Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json)
Hash identifier: k8ywCqy08SKH4ivAjQ/0yD5uc7l768qaH/LTF/nhLPI=
Subject key identifier: A9:FC:4C:F5:F0:9A:87:9C:F9:70:B0:AE:A6:8C:33:2C:C7:E5:06:2C
Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Certificate serial: 019CAD2250F3B7976C54FAD18FFCB39714C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
Manifest number: 15BD
Signing time: Mon 02 Mar 2026 06:00:33 +0000
Manifest this update: Mon 02 Mar 2026 06:00:33 +0000
Manifest next update: Tue 03 Mar 2026 06:00:33 +0000
Files and hashes: 1: 1-2P8OWE-nT9yglepyYQAlaB5NfE.roa (hash: hXJitTuZsInHr+UtjyUxAZf5csxkpDvw7CF/W7Cve9U=)
2: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: VzC017tk9aCd4aYIa8Dhh4r+OZ5wGtcm98Y8BpIsnSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 06:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:22:50:f3:b7:97:6c:54:fa:d1:8f:fc:b3:97:14:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c
Validity
Not Before: Mar 2 06:00:33 2026 GMT
Not After : Mar 3 06:00:33 2026 GMT
Subject: CN=a9fc4cf5f09a879cf970b0aea68c332cc7e5062c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cc:c2:00:b6:27:84:f0:d7:e7:09:fb:45:1e:
60:0c:be:a6:34:dc:a1:ca:f7:63:1b:45:48:39:98:
14:f0:6a:83:b9:f6:d8:af:2b:8c:80:31:9a:75:77:
05:f5:8a:da:7d:11:87:36:5a:a6:65:36:1c:80:7c:
67:04:e8:e1:cf:5b:be:64:c8:a6:10:46:17:4b:24:
c1:3b:fd:e4:4b:13:6e:b9:7f:f5:67:81:38:e5:ed:
6a:15:30:97:02:f2:01:42:7a:26:81:0e:d9:6f:73:
25:34:78:8c:d1:29:db:91:cb:98:ed:9b:7c:53:8b:
1b:e6:16:40:fc:f4:37:e8:7d:5c:cb:fd:16:61:dd:
5d:05:fa:2d:5a:22:8b:51:0f:7a:76:0a:ec:12:5f:
29:93:ac:48:0c:c6:ea:16:01:1b:0d:d5:a4:3f:27:
c9:b0:30:a0:26:84:59:79:3b:99:a3:5d:41:1c:07:
a6:86:0e:89:6f:90:dc:c2:69:e7:f7:c7:df:50:f8:
68:fb:56:24:23:e4:5d:ac:80:a4:ab:00:d9:19:5d:
c9:05:74:b0:3e:79:01:0a:0b:2d:3e:8c:82:78:0b:
36:24:a9:a4:44:ae:77:2c:c8:40:86:bd:2e:4d:f9:
d9:c4:3f:bc:68:97:9c:03:3b:c7:6c:37:69:bc:a9:
85:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:FC:4C:F5:F0:9A:87:9C:F9:70:B0:AE:A6:8C:33:2C:C7:E5:06:2C
X509v3 Authority Key Identifier:
keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:5a:83:84:c2:9b:8b:f8:6c:05:b3:8d:09:cc:85:ac:c9:68:
74:06:98:08:02:f8:e7:65:00:c9:4f:e4:d0:1e:b2:4d:61:b5:
c1:90:36:2e:e9:f0:33:82:ce:1a:fe:7c:1a:68:b0:0f:59:a9:
ed:93:90:de:34:04:0b:83:9c:b1:3e:43:b4:c0:6f:f7:6e:cb:
2a:97:7f:2c:9d:9d:64:30:a9:bd:12:39:27:fd:9d:70:10:bd:
c2:7b:fa:cd:a5:b0:a7:72:00:26:5a:42:b0:09:3b:69:e9:73:
97:34:65:9a:42:dc:1a:b1:8c:09:73:0d:50:5d:07:7e:a5:e1:
90:9d:22:31:38:94:7b:81:7f:75:06:d3:fd:9c:03:4a:c0:58:
da:9d:91:03:a6:b8:33:1b:10:88:02:cb:a2:d0:fa:6c:b8:d9:
2c:17:67:27:72:c3:91:33:ad:1f:e3:c2:f4:0c:5c:04:2c:5c:
27:bd:02:72:c6:8e:32:c4:f4:c3:22:6e:f5:8c:ed:3e:3a:08:
b6:d4:96:06:b5:42:bb:c6:96:96:fc:0c:14:e6:d5:a8:6a:c9:
59:8e:21:7e:7f:07:59:8b:e0:9b:a1:6a:12:7b:bf:14:75:1d:
cb:7e:27:08:c5:2d:56:0a:af:e5:f0:d9:ae:a6:f6:c0:8f:1f:
0c:5b:e3:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:05:06 2026 by rpki-client