Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
File: tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft (raw, json)
Hash identifier: ehPdOAl2WVl9TiKXtAcArX43cUibGLlMgaOPJmuXLsI=
Subject key identifier: 1B:C1:45:A6:3C:BD:E3:C0:03:87:EB:74:87:46:DE:42:C5:17:A4:53
Authority key identifier: B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
Certificate issuer: /CN=b414b09beeab905ff41e6813256054b182294297
Certificate serial: 019EC035DB1376CB8A2722D8CEA9E3FF0469
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
Manifest number: 0EBC
Signing time: Sat 13 Jun 2026 09:00:15 +0000
Manifest this update: Sat 13 Jun 2026 09:00:15 +0000
Manifest next update: Sun 14 Jun 2026 09:00:15 +0000
Files and hashes: 1: 1-nh-wIZbYRM-66D8NvIzY99bdjc.roa (hash: jemes9VVp08HKRuLT5Tahcqefuga/fZeQJPFwphMPVk=)
2: UBFh1GOJKwfHfVNROX0pySkrhLg.roa (hash: 9aS+pDbF/kRsEGF17ZAi+LnIZ4KLD6/VT70cttfQen8=)
3: tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl (hash: h04m14lNL/d8ApS4tNDQxjJYQlD1sDLtZVvuiRVoeg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:35:db:13:76:cb:8a:27:22:d8:ce:a9:e3:ff:04:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b414b09beeab905ff41e6813256054b182294297
Validity
Not Before: Jun 13 09:00:15 2026 GMT
Not After : Jun 14 09:00:15 2026 GMT
Subject: CN=1bc145a63cbde3c00387eb748746de42c517a453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:87:95:6d:46:7d:a6:65:92:6d:e8:60:de:4a:
63:0f:97:c9:3c:0f:ee:00:ba:43:2f:80:d0:ab:5d:
1b:f1:41:c2:b0:1f:98:6e:5a:a1:ff:d0:f3:ec:70:
95:62:ee:dc:4d:cd:7c:b4:3d:ee:25:8c:ff:bb:23:
fd:b5:80:2d:ef:c4:69:44:c2:1a:5d:67:58:99:8b:
2d:c1:17:e8:66:4a:8a:5d:a7:c9:51:37:d3:f2:9d:
67:38:b1:d6:4f:d6:fa:ca:32:a0:16:47:36:25:ff:
8a:c9:e0:d1:aa:3f:b4:4c:d5:b0:8c:6c:f8:22:8b:
e0:50:06:9f:e3:de:25:66:06:88:5d:c1:28:39:84:
65:2b:22:3d:be:62:26:ec:1f:1f:a7:d5:15:3e:71:
54:6d:48:6a:66:e0:0a:6d:38:25:16:ac:83:b7:37:
71:99:e3:44:ee:cd:7f:92:37:73:74:88:e1:ff:81:
18:a8:de:d6:07:7b:ab:32:8a:90:76:73:38:a8:69:
5a:25:fc:74:81:d0:51:a9:46:b9:dc:c7:c6:91:2a:
06:64:51:ff:6d:1c:d3:17:53:62:ed:fc:eb:91:1a:
1d:d9:e1:62:97:f1:67:94:0e:b3:b5:e4:f9:64:1c:
ab:12:9c:a2:6a:84:af:a3:5c:34:13:32:56:24:03:
7b:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C1:45:A6:3C:BD:E3:C0:03:87:EB:74:87:46:DE:42:C5:17:A4:53
X509v3 Authority Key Identifier:
keyid:B4:14:B0:9B:EE:AB:90:5F:F4:1E:68:13:25:60:54:B1:82:29:42:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tBSwm-6rkF_0HmgTJWBUsYIpQpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/800eb6-868b-4a30-b402-4bce424723d9/1/tBSwm-6rkF_0HmgTJWBUsYIpQpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:0f:43:68:24:1a:e8:b9:96:f7:eb:50:3d:0a:72:0c:32:49:
09:a0:ca:73:17:33:fe:00:1d:b4:a9:c5:50:3f:95:3e:db:f3:
7b:65:8a:b3:cc:3d:a4:33:b8:18:47:6b:aa:30:87:4a:36:70:
f4:7f:ba:94:05:7c:c1:f5:37:1c:9d:a4:14:a4:e9:b6:4b:67:
5c:52:c1:96:dd:68:fd:d3:0c:c4:00:79:a1:c8:b9:e9:96:92:
e9:7f:0c:4a:38:e5:d2:ef:e6:82:df:1f:31:43:a4:38:38:2e:
86:67:e2:76:11:f0:f2:3f:1a:0b:3d:51:68:5d:43:05:f1:6a:
13:b7:e5:fe:e0:5e:d1:30:09:15:06:dc:ee:af:8e:b4:af:9c:
f8:52:09:c6:95:f4:2f:94:69:ea:78:08:45:21:10:3d:1d:b8:
3d:ca:c1:bd:2f:3d:ba:65:ad:6e:87:0b:44:e2:b7:80:0f:81:
13:01:28:ae:5e:34:1a:c4:1c:69:d6:4f:18:20:e9:9a:20:6d:
b0:d2:55:74:37:ab:d2:6d:47:da:6e:9b:51:06:87:0d:98:ab:
b3:db:d2:51:21:f4:1b:d7:ff:c4:26:63:91:6e:fb:8b:20:1b:
da:19:88:5e:c7:e2:11:7b:77:68:15:8e:0b:01:15:4f:0f:21:
20:91:81:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:22:23 2026 by rpki-client