Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
File: bs1crU0zBsT3LEKvwG5c0fuv46M.mft (raw, json)
Hash identifier: PEmcZ7gf4wc8uSGj8Wp3PtlviDwiSRLxeUPYaGPBJGc=
Subject key identifier: 16:A3:C1:53:31:AA:6C:D9:1F:72:48:98:24:07:A5:5F:3D:DB:CF:31
Authority key identifier: 6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
Certificate issuer: /CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Certificate serial: 019EC1EDFA463B231E9155AAF0EDC9369F84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
Manifest number: 196A
Signing time: Sat 13 Jun 2026 17:00:59 +0000
Manifest this update: Sat 13 Jun 2026 17:00:59 +0000
Manifest next update: Sun 14 Jun 2026 17:00:59 +0000
Files and hashes: 1: 1-XAPtzpEBbR-dL3HDvpMhi_QEZc.roa (hash: Y3Cc5NFdOsrYFpq1aDkqCQTbdqgeCbiviULrvKO6HjA=)
2: 84QPNs99F2FLKJtQBYoOZt3F3p8.roa (hash: EjdzLhSfZiaXxVtxCqo06jqnawXCpF2ar+1qQ5nt39k=)
3: bs1crU0zBsT3LEKvwG5c0fuv46M.crl (hash: pRYgfP9Wz48aLxc0DUfCgiUDETYcBdrITxUr+3vxUao=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ed:fa:46:3b:23:1e:91:55:aa:f0:ed:c9:36:9f:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ecd5cad4d3306c4f72c42afc06e5cd1fbafe3a3
Validity
Not Before: Jun 13 17:00:59 2026 GMT
Not After : Jun 14 17:00:59 2026 GMT
Subject: CN=16a3c15331aa6cd91f7248982407a55f3ddbcf31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:02:5f:81:e8:68:14:cc:29:40:5a:38:c9:a2:
12:70:dd:25:60:85:ac:3b:c7:2a:3b:29:41:19:cb:
cc:f9:22:e8:d1:31:86:68:ea:8d:79:29:5d:05:1e:
f2:29:bd:47:17:b5:0a:1f:4d:66:59:f1:2d:c4:32:
aa:03:f5:1a:13:04:44:60:f1:99:d8:86:dc:98:69:
df:8b:d1:33:1e:e4:d5:e6:11:b6:7b:d6:26:74:38:
6d:53:ff:4f:83:79:14:45:34:62:17:66:d1:12:64:
73:14:a0:bf:ea:b4:51:b3:52:bb:44:01:a7:3e:d6:
98:90:14:70:83:6a:ed:02:54:b8:3b:91:eb:b7:6b:
0d:1a:e8:2d:c6:ab:c1:5f:7d:c4:ff:b1:cd:dc:90:
1c:ae:53:93:a1:3c:da:5b:5d:7a:bf:86:21:8f:ab:
5a:d6:f2:ae:2b:34:5d:97:14:f9:5b:72:67:6b:f7:
53:80:01:dc:71:99:a2:98:c2:e8:9e:54:6d:31:7f:
d8:8f:d7:4c:02:64:0c:95:dd:01:1c:12:0b:30:08:
ce:9a:05:0a:88:1c:c9:8d:98:7e:bf:bf:41:ba:ce:
67:e2:e2:b5:b2:78:8a:fd:65:df:c4:fc:ed:86:b4:
20:05:11:42:66:1f:f3:88:65:8e:90:34:73:97:ec:
92:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:A3:C1:53:31:AA:6C:D9:1F:72:48:98:24:07:A5:5F:3D:DB:CF:31
X509v3 Authority Key Identifier:
keyid:6E:CD:5C:AD:4D:33:06:C4:F7:2C:42:AF:C0:6E:5C:D1:FB:AF:E3:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bs1crU0zBsT3LEKvwG5c0fuv46M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/496525-2c0d-43e4-8188-5fbc230abdc2/1/bs1crU0zBsT3LEKvwG5c0fuv46M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:8a:19:aa:62:0a:7a:22:7f:b4:3d:32:8c:97:37:27:32:0c:
3f:ea:86:b8:97:e1:8e:89:f2:28:41:d2:b0:fb:5e:a1:98:85:
f0:38:5c:0f:1c:a0:3a:62:21:a3:13:30:19:64:e3:dc:45:dd:
f1:55:f6:4f:e9:93:63:a5:27:d8:1c:77:81:8f:e2:94:ab:88:
e3:6e:3c:96:25:7a:ea:9e:de:a3:62:44:8a:b2:be:01:f9:70:
df:65:3d:dd:0d:51:e6:fb:5f:c9:da:59:62:e0:60:21:f8:40:
a2:54:f6:bb:4b:da:d0:05:ec:64:b5:d3:b3:ea:3d:4c:04:43:
51:81:c6:6f:51:96:04:eb:63:f2:82:53:b9:e3:f6:44:c4:34:
a9:fe:5e:2d:22:f4:40:e9:f6:b2:68:d5:81:3b:91:a3:e2:80:
be:5e:55:ce:91:7a:dd:82:07:d7:b0:e6:de:84:7a:75:1a:a9:
56:89:24:ac:e6:8c:27:c7:ca:5b:3f:ee:d4:05:d2:11:f0:af:
a0:94:4c:34:39:4f:70:0d:f3:5b:c3:7b:39:3d:fe:20:9a:79:
22:d4:19:08:5f:36:21:9b:b8:f9:3e:5e:62:75:ca:57:3f:ab:
06:5f:16:44:eb:fd:fe:ea:0e:79:58:01:5f:36:16:61:5f:ef:
9f:b3:96:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:48:27 2026 by rpki-client