Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
File: bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft (raw, json)
Hash identifier: NKlcpmWOzXKoGkoCH+Gamwzsgul7+E6iMAZivqDU7vA=
Subject key identifier: 94:03:B2:A3:10:06:34:F3:29:FB:C3:BD:36:78:62:90:EC:D1:0C:B4
Authority key identifier: 6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
Certificate issuer: /CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Certificate serial: 019CAC1020F4D9C30EE929F84BCD45A8D0D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
Manifest number: 03D9
Signing time: Mon 02 Mar 2026 01:01:04 +0000
Manifest this update: Mon 02 Mar 2026 01:01:04 +0000
Manifest next update: Tue 03 Mar 2026 01:01:04 +0000
Files and hashes: 1: GCeDgCKOnbFY3U0olZ4r0yqAX7g.roa (hash: +SThIA5U78DHRFgrExpVjECZowaekUZ+Kqjt9wzZQWI=)
2: bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl (hash: DRR0G5Y9XiS6ohub44cu5BFkDV9A8I9Ad1OqPJ77k8E=)
3: tglsOsq2MXVhhtPQ1fuHwjxCRDE.roa (hash: 8XEuad3zZxDli1a1G3vIehCptWc+Hmtp2zxnb2jVTdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:20:f4:d9:c3:0e:e9:29:f8:4b:cd:45:a8:d0:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c195b9bd47001eab50fdba1de0d2d3f4527f675
Validity
Not Before: Mar 2 01:01:04 2026 GMT
Not After : Mar 3 01:01:04 2026 GMT
Subject: CN=9403b2a3100634f329fbc3bd36786290ecd10cb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:0b:90:af:db:e9:95:91:fe:e8:72:c8:50:0e:
bf:08:eb:8c:d3:8b:c1:20:31:22:56:41:99:b8:0c:
d1:07:a7:ec:f4:32:04:6b:9c:4f:59:b4:1b:a9:a8:
c8:bd:29:d7:02:d3:72:5b:c9:0d:11:63:93:93:da:
4f:d0:ff:77:50:da:06:64:48:74:5d:17:c8:83:a8:
e9:0d:66:a5:ec:10:9d:5f:4b:db:0d:f5:f0:99:cb:
49:c3:62:06:84:9c:1b:56:ab:7a:f9:b2:63:b7:ce:
7d:fe:76:6d:d5:f1:8f:76:c8:dc:40:77:e3:60:df:
ba:1f:58:2d:5f:55:ce:25:67:c9:e2:81:28:1d:55:
14:e1:ef:16:d5:c2:ab:ce:fa:25:9f:74:cc:c8:e0:
04:62:a9:76:f5:04:5f:45:6b:67:6d:01:5e:db:10:
56:17:01:61:8f:33:91:4b:d6:8c:5a:b0:0c:18:0d:
31:28:66:51:4c:91:9b:11:96:9e:7a:d3:56:80:a5:
86:82:a0:e5:f2:dc:b3:9f:9a:0d:d5:40:33:ad:ab:
68:a0:b8:8d:00:f2:23:9e:62:e7:13:8a:cf:d5:16:
c6:f5:3a:b2:ea:d0:c9:84:4b:14:3c:0d:14:36:87:
8c:5d:cb:ee:dc:9a:24:51:62:5c:30:b6:5c:82:2f:
55:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:03:B2:A3:10:06:34:F3:29:FB:C3:BD:36:78:62:90:EC:D1:0C:B4
X509v3 Authority Key Identifier:
keyid:6C:19:5B:9B:D4:70:01:EA:B5:0F:DB:A1:DE:0D:2D:3F:45:27:F6:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bBlbm9RwAeq1D9uh3g0tP0Un9nU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/010d3d-1ba8-4a96-8212-94ac8af1bfcf/1/bBlbm9RwAeq1D9uh3g0tP0Un9nU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:9e:3c:e1:1d:ed:e5:c3:92:e0:5a:22:2d:36:1e:a9:65:7d:
