Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json)
Hash identifier: GB4ydDv5iwA9s0MdUgnGCsZcL4OAIKXIZ8wM/UuF6jU=
Subject key identifier: 1E:9D:13:92:E8:61:6F:AA:C2:CB:2E:80:81:62:07:13:E9:A2:CC:6E
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 019D992B692FECE771173E4E48962FDB5268
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
Manifest number: 10C2
Signing time: Fri 17 Apr 2026 02:00:52 +0000
Manifest this update: Fri 17 Apr 2026 02:00:52 +0000
Manifest next update: Sat 18 Apr 2026 02:00:52 +0000
Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: 4FmWoVNFxhAZlosnXkVWkgL8AkHkupvmQLPtUKGXEJQ=)
2: BBKAblizkGIJV_f06RIh70XLtr0.roa (hash: EDuWd1ayZXpmIRskDvDc511OzhDthWRGsbu0u3My31o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:69:2f:ec:e7:71:17:3e:4e:48:96:2f:db:52:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: Apr 17 02:00:52 2026 GMT
Not After : Apr 18 02:00:52 2026 GMT
Subject: CN=1e9d1392e8616faac2cb2e8081620713e9a2cc6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f6:eb:f9:8e:72:ca:95:ec:0e:3e:7e:bb:97:
e4:f5:b8:67:09:0a:95:b3:96:bf:99:3e:fb:c3:4f:
2c:60:8c:f5:cc:04:99:05:6c:e2:b8:17:75:46:4a:
87:cd:b9:6e:1f:2a:85:c1:a8:64:a9:86:5c:2f:ce:
82:74:4c:ba:45:5d:d5:46:ad:17:37:eb:35:c1:eb:
e1:95:6b:0a:49:7a:7c:72:82:84:4d:d4:2e:75:ba:
e6:43:21:c1:ba:23:69:36:28:b2:e2:e2:9e:58:6a:
15:9d:51:d3:d9:9d:6c:f4:20:c4:cd:10:e1:f2:93:
3e:d6:af:25:cf:2c:12:62:c9:25:98:79:61:2d:a4:
37:d6:e2:5f:d2:66:28:25:1b:13:56:3e:9e:73:2b:
b6:f2:68:99:27:e6:31:68:c8:3d:21:23:00:9f:53:
fd:9b:c7:12:46:25:92:fe:42:32:12:34:46:09:89:
08:8f:f1:ee:f2:49:36:8c:16:6a:93:df:ff:2a:76:
72:ab:d0:72:eb:18:bf:b9:39:ba:35:eb:92:4c:4f:
82:cb:8b:35:ba:e6:88:d3:95:86:5d:db:99:d9:df:
9f:fc:1a:27:83:c3:eb:a8:82:32:d3:b8:83:8f:57:
4e:19:d4:96:b6:72:cd:04:00:45:59:b2:73:f9:56:
3e:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:9D:13:92:E8:61:6F:AA:C2:CB:2E:80:81:62:07:13:E9:A2:CC:6E
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:6e:ae:8f:33:52:33:54:86:21:ef:62:c5:48:45:7f:bf:ac:
33:2c:fb:b8:8d:2f:19:e0:ab:18:cb:03:74:5a:79:81:c2:9c:
10:f4:14:32:4a:b9:b8:97:57:7a:0b:7a:2a:78:3b:d0:ed:dd:
47:ff:b8:47:06:4e:58:5e:68:dd:26:20:5c:86:ba:b8:c7:9c:
4c:75:70:07:47:b8:96:ee:dc:45:31:4d:f1:88:84:a9:2f:23:
07:b4:9d:94:8f:e1:10:9c:99:3b:f5:a2:e2:9e:62:0f:de:83:
37:ed:0f:ec:3c:d3:2a:f3:0a:e0:d3:f5:2e:2f:90:49:0c:12:
e1:c3:f1:f2:6a:38:b1:42:10:49:3e:8f:28:df:7e:38:72:e5:
f4:0d:a5:6b:c4:03:e0:e1:0c:e6:85:d6:4d:c5:62:88:a0:b9:
57:2a:74:59:0f:8b:32:dc:5b:e1:e3:9d:3b:d4:0e:68:29:da:
70:20:e0:eb:f7:4d:c3:a2:bf:26:73:55:2d:c7:9a:ca:b0:d9:
cd:58:bb:eb:0d:74:f7:c0:d6:6b:3f:fb:23:a8:b2:ff:3f:bc:
1c:8a:25:a3:7c:98:b1:b2:77:85:11:c4:35:8a:92:fa:7b:71:
70:1a:dd:0e:35:eb:cf:fc:38:d7:54:81:75:4c:d3:2e:f6:d1:
d0:c9:d1:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:12:01 2026 by rpki-client