Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
File: thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft (raw, json)
Hash identifier: B89aHngtBU5Sy7WJ3KkUDoN6QDDZ8hZq/virbvd0q6w=
Subject key identifier: A6:0D:4F:E9:B4:5D:61:8E:31:4A:33:BF:DC:C6:6D:27:40:84:40:C0
Authority key identifier: B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
Certificate issuer: /CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Certificate serial: 019EBF91206ECE0E2609326E72C868EC0A60
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
Manifest number: 0D9F
Signing time: Sat 13 Jun 2026 06:00:19 +0000
Manifest this update: Sat 13 Jun 2026 06:00:19 +0000
Manifest next update: Sun 14 Jun 2026 06:00:19 +0000
Files and hashes: 1: 4HE55QqTfljWCn4cZ1ai8cvlh4Q.roa (hash: Urls4Wea48yb11KMoVdUctKI04Yz3x+qj0Xh8gfQ8ic=)
2: ZI0XBxKngNfebDmdNmRzMmhs3_c.roa (hash: QNWQmpn8TQdq4xaJXKJjh0gyorKFkSra2zQiLtm/C4o=)
3: gbhgQ3B2uQKFPVeFw6hdlGGc7-M.roa (hash: G0Tz2y63qfWHb3YGepEYqUMgHFr/+KkjDltfUYTk6fM=)
4: thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl (hash: NsOaMTl/d9+LChAezGeoKgRud3iYvrycOntTds0j8J8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:20:6e:ce:0e:26:09:32:6e:72:c8:68:ec:0a:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b61046dcb185b0bfd9976628d69a189d3c3987d8
Validity
Not Before: Jun 13 06:00:19 2026 GMT
Not After : Jun 14 06:00:19 2026 GMT
Subject: CN=a60d4fe9b45d618e314a33bfdcc66d27408440c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b2:c9:c5:a4:d2:97:e8:01:e6:9b:32:ff:17:
39:9b:c7:6c:7b:09:4a:f6:23:a2:50:0f:39:7c:c6:
d0:03:29:e5:e7:93:f3:53:2b:35:8b:d6:a3:87:73:
fe:71:16:56:71:eb:ab:d3:3f:5d:24:f8:5a:a1:dd:
fa:cc:64:a4:b9:20:5f:cc:b2:46:db:77:90:5e:9d:
e5:ed:51:7a:8c:45:35:54:18:b9:18:8a:3c:1f:65:
fa:8a:a0:4a:71:a9:5e:eb:d7:c9:3a:63:47:f1:dc:
20:f7:f7:a2:4b:66:37:c5:ab:a7:a4:8d:36:ed:9b:
f7:89:ff:5d:cf:42:7e:62:40:67:e5:c6:6a:90:4f:
53:90:c1:7c:9c:db:30:b8:75:3e:73:b8:60:11:fd:
a6:82:99:ee:a7:09:39:9b:83:64:b8:d9:d5:d4:a8:
79:0c:71:d3:1a:7a:99:64:3e:88:43:b8:89:05:10:
98:9e:7c:07:64:8a:0e:4a:5c:eb:2b:e1:b9:61:26:
a2:48:85:49:e7:1a:d8:f1:4b:15:ab:48:7a:19:6e:
07:53:82:75:07:23:ea:5b:0b:d5:1a:86:0a:03:1d:
2a:db:d7:90:26:0e:be:84:66:aa:8b:06:87:8c:54:
a5:fa:2b:a2:22:ca:23:72:bf:0a:cb:d0:2a:64:79:
6c:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:0D:4F:E9:B4:5D:61:8E:31:4A:33:BF:DC:C6:6D:27:40:84:40:C0
X509v3 Authority Key Identifier:
keyid:B6:10:46:DC:B1:85:B0:BF:D9:97:66:28:D6:9A:18:9D:3C:39:87:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/thBG3LGFsL_Zl2Yo1poYnTw5h9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/70757b-c758-4292-8b5c-cf1f2fa8e5f2/1/thBG3LGFsL_Zl2Yo1poYnTw5h9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:f3:39:39:1c:c0:fe:8c:9d:e5:17:99:53:ed:a2:ad:d3:a0:
66:bc:64:a2:18:27:1c:8d:ae:30:c5:54:a9:59:fa:c0:b2:9e:
57:2c:c1:ff:dd:92:3f:f5:44:fd:42:97:3e:b7:99:c1:d4:ca:
ad:59:50:c4:d4:84:41:3c:66:27:97:b9:cc:99:34:8f:c2:cb:
f2:c9:72:fa:c5:e8:7d:df:2f:08:73:be:21:fb:26:d6:f6:a5:
03:aa:32:af:7a:d9:a2:49:dd:91:b6:cb:89:68:41:d7:ba:89:
35:ae:87:04:11:ad:59:66:88:1b:f2:73:76:fb:48:2f:f9:ed:
ca:55:4c:ab:ab:24:36:44:48:b7:db:7f:2f:42:63:3a:6a:20:
98:9a:0a:4e:0d:f1:94:fa:4b:f4:7f:c2:40:96:93:5c:8e:4f:
2c:c6:db:1d:e9:f4:4d:51:09:f3:a8:2b:f3:c3:67:3c:c7:30:
3c:18:34:cf:5f:48:a2:49:58:e5:29:3f:b9:6e:df:5a:6c:43:
0a:11:ad:f9:91:4d:48:2d:44:fa:be:4e:2c:71:3a:59:67:3e:
95:de:99:62:80:2d:78:67:ff:7c:29:0b:66:6e:03:37:f0:43:
b9:89:41:e2:e3:3d:93:03:99:c2:82:0b:20:1a:a1:43:9b:47:
c6:b3:55:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 11:21:15 2026 by rpki-client