Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: +1UowWzzs2uU0Gd0FhqChYm9XoxEaJqaJFzNMm7s5es=
Subject key identifier: 76:A1:01:17:D1:25:D0:69:1B:22:50:F6:EA:60:CB:1C:48:59:08:74
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 019CAF111ECD08934593DE42E900B40FCFE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 15BE
Signing time: Mon 02 Mar 2026 15:01:00 +0000
Manifest this update: Mon 02 Mar 2026 15:01:00 +0000
Manifest next update: Tue 03 Mar 2026 15:01:00 +0000
Files and hashes: 1: 1-2P8OWE-nT9yglepyYQAlaB5NfE.roa (hash: hXJitTuZsInHr+UtjyUxAZf5csxkpDvw7CF/W7Cve9U=)
2: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: dzZD8viXrIEu3UgJHITSh542TKLcELHjZ7L1QhOjP7c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:11:1e:cd:08:93:45:93:de:42:e9:00:b4:0f:cf:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Mar 2 15:01:00 2026 GMT
Not After : Mar 3 15:01:00 2026 GMT
Subject: CN=76a10117d125d0691b2250f6ea60cb1c48590874
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8d:3c:7a:3a:d3:6d:b0:f1:26:39:e2:f6:4f:
0e:6d:66:d2:7b:fd:ea:5a:c6:23:a7:97:2b:72:b6:
87:81:29:02:84:c6:6d:df:fe:95:fb:62:80:37:cb:
8e:08:41:31:37:b0:af:8f:ac:67:95:a3:e6:ed:61:
71:87:8b:4f:5b:26:a6:05:34:96:d7:10:cf:f2:6a:
fd:24:94:75:15:69:8d:31:e2:ef:d7:1e:15:dc:15:
d4:76:ae:3a:01:f4:71:72:d4:a1:35:01:ef:ca:92:
33:4c:60:9a:8c:ef:0e:19:e0:38:97:6b:95:56:25:
29:4c:fa:9e:3a:a1:b7:5e:8e:98:0a:da:d0:00:0f:
53:1f:78:ca:4f:40:5f:f1:d9:65:a9:55:e1:36:fd:
4d:2a:74:ac:78:17:f4:00:9b:f1:b9:ce:28:a9:d6:
93:10:12:36:a4:14:75:cd:27:aa:1f:88:41:c1:68:
b1:ae:ac:3c:1b:f4:58:f5:1b:7a:b7:7e:59:65:52:
26:e9:93:85:de:09:e0:81:ac:15:07:56:b8:47:16:
52:5a:93:2e:eb:35:fb:b1:25:10:46:94:5e:87:9f:
f6:a0:f8:32:8f:56:3e:7b:60:51:ee:e8:39:a3:82:
6e:b9:f7:85:95:c1:d8:29:ea:1b:e8:0b:0d:2e:4a:
4a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:A1:01:17:D1:25:D0:69:1B:22:50:F6:EA:60:CB:1C:48:59:08:74
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:f6:b2:21:24:f5:85:41:6c:f2:10:fc:fe:9b:94:8f:25:0d:
22:45:65:ba:2a:a7:82:40:c4:0e:0e:ee:d9:e6:e1:9c:b4:c5:
8a:6f:a5:a3:d2:41:34:e7:e0:d8:22:c3:16:e7:98:96:d6:32:
59:3a:2c:8b:b9:a8:1a:97:24:07:cb:88:b5:50:97:4f:fa:c4:
0a:2a:db:41:6d:ff:03:b3:a8:cd:ee:55:8c:c0:de:72:10:18:
4b:02:3f:7e:ff:ff:b5:d8:4e:1e:33:80:1c:a7:e4:77:6f:1f:
c9:a4:1e:51:41:1c:ed:13:0a:e5:20:15:66:a0:d5:79:3d:00:
cd:e6:ae:22:69:8a:34:a9:d5:d6:cc:86:53:b5:ba:5c:a3:13:
09:7f:70:13:22:52:97:d8:e8:0f:23:d8:c6:d8:4a:b3:c5:90:
40:47:c5:18:5b:54:6e:ff:f8:fb:31:3c:05:9f:4b:6e:c1:81:
01:a3:04:18:54:ca:3b:31:62:f2:11:e9:03:9a:0b:05:a4:db:
2f:af:87:7f:3f:a0:e4:eb:f3:78:b9:97:dc:22:06:0f:d2:21:
c3:08:c4:58:42:ea:49:32:f7:42:64:11:89:cd:ef:81:bc:8d:
02:c9:a1:4f:f9:4d:c5:92:2c:b5:94:35:17:96:e6:6c:02:c2:
62:5f:71:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:57:13 2026 by rpki-client