Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
File: rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft (raw, json)
Hash identifier: Ea+0t+eUqid88jOrlXMvSscVawXee6Jbxt97+yKc5hw=
Subject key identifier: EB:58:EA:8C:76:0E:06:FC:AD:D4:C5:5D:26:8A:B2:3B:9C:02:06:9B
Authority key identifier: AC:1A:0B:9C:C5:CE:8B:FD:9E:E2:6D:09:D7:E9:11:51:A4:2D:37:0D
Certificate issuer: /CN=ac1a0b9cc5ce8bfd9ee26d09d7e91151a42d370d
Certificate serial: 019CA9B3E5D63E5B1AD94DE565B0DFE8C960
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rBoLnMXOi_2e4m0J1-kRUaQtNw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
Manifest number: 1845
Signing time: Sun 01 Mar 2026 14:01:05 +0000
Manifest this update: Sun 01 Mar 2026 14:01:05 +0000
Manifest next update: Mon 02 Mar 2026 14:01:05 +0000
Files and hashes: 1: 0QHW6BS2yyw5qTyp4zcRaHP-17U.roa (hash: +rXufiuFMtIa08EoT1bUhTlLA23WdtsleKjffAHj7cU=)
2: rBoLnMXOi_2e4m0J1-kRUaQtNw0.crl (hash: S6jzH/05L9mATUBISQn842QKMiaoYEC1H5Jv7wZB7ZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rBoLnMXOi_2e4m0J1-kRUaQtNw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:e5:d6:3e:5b:1a:d9:4d:e5:65:b0:df:e8:c9:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ac1a0b9cc5ce8bfd9ee26d09d7e91151a42d370d
Validity
Not Before: Mar 1 14:01:05 2026 GMT
Not After : Mar 2 14:01:05 2026 GMT
Subject: CN=eb58ea8c760e06fcadd4c55d268ab23b9c02069b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a9:45:06:3a:ee:17:82:af:34:1a:b9:4d:0a:
4d:e8:c2:10:04:df:73:97:9c:3b:b3:93:98:fa:b3:
25:f1:95:5e:a7:5f:6e:1f:4c:54:5b:c8:5f:ba:c6:
02:68:7c:7f:2d:74:40:6f:5a:5c:96:3b:f6:69:a1:
d6:d2:96:94:7a:8c:f8:31:83:2d:86:58:99:c5:85:
6a:4c:8e:0e:fe:c3:6d:9e:93:04:87:15:f9:b1:f0:
2a:a1:81:9e:f2:b6:d3:76:e2:6f:1f:b3:be:59:e0:
ed:1e:94:eb:b5:04:d8:32:5d:cc:0d:77:ce:44:98:
d8:80:b6:0e:42:58:a3:b4:14:de:5b:42:92:fd:0e:
19:5d:36:e1:67:82:70:06:de:90:a0:fd:e2:29:b2:
89:95:2c:49:04:aa:cd:47:30:ad:37:14:ba:fb:06:
e1:a3:49:1c:86:c9:5c:76:8a:34:a3:c5:b8:4b:44:
33:07:19:bb:5f:21:f3:b2:5b:de:4d:4e:5e:d3:dd:
48:a1:32:93:b4:d0:df:16:ca:c2:8e:6b:17:0e:eb:
82:09:22:27:d7:46:92:77:44:f0:f0:e1:4b:73:6c:
8c:d5:84:e8:39:ff:10:82:ed:45:fc:be:ad:d0:70:
9a:10:4d:cb:96:f8:c5:52:ec:5b:88:19:a6:5d:5e:
b1:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:58:EA:8C:76:0E:06:FC:AD:D4:C5:5D:26:8A:B2:3B:9C:02:06:9B
X509v3 Authority Key Identifier:
keyid:AC:1A:0B:9C:C5:CE:8B:FD:9E:E2:6D:09:D7:E9:11:51:A4:2D:37:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rBoLnMXOi_2e4m0J1-kRUaQtNw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/a32872-88a3-4e84-9f83-aa7353d4d98f/1/rBoLnMXOi_2e4m0J1-kRUaQtNw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:6f:d8:80:27:ee:be:7a:1a:e3:b4:97:14:39:2a:b6:92:5e:
4e:cc:51:13:6c:ef:26:99:5a:c2:f5:bd:e2:3a:03:59:01:e5:
40:e5:1d:ae:8f:41:c9:b7:f3:b4:e4:6a:e8:13:e0:dd:99:d5:
91:cd:65:0f:d6:b8:de:3d:bb:72:13:62:11:ef:97:77:6c:4c:
69:2e:e7:52:c7:a8:ed:1e:f2:49:14:b5:38:bf:62:d0:5b:a8:
c8:6a:21:c1:95:f6:7c:48:42:c8:41:50:0a:2a:dc:66:7c:f3:
16:29:50:b3:d4:5a:d8:ea:ce:07:31:e1:c8:d8:52:f1:67:1a:
9a:93:25:2c:62:ba:97:f2:f4:20:19:1f:f2:83:03:6e:19:71:
d5:02:1f:e9:b2:d3:54:fc:7a:5f:0b:4b:c0:bc:cb:95:0e:d9:
df:ae:9b:0c:65:07:80:2c:c0:ae:7e:94:61:a3:97:c1:e0:11:
29:7d:e0:91:4c:cc:8c:78:d1:aa:6c:83:ef:3d:17:9a:38:63:
df:7e:ac:64:b3:49:0e:0c:e2:a6:8d:f1:09:c6:20:39:e4:39:
7c:6c:91:3d:ee:5e:af:ea:2d:3e:ff:d8:81:88:77:42:63:71:
c5:56:11:63:a4:b5:fd:42:00:55:60:72:5c:3f:74:9b:d4:83:
56:28:d3:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:59:29 2026 by rpki-client