Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
File: bLdrU2M4PWjlVeUnClkx2DQOGA0.mft (raw, json)
Hash identifier: JqCl+BeQ3D3eTxN0Eqp3Y+hApCH5nRCTUcpqnhxD1KQ=
Subject key identifier: 41:C2:58:60:5D:78:3B:B1:AD:6F:D6:C2:0E:FB:69:BD:82:D9:23:61
Authority key identifier: 6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D
Certificate issuer: /CN=6cb76b5363383d68e555e5270a5931d8340e180d
Certificate serial: 019D98F4BF3D7A636141BDC8E444B5A277AA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
Manifest number: 104E
Signing time: Fri 17 Apr 2026 01:01:09 +0000
Manifest this update: Fri 17 Apr 2026 01:01:09 +0000
Manifest next update: Sat 18 Apr 2026 01:01:09 +0000
Files and hashes: 1: bLdrU2M4PWjlVeUnClkx2DQOGA0.crl (hash: x8Sg+sFQXQWLueT6+BWIRcJwRVo/B7zmXU5tFOK3aG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:bf:3d:7a:63:61:41:bd:c8:e4:44:b5:a2:77:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb76b5363383d68e555e5270a5931d8340e180d
Validity
Not Before: Apr 17 01:01:09 2026 GMT
Not After : Apr 18 01:01:09 2026 GMT
Subject: CN=41c258605d783bb1ad6fd6c20efb69bd82d92361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:25:ea:8e:ed:48:ef:a0:6f:fb:51:89:0e:d0:
27:bf:04:49:cf:9f:90:5b:45:10:72:9c:49:0a:4d:
3c:a4:f4:ef:af:27:91:d0:6c:94:bf:b6:c4:92:14:
08:c9:b3:23:8b:aa:f5:e2:b1:ef:4f:7d:83:d0:f4:
7e:7a:4d:e7:f7:fb:73:8c:62:bf:d8:db:87:95:bc:
ea:aa:13:b5:81:66:4a:f9:2d:36:b9:b3:74:60:7a:
d8:41:3f:50:94:25:56:f3:7c:2e:21:e4:f1:92:a9:
be:dc:2c:1a:cb:84:6b:a8:22:d2:13:d8:a2:9c:5c:
64:dd:0b:68:5f:86:d8:07:19:89:95:ab:c3:8a:8e:
5c:6f:a1:bd:71:fa:d2:e2:b4:7a:c6:ae:2c:b9:e4:
dc:8a:c1:ca:26:fd:c7:47:9c:dc:c1:10:44:57:51:
07:da:46:9e:6e:5d:59:ac:37:a5:91:03:7f:78:8a:
a1:77:e1:1e:02:e2:9a:aa:aa:92:d9:b7:fc:c6:90:
51:0e:02:95:3f:24:c5:5e:c9:70:12:c5:91:75:63:
cb:a6:04:2c:d9:a8:a5:38:05:0d:df:04:91:b2:2e:
de:89:8d:9f:78:23:a5:21:66:ed:b9:16:37:b8:ce:
07:99:7e:7c:5b:0f:c9:af:65:18:bf:f8:3c:5b:cb:
81:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:C2:58:60:5D:78:3B:B1:AD:6F:D6:C2:0E:FB:69:BD:82:D9:23:61
X509v3 Authority Key Identifier:
keyid:6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:85:e8:ab:99:9f:35:05:15:42:ed:3d:56:8f:41:12:70:7c:
1b:f1:3d:40:4c:7b:8a:8b:a6:c1:18:26:a6:1f:81:bd:b1:89:
bf:3c:8b:e3:13:a4:86:0a:40:9e:bf:22:c0:13:20:c8:38:13:
97:52:74:bd:45:af:14:a8:ba:d5:a7:73:87:4f:0b:33:25:0c:
a5:15:8a:00:24:28:2d:7f:8b:24:f7:f3:a4:2d:44:87:d2:a5:
76:7d:8a:8d:a9:0e:8c:f7:78:ab:ab:72:8b:9f:c1:82:e9:0e:
5c:0c:5d:ed:5c:f5:02:2a:68:75:66:e1:65:5a:80:09:c1:8e:
52:12:38:78:17:32:7e:c2:70:cc:0f:56:72:06:f4:2c:e8:60:
6e:fd:b7:55:4f:6d:03:ba:a9:4c:a9:0d:b8:cb:f2:80:a8:fa:
2c:4b:5d:c0:17:fa:4b:ed:1b:b3:ae:f9:82:ff:de:33:25:f5:
2c:bd:88:1a:6e:10:06:41:e4:27:fe:de:fc:9f:34:f8:2d:08:
48:c9:f3:42:62:46:72:e8:08:74:0a:ee:e7:b6:40:98:f6:ea:
3e:ff:3d:74:48:f2:0b:67:d9:10:ac:86:44:a2:02:0c:9b:e8:
cc:ab:bb:82:e2:09:42:ae:4a:77:b8:94:50:8d:5c:32:1d:c3:
36:8b:b5:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:26:45 2026 by rpki-client