Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
File: bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft (raw, json)
Hash identifier: Jn5CVXh3I6k18Y5E0YI3xC1LjdruMSv+P0Ils0gJuJ4=
Subject key identifier: 1C:F4:2D:AB:02:D1:83:BB:8C:8C:1D:9E:1C:16:CB:12:1D:F8:9F:56
Authority key identifier: 6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
Certificate issuer: /CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Certificate serial: 019D9B87F1837D21DCF7E702F589BB8F9F57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
Manifest number: 0455
Signing time: Fri 17 Apr 2026 13:01:10 +0000
Manifest this update: Fri 17 Apr 2026 13:01:10 +0000
Manifest next update: Sat 18 Apr 2026 13:01:10 +0000
Files and hashes: 1: GCeDgCKOnbFY3U0olZ4r0yqAX7g.roa (hash: +SThIA5U78DHRFgrExpVjECZowaekUZ+Kqjt9wzZQWI=)
2: bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl (hash: Zxo7wRcsiICorGZYsObvh3KbnJ6qrvSbSchLBaQxi18=)
3: tglsOsq2MXVhhtPQ1fuHwjxCRDE.roa (hash: 8XEuad3zZxDli1a1G3vIehCptWc+Hmtp2zxnb2jVTdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:f1:83:7d:21:dc:f7:e7:02:f5:89:bb:8f:9f:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Validity
Not Before: Apr 17 13:01:10 2026 GMT
Not After : Apr 18 13:01:10 2026 GMT
Subject: CN=1cf42dab02d183bb8c8c1d9e1c16cb121df89f56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:e8:58:5b:7c:15:0c:e6:4c:0a:6c:d6:58:01:
21:e8:45:d1:88:95:df:7c:e2:45:c6:ee:2d:e8:8d:
ff:8f:0e:6e:d0:f1:bf:71:f7:ff:b4:3d:73:79:0b:
6b:a7:1a:97:90:0b:7c:83:4b:5f:cf:dc:18:8a:88:
08:e7:5c:96:7b:be:65:92:6c:6f:4c:ec:11:08:2c:
be:36:61:78:f5:fa:5f:f7:ea:e0:f9:2d:19:df:c5:
49:16:b9:fe:fe:1d:d7:7a:f4:74:1e:f7:e1:85:f5:
77:e4:a3:52:2a:ad:2b:fa:f1:fa:09:a7:2a:9c:ee:
90:b5:bc:6e:c0:14:ca:3d:7f:24:60:a4:89:61:fd:
af:4f:b0:5f:c6:8d:b3:bb:ef:fa:36:ea:92:f3:c7:
e9:59:c6:92:19:e6:12:b2:2b:7b:c9:bd:c0:eb:37:
dd:93:8f:63:c1:18:b4:1b:0b:1c:2a:84:f3:c2:8f:
28:4a:fb:78:8b:9b:6d:91:ce:dd:65:cc:b1:93:6e:
4d:b8:00:f1:9e:69:70:ed:b5:2b:7f:48:78:9f:e0:
47:96:22:28:c6:9a:c6:c5:6e:94:e3:3e:35:5e:0a:
2d:f6:54:8f:9c:a1:65:88:c1:d1:1b:db:f5:c9:22:
2b:21:eb:9f:1f:93:56:d6:09:5b:5f:b8:0b:00:2b:
5e:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F4:2D:AB:02:D1:83:BB:8C:8C:1D:9E:1C:16:CB:12:1D:F8:9F:56
X509v3 Authority Key Identifier:
keyid:6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:40:ed:07:21:70:68:d0:cc:7e:88:25:a3:a7:00:6e:47:ce:
4f:53:1d:86:a0:a3:11:1a:e9:a9:96:3e:10:ef:47:78:57:2c:
0f:c8:ca:cc:02:8c:b8:07:81:da:34:93:6d:8f:30:41:71:e9:
0e:8b:b2:1b:ea:2c:48:17:e4:dc:7b:a9:3d:64:a4:3f:e1:d9:
6f:b3:8e:85:85:1e:8d:43:26:dc:3a:c6:90:b9:ec:28:29:cd:
99:b4:13:d5:d1:ef:7a:b3:66:74:c1:be:b2:e7:3f:b5:c6:26:
a3:07:7b:04:b8:96:1e:20:a7:31:c7:d6:18:fc:4c:cb:ad:c8:
d1:dd:8e:70:76:62:6d:cd:df:d2:7f:bd:57:8d:2a:40:0e:98:
91:b2:34:1f:22:b0:f3:8f:84:5b:13:f3:5a:65:6b:a7:7e:27:
17:17:3f:dd:39:4a:6c:a1:ce:1c:44:87:9e:aa:1c:4b:3b:9a:
17:12:38:c3:15:93:2d:ea:cd:5b:f7:e9:4c:be:73:33:3b:f0:
38:04:c2:84:61:77:81:30:59:81:71:22:87:43:5a:a0:e5:ee:
9f:72:e3:c2:13:5f:30:53:2c:1f:49:87:a3:ce:86:37:b8:53:
52:14:a6:8d:bf:6f:96:0f:3b:d1:8f:9f:f7:88:d6:34:1f:04:
10:0f:6b:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:17:33 2026 by rpki-client