24:2e:24:ff:ea:26:8f:80:ba:b2:bb:0c:97:af:e5:6a:51:bf:
72:fb:86:aa:78:38:12:48:46:55:a2:bd:77:1b:c3:5b:0d:12:
1c:32:1d:21:f4:11:45:d5:2a:67:ec:38:d4:e2:0a:8f:56:87:
05:90:16:17:47:ae:76:9b:1e:7a:7a:bc:46:4f:72:74:3b:1b:
15:04:4f:72:04:5e:ff:9d:06:c9:6c:08:6f:da:f7:18:e0:79:
d9:97:23:17:9f:f3:06:85:bb:02:da:af:2d:ff:7c:fc:e0:48:
4c:62:be:ab:2e:42:34:c9:56:6f:e1:53:3c:a7:a6:e7:4a:f3:
34:a9:b4:72:83:cc:f5:65:91:19:e3:5a:82:29:81:f6:40:2e:
2f:b2:a2:18:d6:2a:6d:53:48:95:ff:9d:e2:4b:0f:f4:5f:59:
f6:28:a2:81:7d:22:75:d2:81:e1:ae:48:31:31:79:60:2e:a0:
c8:d4:ca:95:b0:30:d2:27:f0:d4:52:49:c5:37:bb:44:f1:b8:
27:08:b6:b3:c3:91:a5:b7:5e:c0:a3:31:26:61:a6:d4:2b:79:
2d:ba:3e:58:ad:1a:dc:86:26:ee:93:85:ae:e2:67:89:25:20:
86:0b:01:d3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysECD02cMO6Sn4S81FqNDSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjMTk1YjliZDQ3MDAxZWFiNTBmZGJhMWRlMGQyZDNmNDUy
N2Y2NzUwHhcNMjYwMzAyMDEwMTA0WhcNMjYwMzAzMDEwMTA0WjAzMTEwLwYDVQQD
Eyg5NDAzYjJhMzEwMDYzNGYzMjlmYmMzYmQzNjc4NjI5MGVjZDEwY2I0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3guQr9vplZH+6HLIUA6/COuM04vB
IDEiVkGZuAzRB6fs9DIEa5xPWbQbqajIvSnXAtNyW8kNEWOTk9pP0P93UNoGZEh0
XRfIg6jpDWal7BCdX0vbDfXwmctJw2IGhJwbVqt6+bJjt859/nZt1fGPdsjcQHfj
YN+6H1gtX1XOJWfJ4oEoHVUU4e8W1cKrzvoln3TMyOAEYql29QRfRWtnbQFe2xBW
FwFhjzORS9aMWrAMGA0xKGZRTJGbEZaeetNWgKWGgqDl8tyzn5oN1UAzratooLiN
APIjnmLnE4rP1RbG9Tqy6tDJhEsUPA0UNoeMXcvu3JokUWJcMLZcgi9VDwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQDsqMQBjTzKfvDvTZ4YpDs0Qy0MB8GA1UdIwQY
MBaAFGwZW5vUcAHqtQ/bod4NLT9FJ/Z1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkJsYm05UndBZXExRDl1aDNnMHRQMFVuOW5VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS8wMTBkM2QtMWJhOC00YTk2LTgyMTIt
OTRhYzhhZjFiZmNmLzEvYkJsYm05UndBZXExRDl1aDNnMHRQMFVuOW5VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOS8wMTBkM2QtMWJhOC00YTk2LTgyMTItOTRhYzhhZjFiZmNm
LzEvYkJsYm05UndBZXExRDl1aDNnMHRQMFVuOW5VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANJ484R3t
5cOS4FoiLTYeqWV9JC4k/+omj4C6srsMl6/lalG/cvuGqng4EkhGVaK9dxvDWw0S
HDIdIfQRRdUqZ+w41OIKj1aHBZAWF0eudpseenq8Rk9ydDsbFQRPcgRe/50GyWwI
b9r3GOB52ZcjF5/zBoW7AtqvLf98/OBITGK+qy5CNMlWb+FTPKem50rzNKm0coPM
9WWRGeNagimB9kAuL7KiGNYqbVNIlf+d4ksP9F9Z9iiigX0iddKB4a5IMTF5YC6g
yNTKlbAw0ifw1FJJxTe7RPG4Jwi2s8ORpbdewKMxJmGm1Ct5Lbo+WK0a3IYm7pOF
ruJniSUghgsB0w==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:19:15 2026 by rpki-client