Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
File: bSPOewwQBo-8RMAhlD4zkBPyruA.mft (raw, json)
Hash identifier: 8SV/7KkRsyXjCLlvK0+/b1wFBerEXD802k9zoShve2c=
Subject key identifier: 6F:B5:28:3C:5D:7E:C0:D1:C8:DD:39:A4:72:66:F0:48:CD:CE:E3:00
Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Certificate serial: 019CAFB6AB76B9E5391CA3573C562ABE1374
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 18:01:49 +0000
Manifest this update: Mon 02 Mar 2026 18:01:49 +0000
Manifest next update: Tue 03 Mar 2026 18:01:49 +0000
Files and hashes: 1: WK4FeKC76gPpIjRhyORnL_0frZU.roa (hash: vdHNIiugtJJb19ih4gpWPEIdemNrQgRmwJqyp8Z7ys0=)
2: bSPOewwQBo-8RMAhlD4zkBPyruA.crl (hash: 4Y4L6bNF4MsYOT/B8q3tIHGD/R6+Vy0KDWBomZI3i44=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:b6:ab:76:b9:e5:39:1c:a3:57:3c:56:2a:be:13:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Validity
Not Before: Mar 2 18:01:49 2026 GMT
Not After : Mar 3 18:01:49 2026 GMT
Subject: CN=6fb5283c5d7ec0d1c8dd39a47266f048cdcee300
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8e:f2:f5:6e:27:8b:ca:03:a0:ee:6a:1d:bd:
da:aa:cd:8d:ed:e4:56:df:4b:12:73:8c:ef:5f:ea:
77:ad:df:40:90:c7:e7:2c:15:a9:51:40:8b:1e:d1:
b9:d2:d3:16:b9:33:db:7f:86:2e:ed:a4:fb:f9:6a:
7a:c0:8f:25:32:0e:7e:22:b5:09:04:9d:03:30:c8:
cc:74:eb:a4:10:f2:b2:0e:73:ca:a7:d9:a8:49:1f:
84:30:45:c2:40:e9:8e:0a:1f:45:24:57:de:92:48:
9f:44:57:fa:70:9f:82:a8:f0:45:51:9f:28:22:d4:
c4:6c:9a:48:a8:75:9b:a3:0c:34:92:2a:b1:78:21:
e8:c1:63:ac:63:97:90:1c:c7:1c:bd:1b:1e:1c:60:
a5:4e:6a:dd:58:09:2b:88:08:68:9c:52:df:f3:42:
5e:6b:23:11:e3:11:06:99:34:8e:3d:06:4b:8d:8d:
96:9c:a9:32:44:e6:23:16:4b:c7:cb:b4:3b:03:4e:
e6:bf:df:c5:59:95:0b:e3:ee:3a:ec:0c:50:0a:ff:
10:3e:97:11:c8:5c:8f:be:26:07:bf:24:bd:f5:2f:
0c:fa:ed:11:c6:61:8b:98:f7:a7:7e:14:cb:53:e6:
c8:64:96:3b:a3:bb:8c:be:0e:30:d0:d1:ef:3b:89:
f9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:B5:28:3C:5D:7E:C0:D1:C8:DD:39:A4:72:66:F0:48:CD:CE:E3:00
X509v3 Authority Key Identifier:
keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:d2:6e:29:1f:3d:14:55:ed:5f:8f:18:c7:37:8e:1a:2e:31:
bf:89:31:58:2f:bb:56:3e:66:d4:2e:5d:b4:70:54:aa:a6:d6:
a6:17:70:ce:f2:19:2b:d4:ca:09:14:00:ba:6f:e3:f2:75:fc:
77:49:e6:61:b2:d5:e4:e3:94:5a:ec:82:fa:22:fa:c8:62:20:
cd:0a:c5:b6:60:fc:6d:57:d6:99:83:c9:4f:2d:ca:98:11:89:
74:b4:b9:ac:7e:99:99:a7:9d:68:ee:c2:c2:32:42:f0:6c:39:
3a:ea:cb:c1:ba:15:50:3d:0d:e8:11:98:d1:37:5f:3e:4e:86:
6a:16:9e:a8:a5:b7:26:d6:81:1c:72:b2:43:2e:c0:e9:d8:20:
c5:78:5e:da:19:1c:67:6c:f3:01:e0:fd:35:1e:24:76:c6:cf:
ac:c4:10:7f:24:99:9f:e3:8b:d7:26:6f:dc:da:6d:97:75:c8:
53:aa:42:7f:4a:43:93:1d:82:c6:67:51:8f:34:5a:76:7a:66:
75:4a:b9:32:4b:ba:6e:c0:3e:76:d7:d4:12:a2:e3:e7:9b:52:
2f:ad:69:48:af:f7:83:91:47:94:b3:e2:df:91:c9:1f:50:eb:
c5:33:63:be:f8:2a:74:10:70:d9:6f:67:19:79:e4:30:7e:df:
b4:5a:b2:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 00:58:28 2026 by rpki-client