Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier: mrXILReoPAdLBo/r8HfaUTqLsqJoq+IYVzfESfRRh/w=
Subject key identifier: BB:1B:B0:8E:F8:CD:5C:DA:EF:E2:30:13:28:64:A8:5A:FF:3C:48:5F
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 019CAAFCE9E3F5303DBC1EA0D9BDCAAD7D4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number: 03EE
Signing time: Sun 01 Mar 2026 20:00:27 +0000
Manifest this update: Sun 01 Mar 2026 20:00:27 +0000
Manifest next update: Mon 02 Mar 2026 20:00:27 +0000
Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: q9Wd11laUTPkKQlyKUwm7CJ7bBI6/5028e59wXJ9HyQ=)
2: 6P5TrCrBMBOzWPp7NfkTPVfGFC0.roa (hash: sSdGu5Xuxs0f7WjvG48kyrMaNHwDQMDfZZyHNGWz4mk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fc:e9:e3:f5:30:3d:bc:1e:a0:d9:bd:ca:ad:7d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Mar 1 20:00:27 2026 GMT
Not After : Mar 2 20:00:27 2026 GMT
Subject: CN=bb1bb08ef8cd5cdaefe230132864a85aff3c485f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:57:83:c7:39:a0:3d:5e:3c:11:dd:3c:ca:cf:
05:6b:bd:a8:d5:37:1d:97:b3:dc:6d:de:fa:e8:34:
60:93:f2:49:ac:79:3a:18:3a:28:47:d0:e7:09:cf:
de:a5:4f:92:43:c2:f5:cb:54:e9:ea:b3:22:e7:6e:
82:25:a1:86:c0:33:01:e0:9f:cf:63:25:9c:b0:f0:
35:5b:64:dd:fe:21:62:1c:3d:01:32:9d:94:a9:60:
1d:9b:25:de:49:98:4c:0b:59:0f:bc:85:31:8b:64:
39:9b:ae:8a:f6:aa:cb:42:39:0e:cf:60:84:3f:23:
64:fb:a2:c4:8d:1a:7e:9b:53:1a:c5:e2:a0:0d:9c:
6e:92:b0:40:fa:27:55:99:be:2e:0d:ff:e0:5e:f5:
2e:60:1c:1c:fe:4c:d3:19:93:dd:a2:0c:b4:90:e0:
57:51:c8:16:70:1a:ed:9c:6b:a5:09:cc:4b:5e:3b:
3a:9b:95:5f:1f:0f:cb:e3:1c:47:ab:c8:a7:c4:18:
ef:a2:ea:b9:78:dd:60:d8:93:7b:93:76:1d:d5:4e:
c8:03:0a:e9:cf:72:ef:02:82:43:6b:df:d4:dd:b6:
8e:b6:8d:bf:52:46:4e:2d:bf:a3:c5:14:c9:82:31:
a8:a9:64:0f:97:a8:15:60:f4:c2:3a:86:e8:40:58:
68:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:1B:B0:8E:F8:CD:5C:DA:EF:E2:30:13:28:64:A8:5A:FF:3C:48:5F
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:3b:d4:39:c0:d4:72:e8:e2:7c:f3:b1:62:a2:7a:95:9f:82:
c1:73:e2:0e:5b:4f:2c:ca:90:bb:3d:bf:8a:37:e4:b2:c8:bc:
03:25:20:a8:cb:f7:1a:21:e2:d8:c7:dd:00:ae:9a:76:b1:cb:
2b:86:99:1d:52:d3:8a:11:10:1f:b3:42:e6:f5:1a:f3:34:24:
b4:e0:30:73:e8:e3:38:60:9b:73:6d:b2:06:8f:e7:09:d5:62:
9a:f5:83:9b:e0:4b:56:a0:3b:f1:cb:08:78:79:52:17:fa:26:
b3:ab:84:22:34:fc:1a:98:c5:fb:06:83:ae:e8:52:bf:d8:17:
6a:b3:2c:d4:5c:13:72:97:8a:c3:b3:fc:2a:71:e7:12:64:95:
d8:55:b8:62:0f:d0:e7:cd:83:6d:d0:a9:b6:98:c2:20:77:eb:
d6:36:33:d3:d6:60:04:e2:d7:07:a2:a0:b1:24:82:19:8d:af:
2e:b8:58:12:4a:76:4e:54:53:c1:d7:31:d1:01:c8:61:a6:bd:
d7:84:87:28:9a:ab:77:ba:78:25:3a:90:42:f2:de:30:93:3b:
db:9f:cd:d9:08:2e:2d:dc:88:53:30:f3:ff:a1:bb:7b:c5:1f:
53:58:68:35:31:d6:8a:71:dc:9b:7a:a9:59:07:23:ac:66:c7:
43:cf:20:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:00:09 2026 by rpki-client