:57:ed:e5:67:5c:c2:
dd:4c:ff:d3:28:94:0a:80:21:78:f1:fb:8c:be:b8:
a4:91:b8:47:48:4e:8f:a3:09:79:92:00:7e:22:a1:
dd:8e:f5:ec:57:3e:ed:bb:4c:cb:5c:9c:de:e8:25:
d3:8c:3c:a4:13:ed:28:54:54:36:1f:5b:64:5f:6a:
85:2f:a6:65:36:7b:6c:e1:02:c2:b0:b5:3a:52:c9:
d1:aa:36:2d:02:e6:2a:e6:3e:af:7e:25:42:cc:b1:
3b:f7:a2:b6:b1:82:b6:30:8b:57:b2:9a:e9:0e:a1:
c5:04:88:57:42:7b:ce:2f:f5:d4:3c:8c:03:ec:c2:
03:91:d9:33:e8:c2:db:3f:73:a4:97:45:45:91:89:
29:3a:7e:40:d7:42:89:11:19:71:42:6d:78:da:03:
b3:96:f9:58:5a:1d:7c:22:1d:49:2b:4f:94:90:f9:
ed:89:4a:21:7a:22:9b:5f:44:ad:66:15:a3:6a:c7:
b8:c5:02:19:3c:99:8b:aa:37:fa:a9:66:5d:df:12:
de:58:74:6f:75:56:7e:42:2b:6b:01:37:c8:bd:c6:
71:43:c1:7e:e1:6a:fb:df:00:b0:07:20:7d:d2:7e:
67:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:A2:1C:C4:1C:B8:9A:0E:2B:AC:9E:31:FB:7B:19:81:6F:FD:AB:C6
X509v3 Authority Key Identifier:
keyid:6D:08:A1:F4:C3:85:F3:A7:B6:29:84:D5:3E:81:66:5A:99:54:10:F3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQih9MOF86e2KYTVPoFmWplUEPM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/107467-56a1-48c5-add1-43a8526d82bb/1/bQih9MOF86e2KYTVPoFmWplUEPM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:09:a0:99:93:31:4a:15:89:c6:4a:10:0c:29:61:a7:bb:1a:
0e:05:a3:c6:0f:a1:0a:1e:44:ad:c7:9d:6a:46:b8:3b:be:2d:
5b:a8:9b:fd:09:01:50:8e:50:23:17:85:e5:47:a0:fe:8a:70:
55:28:bd:a1:fc:d4:38:2e:22:52:a4:52:3e:17:12:31:f6:13:
be:65:6f:74:3f:67:e7:eb:6c:7c:e8:d7:35:76:1b:27:6b:91:
cc:b9:df:ea:58:cb:24:97:25:8a:40:6e:21:02:42:a6:94:2f:
6c:06:03:36:d3:65:c0:c7:65:a6:b8:81:8c:c3:b5:1b:29:61:
38:7e:55:8e:bf:21:6b:d9:b1:92:bb:54:a2:e5:d8:3b:64:4c:
75:bc:91:c3:b1:21:2e:35:50:75:58:65:b8:a0:5d:04:9c:ca:
46:33:1f:39:85:a9:a1:d4:62:61:29:c7:ac:73:9d:14:8a:49:
15:2a:4a:15:a0:65:08:2f:88:a8:20:88:f6:38:89:ec:98:35:
67:13:56:f5:eb:32:6e:5a:ba:69:8a:0d:dc:51:4d:c9:24:f0:
cb:7c:fd:ad:af:06:be:6d:b2:f7:18:00:54:73:26:c3:5e:5f:
d2:28:3d:08:83:49:70:62:5b:88:f4:e2:ce:a7:4e:69:1f:81:
c6:1e:4c:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 08:13:28 2026 by rpki-client