Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
File: bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft (raw, json)
Hash identifier: Xnw6n98HOFDx341naoB9/OIc4GOGn6SN0laa9L/Bfrw=
Subject key identifier: E9:0B:20:8A:EF:E5:94:22:05:9E:7E:2F:46:88:8E:18:2E:2C:DB:97
Authority key identifier: 6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
Certificate issuer: /CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Certificate serial: 019EBF2323B1784A1F1BA966D3B83752B6CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
Manifest number: 04EC
Signing time: Sat 13 Jun 2026 04:00:11 +0000
Manifest this update: Sat 13 Jun 2026 04:00:11 +0000
Manifest next update: Sun 14 Jun 2026 04:00:11 +0000
Files and hashes: 1: GCeDgCKOnbFY3U0olZ4r0yqAX7g.roa (hash: +SThIA5U78DHRFgrExpVjECZowaekUZ+Kqjt9wzZQWI=)
2: bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl (hash: UDetPOJTMXqnBpPXKACsZ67gJB1dLIgUXByMG4OMrwI=)
3: tglsOsq2MXVhhtPQ1fuHwjxCRDE.roa (hash: 8XEuad3zZxDli1a1G3vIehCptWc+Hmtp2zxnb2jVTdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:23:b1:78:4a:1f:1b:a9:66:d3:b8:37:52:b6:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Validity
Not Before: Jun 13 04:00:11 2026 GMT
Not After : Jun 14 04:00:11 2026 GMT
Subject: CN=e90b208aefe59422059e7e2f46888e182e2cdb97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:6a:4a:e3:e2:ea:ea:a3:0b:86:69:4d:50:bd:
5e:fb:47:d4:16:a5:dc:b0:14:2b:73:42:5f:72:9a:
7a:e6:8e:54:32:2e:60:1d:d8:9b:b1:76:79:d6:7e:
b9:74:f8:cd:ff:d2:ef:ef:d6:37:03:bd:98:f1:01:
5b:9b:1e:af:b3:f7:f7:55:97:79:92:2e:3c:d0:67:
e1:57:48:74:ad:39:93:60:c6:93:e6:3d:60:9c:1a:
33:6c:d7:14:76:fb:ab:63:b1:01:56:12:dc:19:9f:
e0:65:e0:53:6b:fa:91:08:5a:03:ef:cf:26:52:46:
74:8f:73:58:21:53:ab:a7:fc:25:43:ee:e6:73:2b:
1d:f8:76:56:bd:88:34:78:e8:d9:63:7e:11:3f:6a:
ca:b0:2d:d1:cb:1f:bb:27:13:9e:96:c3:16:ae:80:
49:16:1c:f5:af:d1:99:d0:cb:5a:dc:32:4e:ea:a8:
08:af:d4:95:5c:42:ad:93:31:ac:49:ae:c2:52:50:
88:01:a6:f6:9b:64:8a:68:79:c1:58:72:a2:d3:15:
1c:ee:59:1e:38:10:83:01:0e:08:c9:f6:85:1a:39:
89:ab:fc:24:72:35:89:0a:29:2a:f6:33:19:b2:10:
d3:52:7d:75:28:98:27:8f:10:e1:9c:ec:5f:f3:b4:
bd:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:0B:20:8A:EF:E5:94:22:05:9E:7E:2F:46:88:8E:18:2E:2C:DB:97
X509v3 Authority Key Identifier:
keyid:6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:07:15:56:c9:f1:59:31:75:22:77:6d:eb:13:94:ff:d2:9d:
4f:22:05:7b:96:0a:6a:ab:29:05:2c:1d:98:8c:30:4a:21:09:
95:ae:6a:0e:e6:da:6b:d0:46:14:10:3f:6c:8f:9d:b2:d6:a9:
f2:ad:6e:d6:83:16:6a:0e:9e:65:a3:f2:d9:6b:ac:37:70:c2:
d9:77:ea:1c:0d:85:71:94:f3:aa:b9:f8:a0:8f:6c:94:73:96:
44:8a:c6:0f:c6:1f:88:f4:30:5d:ca:3e:3b:9d:07:a7:63:8e:
6f:b0:59:8f:fe:4e:a2:0b:78:49:d0:bf:3c:8e:ad:c4:06:0f:
a1:03:02:31:82:d1:62:c0:84:59:f8:d6:14:de:7b:11:3a:4a:
92:75:03:ba:46:01:c3:a8:32:4b:a1:ce:88:0f:01:5f:17:98:
9d:86:69:38:57:26:8a:6a:54:ca:5d:ff:02:8d:bb:b5:d0:91:
6a:d8:50:3d:cb:c6:a9:ae:25:46:06:77:8d:d4:db:5c:8b:1b:
bf:33:f3:f8:f4:c3:08:f4:80:ab:43:47:ed:86:cc:e5:dd:26:
7e:e1:ec:20:a6:fd:a8:ee:42:45:23:7e:6a:40:ed:6e:b6:de:
d7:61:e4:ab:d2:21:3b:02:9a:67:2b:ce:14:0b:e3:24:7c:90:
e8:4d:9b:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:41:12 2026 by rpki-client