Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: jaWv3uCDDamjvxXcaxHVHlzF29ubpsQqfUsJG+fVH+I=
Subject key identifier: 24:0B:AA:E0:6B:5F:99:03:E1:87:4A:D9:18:A8:7E:67:53:E8:6C:4D
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 019D98BDCBC0D64AC963A20E56BD2057D0EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 1637
Signing time: Fri 17 Apr 2026 00:01:08 +0000
Manifest this update: Fri 17 Apr 2026 00:01:08 +0000
Manifest next update: Sat 18 Apr 2026 00:01:08 +0000
Files and hashes: 1: 1-2P8OWE-nT9yglepyYQAlaB5NfE.roa (hash: hXJitTuZsInHr+UtjyUxAZf5csxkpDvw7CF/W7Cve9U=)
2: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: YoxrWuNfOBm8LobZjLQh6UlqjMhfCYnn5lSwI3dB0OM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:cb:c0:d6:4a:c9:63:a2:0e:56:bd:20:57:d0:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Apr 17 00:01:08 2026 GMT
Not After : Apr 18 00:01:08 2026 GMT
Subject: CN=240baae06b5f9903e1874ad918a87e6753e86c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b7:d0:b1:91:d3:1c:6b:53:72:f3:39:b1:57:
34:fe:ff:6c:41:b7:a0:6e:e4:27:8f:1e:a6:a6:0f:
55:4e:18:48:b1:1b:4a:2c:1c:c7:4c:b7:69:a2:07:
6e:38:2f:17:6e:b3:e6:8b:f9:de:61:ba:0e:9a:d0:
62:01:45:b0:6c:60:12:5a:53:fd:f5:05:d2:10:dd:
d7:9d:11:34:72:b4:84:54:c3:66:c7:8b:33:0f:78:
20:6c:bc:39:7c:d7:6b:76:b1:29:2a:86:ad:7a:b0:
17:1a:9b:6d:7d:f2:cb:1e:6c:da:c1:d0:49:37:e5:
ab:80:c0:6b:c0:c9:cb:4a:89:aa:05:9d:07:e8:88:
6b:ef:4a:96:ac:10:72:ce:7e:da:00:83:c5:4b:df:
50:65:5e:db:1c:8b:f9:40:75:2c:90:34:28:ad:31:
95:58:2d:30:dd:3a:6e:ec:f9:56:a2:6b:62:41:ee:
9c:7a:e3:9f:7b:01:d5:8c:e1:e6:59:20:83:b8:16:
87:95:ff:2f:cf:6c:6a:8d:90:4a:59:ec:60:68:ca:
ae:24:df:b9:89:86:08:44:d3:b7:f9:28:f7:da:23:
0d:f6:72:7d:7b:cc:9f:fb:31:1b:60:4e:5e:45:c7:
0f:f9:87:8f:56:51:d9:5a:66:9f:e6:bf:8e:bd:6f:
31:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:0B:AA:E0:6B:5F:99:03:E1:87:4A:D9:18:A8:7E:67:53:E8:6C:4D
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:75:dc:1d:eb:2d:73:51:a3:43:f6:d3:08:9e:62:e9:e9:83:
e3:0c:f8:a9:e4:97:7a:3c:6e:16:32:85:33:9b:e1:0a:fa:8c:
f2:62:0d:10:c0:e0:f1:81:99:45:eb:3f:42:4c:f0:1d:28:4d:
47:35:18:6c:46:31:13:5c:f8:f7:43:8c:29:d6:9d:8b:bd:37:
cf:67:ac:7e:0b:69:73:20:25:6d:97:05:39:0e:e3:dc:fc:e7:
a8:a1:73:33:06:21:25:57:8b:d4:cf:30:3c:93:1c:7c:52:1e:
1b:08:c5:30:dc:d0:28:5e:d3:52:49:6a:74:db:28:23:6e:45:
17:68:89:11:93:5d:de:ff:2d:65:8d:fc:5d:73:71:ee:58:d9:
73:5f:df:d4:06:0d:7d:f3:66:f7:40:b1:06:33:f6:47:21:a0:
3a:65:df:92:22:5e:93:b0:35:df:3e:5c:5c:f4:63:e0:c9:e5:
0c:28:5b:2b:04:3c:82:23:6c:bb:b9:ef:cd:51:3b:25:93:b0:
3b:23:b6:1e:8c:e7:1e:02:09:81:0b:70:8c:90:f0:cf:16:c3:
a7:13:97:4c:15:d7:16:c1:e3:0d:0e:c5:c4:53:ea:86:dd:d0:
c5:82:be:23:06:ee:c7:ad:5e:2b:70:26:e0:af:e3:9a:b7:af:
b8:f5:ac:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:08:01 2026 by rpki-client