Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier: 1kM2IOkih6ijeRXIu5MyP73ri/xwLYiLvwU/CnnaA9A=
Subject key identifier: 3F:80:80:C2:40:CF:57:69:C6:4F:23:E3:9D:49:81:DA:F8:8B:56:FA
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 019EC0DAED7D64A8B0CFC264DEA2F06FB966
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number: 0503
Signing time: Sat 13 Jun 2026 12:00:33 +0000
Manifest this update: Sat 13 Jun 2026 12:00:33 +0000
Manifest next update: Sun 14 Jun 2026 12:00:33 +0000
Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: IHYsJCnkC/78TOTfnEMopZvENM62zg7/oMeXMuPFbhw=)
2: Fb3aBBcJ_RU5gPWUY71udWZuQ_o.roa (hash: VnpK440llW/db9ofXXkT+hMi7FL519qaQ5nOCrY4q+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:da:ed:7d:64:a8:b0:cf:c2:64:de:a2:f0:6f:b9:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Jun 13 12:00:33 2026 GMT
Not After : Jun 14 12:00:33 2026 GMT
Subject: CN=3f8080c240cf5769c64f23e39d4981daf88b56fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:c9:ae:8e:10:e2:54:95:89:d5:dd:38:90:b9:
26:df:4c:db:3d:d6:00:47:ec:bb:a3:e2:fe:da:da:
6d:18:24:70:41:f2:b6:3d:cd:00:f6:b8:84:69:93:
be:bc:5a:47:28:91:62:86:ed:22:27:f9:76:4d:03:
f3:62:18:f5:98:0c:07:bc:a9:dc:7b:10:2e:6e:8b:
1a:59:6f:e0:fc:1a:8f:e1:19:a1:72:ba:f4:e8:7c:
57:24:ce:eb:16:72:aa:3c:82:54:9d:8e:d6:8e:16:
ce:f9:95:72:8a:69:5b:f5:a8:a7:a1:66:62:1f:7c:
65:26:e7:72:73:1f:a4:7e:3a:05:a2:5e:e8:9a:97:
0f:71:ee:19:fd:ec:71:b7:89:29:0a:bb:75:5d:e0:
aa:e6:74:e2:54:82:4e:60:44:db:58:25:c1:e4:23:
d5:f2:fb:20:ff:96:1c:2b:25:96:e8:cd:7c:7b:c0:
ac:0e:69:89:63:5d:00:81:a3:79:7d:6d:68:83:88:
c1:12:fa:a6:e3:c6:08:7c:60:7a:5e:8d:db:80:77:
73:d2:dc:f5:34:2a:b5:49:12:f4:96:a8:4f:60:0a:
af:d6:f5:b8:df:68:f1:fe:0a:9d:b9:08:07:3d:3e:
55:8f:81:ee:c0:fc:f0:07:81:ac:ce:b9:8a:03:ba:
72:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:80:80:C2:40:CF:57:69:C6:4F:23:E3:9D:49:81:DA:F8:8B:56:FA
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:40:5f:07:15:43:48:e6:03:dd:79:d3:c9:5c:24:7f:60:40:
be:cd:20:89:fe:1a:a5:e4:3e:3c:9a:a9:7d:14:fd:ee:16:df:
41:f8:ae:84:2c:cd:b7:22:1f:a8:72:ca:ea:a9:1c:52:06:71:
c7:4b:5a:c6:77:c1:54:0d:09:4c:ec:bb:b7:52:5b:f6:5b:e3:
9e:62:38:5e:60:76:3f:99:08:60:19:e8:01:7a:0c:89:c8:26:
75:85:23:eb:78:04:b9:eb:29:92:ea:9d:88:f6:fc:57:94:c2:
fb:d5:aa:51:b9:1e:49:0c:cb:fa:c3:f9:99:b1:81:79:3c:78:
b7:68:83:fe:59:39:ac:23:d0:8b:95:c1:aa:0a:2f:87:35:97:
94:1c:08:10:5f:20:57:e8:6c:07:7b:46:f6:45:7f:c2:ab:f2:
3d:30:d4:e6:90:9c:dc:c5:69:d9:0c:d4:c5:ff:6a:b7:7a:b5:
f2:bb:79:2f:3a:24:14:5e:5d:06:82:a5:20:9f:a7:b8:59:de:
0e:8c:6c:05:8f:ce:06:b6:c3:df:41:60:22:2f:9c:06:97:f8:
b1:1e:76:b1:8e:48:73:91:81:d6:9d:68:01:19:14:f8:da:47:
5a:ea:27:12:30:eb:ee:e5:ca:1f:f9:d5:fb:a9:c0:e1:5a:c3:
ed:7a:f4:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:16:24 2026 by rpki-client