Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
File: 0bS-sKan4ShKv0OFNIz0hhALn4A.mft (raw, json)
Hash identifier: 9Hsuao2Yv9tvy86lfrQ3SJ7BQduUcBo0U71EhoawrgY=
Subject key identifier: D7:6F:22:8F:92:6B:2E:91:EC:C3:43:15:DC:8D:55:EB:31:AB:03:3B
Authority key identifier: D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
Certificate issuer: /CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Certificate serial: 019CABA2668F5C65BE4DC052662981981190
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
Manifest number: 1047
Signing time: Sun 01 Mar 2026 23:01:12 +0000
Manifest this update: Sun 01 Mar 2026 23:01:12 +0000
Manifest next update: Mon 02 Mar 2026 23:01:12 +0000
Files and hashes: 1: 0bS-sKan4ShKv0OFNIz0hhALn4A.crl (hash: 7BbDf+tZqIWGh5geq33HjpVmiw7Ef9yKdgIjDpesW9E=)
2: BBKAblizkGIJV_f06RIh70XLtr0.roa (hash: EDuWd1ayZXpmIRskDvDc511OzhDthWRGsbu0u3My31o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:66:8f:5c:65:be:4d:c0:52:66:29:81:98:11:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1b4beb0a6a7e1284abf4385348cf486100b9f80
Validity
Not Before: Mar 1 23:01:12 2026 GMT
Not After : Mar 2 23:01:12 2026 GMT
Subject: CN=d76f228f926b2e91ecc34315dc8d55eb31ab033b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:9a:5a:27:bf:96:00:7f:7d:85:45:fc:9e:82:
27:3b:e6:0e:c2:33:2f:cf:d8:ad:cd:7b:1e:ce:b8:
7d:7a:4f:59:dc:b3:8d:56:0f:ea:32:53:e8:94:2e:
48:43:6f:52:d8:9a:47:2d:2e:08:86:53:54:5e:7e:
08:e0:7f:93:a8:bd:1c:da:d9:1f:38:46:b9:98:5b:
21:25:02:2c:39:f2:0c:56:85:31:98:62:e3:65:c5:
1c:4b:18:38:4e:e7:39:f7:fb:01:d8:fd:70:18:76:
5a:79:ea:51:0e:49:2e:37:f1:c0:45:d1:8c:7d:0c:
e1:78:3d:51:d1:ff:5a:f5:59:b6:7d:63:a0:86:a6:
b2:8a:40:b1:83:e0:98:81:7c:5a:37:59:67:ad:62:
2f:5c:24:d6:55:97:36:8c:86:00:fe:35:9a:e3:1a:
90:42:21:40:82:63:29:08:d1:5b:e1:dd:4d:08:2b:
7e:14:cb:cc:50:73:92:a2:14:94:13:b1:99:01:49:
e1:9a:86:02:88:78:5b:7b:a8:e3:f2:39:13:02:6a:
b3:a2:3e:36:1e:08:75:7d:ef:8c:13:6b:b3:ad:04:
a5:09:95:73:24:d8:bc:d7:5c:ec:d9:91:f4:fb:f0:
69:a3:16:45:38:c6:5e:c3:20:58:ba:66:ad:4d:c7:
ed:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:6F:22:8F:92:6B:2E:91:EC:C3:43:15:DC:8D:55:EB:31:AB:03:3B
X509v3 Authority Key Identifier:
keyid:D1:B4:BE:B0:A6:A7:E1:28:4A:BF:43:85:34:8C:F4:86:10:0B:9F:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0bS-sKan4ShKv0OFNIz0hhALn4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/f8d98d-1ffe-4639-b373-9ba1172a68c0/1/0bS-sKan4ShKv0OFNIz0hhALn4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:c9:6e:6a:32:4e:1c:e1:7f:64:2b:b0:9b:7b:b6:e7:fa:fe:
8b:86:ae:01:a7:1e:7e:b4:d0:e1:a8:01:90:9a:78:75:aa:46:
7d:2d:bb:50:ec:89:94:b3:3e:80:b2:84:b6:cd:e4:bd:e5:83:
2f:fc:19:fb:34:c1:41:e1:a0:31:99:01:02:1b:d8:91:f7:40:
a0:1c:3b:09:0b:4b:a3:cf:ff:d0:55:e6:fc:c0:f8:8c:a8:a9:
b1:e4:c7:b4:9c:8f:f4:63:0a:3d:9c:ac:86:b9:be:3a:87:e7:
ff:36:6d:a0:77:95:b2:6f:55:27:0d:1e:21:fb:7b:14:78:b1:
ca:aa:2d:db:8e:28:95:21:e9:fe:07:a4:20:80:87:49:e3:78:
0f:a4:e0:29:0c:6b:f0:b5:01:26:e4:d0:2a:c3:ed:22:cf:62:
57:8c:b4:0d:5f:07:54:e5:be:e9:64:b9:b1:db:c7:3e:10:99:
9d:64:5c:be:40:4e:d1:f5:be:68:33:96:3f:ca:52:8c:0a:de:
34:f9:68:b5:bc:64:14:21:16:1d:b7:47:fc:41:2e:d3:30:35:
d4:99:c6:58:b6:ef:6d:89:e1:d4:0c:6f:5f:98:6f:61:d9:ad:
11:88:43:c0:a0:87:93:81:f0:33:8f:c4:ec:22:70:22:05:f4:
8d:ff:f8:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:56 2026 by rpki-client