Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
File: bOLuhMz1bNwA_CyqWSknna4UiIo.mft (raw, json)
Hash identifier: r/RNujCfjG0Q7yFqP6VZnRekdB7I/TWSnIvZDNI9IYY=
Subject key identifier: 12:86:DD:8F:31:D4:08:9B:07:9C:DB:54:25:D2:F8:F1:90:03:E7:6C
Authority key identifier: 6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
Certificate issuer: /CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Certificate serial: 019CABD9B136A13FBCCBDC7351C9AF3D1F74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
Manifest number: 138A
Signing time: Mon 02 Mar 2026 00:01:36 +0000
Manifest this update: Mon 02 Mar 2026 00:01:36 +0000
Manifest next update: Tue 03 Mar 2026 00:01:36 +0000
Files and hashes: 1: bOLuhMz1bNwA_CyqWSknna4UiIo.crl (hash: 2N3n+XDGOc6wT641M7c35X9rtv1VySarbCmDFpRPP1k=)
2: skgCaWxmIa3l2drnsUs1g9IHP6k.roa (hash: 38OQkMAm1X1v8VW5NmpHGjFcQdQR+2I5zzoNHi9K3wk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:b1:36:a1:3f:bc:cb:dc:73:51:c9:af:3d:1f:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ce2ee84ccf56cdc00fc2caa5929279dae14888a
Validity
Not Before: Mar 2 00:01:36 2026 GMT
Not After : Mar 3 00:01:36 2026 GMT
Subject: CN=1286dd8f31d4089b079cdb5425d2f8f19003e76c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:1e:64:2c:53:6c:14:26:29:be:65:6e:93:f8:
b6:01:50:53:be:1c:ff:0b:65:51:f2:37:cc:63:db:
b5:89:1b:f4:39:57:6c:7e:9a:b8:17:5d:59:30:be:
36:3c:2e:9b:9e:ac:d6:7d:ce:5d:73:d7:62:42:0d:
42:ec:d5:84:a6:8e:22:b7:9e:f0:5c:d6:e0:62:20:
17:0e:0d:f8:e3:73:9e:8d:cf:8e:b8:50:33:5e:08:
1c:55:09:29:01:a2:a6:81:53:49:77:69:46:d2:71:
a2:63:d7:62:b0:bc:32:a3:5a:ae:25:df:60:80:60:
45:94:5c:86:81:6e:6f:72:47:40:b2:e4:b0:91:08:
b0:b9:be:d6:c8:b0:0f:59:2d:94:41:e8:04:f3:fd:
1e:8a:05:d9:d2:33:3f:0c:41:72:f5:00:17:ca:97:
a3:9d:8d:df:2c:9a:6d:64:4e:76:63:bc:74:43:8b:
41:19:5a:2e:bb:bf:92:1a:f0:67:fd:d2:99:c2:2f:
f4:75:07:f4:bf:06:4f:83:49:ac:5f:75:ba:0f:1b:
5a:4a:04:7e:fa:9e:bd:d6:c4:ea:6e:b9:f8:1b:34:
00:a3:98:34:2b:fd:72:60:d7:c5:d3:db:f1:70:41:
1f:79:72:18:91:0e:bc:6a:f7:e3:42:58:fa:0f:ca:
91:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:86:DD:8F:31:D4:08:9B:07:9C:DB:54:25:D2:F8:F1:90:03:E7:6C
X509v3 Authority Key Identifier:
keyid:6C:E2:EE:84:CC:F5:6C:DC:00:FC:2C:AA:59:29:27:9D:AE:14:88:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOLuhMz1bNwA_CyqWSknna4UiIo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/7d6f2f-984d-4961-a63b-495c6f2c5173/1/bOLuhMz1bNwA_CyqWSknna4UiIo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:50:21:d4:f1:39:ee:f2:3b:89:03:e8:04:68:9f:35:43:d1:
84:ed:b5:18:3d:16:ae:9f:b7:74:6a:fd:5e:69:2f:42:96:8b:
d8:bb:d1:80:43:8f:15:cf:e7:63:2e:40:77:ac:0f:53:eb:60:
49:56:cc:5a:3f:94:16:8e:19:fe:0c:fe:0a:d3:73:7a:46:9a:
27:0a:92:91:5c:11:9c:4b:12:30:86:4b:91:b0:4b:88:44:96:
fe:b7:12:4a:4d:2d:5b:87:60:f2:88:e1:a3:b1:f6:ea:4c:03:
80:f9:3f:2f:8b:d5:e4:56:05:92:01:cc:68:5b:28:4c:02:03:
26:91:6a:fb:f2:d9:19:8c:d0:22:5e:ef:35:c2:48:cb:9f:f8:
7b:ab:23:9e:86:04:d5:ea:82:f7:6c:59:f2:63:95:a2:16:9c:
30:54:e7:b8:c6:cf:1e:8c:96:94:80:30:79:f1:4a:e1:e2:7c:
df:67:df:0a:2c:06:05:04:5f:3d:87:a3:5d:82:57:95:25:06:
56:54:22:8e:b4:b0:db:92:90:0e:ad:85:5b:fd:df:d3:8c:31:
87:37:47:38:04:f9:1f:72:f6:f3:62:f2:43:9e:54:d2:2e:5b:
79:3b:c9:52:69:7f:d8:9a:93:88:65:3b:7a:67:ab:9c:d7:ae:
4d:76:a9:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:04:58 2026 by rpki-client