Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
File: bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft (raw, json)
Hash identifier: NNEAHEWv3pARCVEDRUL1cbvP9rnvjRxzqYH1GWXJypM=
Subject key identifier: 08:A7:BD:E6:46:75:0B:8A:75:A0:54:09:0E:26:95:FC:CD:DE:DA:AB
Authority key identifier: 6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
Certificate issuer: /CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Certificate serial: 019CAA5849088571A37EBE332F20989D39B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
Manifest number: 0501
Signing time: Sun 01 Mar 2026 17:00:38 +0000
Manifest this update: Sun 01 Mar 2026 17:00:38 +0000
Manifest next update: Mon 02 Mar 2026 17:00:38 +0000
Files and hashes: 1: YDy6wLds96Yf3zX0RUfnfXQDw5Q.roa (hash: 86RzS+pw/jn2zDtIOdA8fDYlhM/9zcSkfL4mjAAa2B4=)
2: bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl (hash: ixCn+W/eJw6sIbyjk75T15tK45e4AnrwDz6mFvumlCc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:49:08:85:71:a3:7e:be:33:2f:20:98:9d:39:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cc3853da70cdea0dba46414b6b0e6d1f1716e74
Validity
Not Before: Mar 1 17:00:38 2026 GMT
Not After : Mar 2 17:00:38 2026 GMT
Subject: CN=08a7bde646750b8a75a054090e2695fccddedaab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:2a:6b:fd:ee:fc:00:c8:49:df:9a:43:15:a1:
ca:4a:54:b3:5e:76:6b:20:21:3a:b4:85:ea:c8:68:
6f:67:f1:e0:f6:06:27:12:61:c4:6b:d1:8f:30:e1:
e3:6b:a8:96:87:6d:27:a6:81:98:e9:75:54:88:5e:
18:22:f4:7c:c0:9b:10:dc:4e:60:a8:a0:08:63:d6:
76:ca:67:84:cf:5c:5c:e4:a7:b9:42:ae:ca:8b:6f:
b0:e3:3d:7e:c1:ec:b8:df:e3:b0:64:80:89:0b:1d:
34:08:c9:f3:78:36:fe:b9:12:6d:70:cc:5b:c6:b7:
f5:6d:11:ba:36:7d:09:9f:b0:63:5e:63:e1:a4:d1:
bd:9d:6c:31:8e:cf:cf:ed:20:88:4d:4c:02:52:9e:
8a:17:7c:c6:14:fc:5c:7a:5c:5b:54:f4:9e:58:f0:
6a:29:45:6e:0b:2f:bd:62:e3:32:c6:68:63:d6:04:
3a:77:f5:05:6f:af:f2:56:fc:5a:3a:9c:09:5b:5d:
fb:60:2c:41:1e:15:0f:3c:b8:84:5d:00:9c:fd:33:
7d:3d:ab:bc:45:06:d2:d6:8a:e7:e3:cf:71:15:84:
ec:6b:d2:8e:10:2b:af:c8:06:93:60:cc:6f:46:9f:
d1:35:50:79:c7:e5:2e:91:7b:79:d6:7c:c7:9e:ee:
6b:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:A7:BD:E6:46:75:0B:8A:75:A0:54:09:0E:26:95:FC:CD:DE:DA:AB
X509v3 Authority Key Identifier:
keyid:6C:C3:85:3D:A7:0C:DE:A0:DB:A4:64:14:B6:B0:E6:D1:F1:71:6E:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMOFPacM3qDbpGQUtrDm0fFxbnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/d128de-d61d-4f03-9134-046a68ab4c8d/1/bMOFPacM3qDbpGQUtrDm0fFxbnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:54:e4:5b:50:0a:27:9c:e5:18:e9:4c:4d:92:9e:9c:ee:40:
88:b0:2d:2a:89:0d:85:8c:1b:8f:54:89:ae:28:e8:8a:c8:be:
10:13:c1:55:39:d9:45:f8:b5:f4:25:05:64:ea:bc:e2:9a:aa:
55:94:34:cc:7d:36:d7:b0:92:b0:72:03:e6:f5:4a:40:ff:9c:
ed:ee:59:cd:dc:6d:1a:cc:ba:54:d0:ed:de:8b:7a:38:c9:f6:
e5:71:f4:76:5f:0a:09:96:e7:05:74:ae:a3:0a:67:96:12:91:
92:81:7a:73:c9:3b:e9:bf:82:d7:06:4f:ab:02:02:df:cc:a2:
d2:3f:bc:17:0f:c6:c9:b8:40:e6:62:33:de:fa:39:44:36:3a:
b8:88:ac:d0:ea:56:65:eb:a7:dc:86:ac:f2:1e:3d:05:33:77:
18:cc:e3:62:30:2c:a6:7d:a7:67:58:32:33:44:f4:1b:1a:86:
5a:b4:02:e8:10:20:02:84:cc:6b:66:1e:af:4b:c4:c4:6d:65:
f4:84:fd:a5:e3:e8:a3:67:96:d1:47:da:6e:45:09:3f:67:16:
52:9a:b5:0b:9d:60:3b:be:23:29:a7:52:3c:eb:63:47:49:d4:
69:86:1e:3c:25:34:d0:63:06:2a:31:ac:f5:d5:26:9d:34:18:
0f:86:45:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:28:35 2026 by rpki-client