Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
File: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft (raw, json)
Hash identifier: 4qA5o3Me9HITrQba0UZrqwW3uycFBfholZFLqzJWApM=
Subject key identifier: 40:1C:6A:18:D1:5F:DE:97:B3:01:D7:78:13:05:A3:0B:06:6D:6D:86
Authority key identifier: 6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
Certificate issuer: /CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Certificate serial: 019CC674A401823005857DD51E0BF052D56B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
Manifest number: 05E1
Signing time: Sat 07 Mar 2026 04:00:58 +0000
Manifest this update: Sat 07 Mar 2026 04:00:58 +0000
Manifest next update: Sun 08 Mar 2026 04:00:58 +0000
Files and hashes: 1: Je_y8wxQvqCgs-B_X_JDDy6e4N4.roa (hash: EsZORo0khgTEum2xHY+MdLQ0jyUTYVdE3AQ38NpK21M=)
2: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl (hash: PqHbYFcq9Z4ZVzQiX1pIljA7nF3X9pEoHZChAfpmAuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Mar 2026 00:30:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c6:74:a4:01:82:30:05:85:7d:d5:1e:0b:f0:52:d5:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Validity
Not Before: Mar 7 04:00:58 2026 GMT
Not After : Mar 8 04:00:58 2026 GMT
Subject: CN=401c6a18d15fde97b301d7781305a30b066d6d86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1f:ff:01:81:5f:f1:64:6f:8a:08:2e:fb:5e:
dd:fb:d4:88:b3:c3:d1:c8:92:ce:22:2d:a2:e2:77:
ac:e6:d9:40:d1:f1:9c:d4:ef:fa:7b:86:24:79:d1:
31:ca:ab:07:25:2e:db:6b:cf:6e:67:d5:f3:be:e6:
85:ed:d6:66:61:7c:9b:d7:d9:45:57:db:cc:cc:24:
e8:4d:c9:8b:79:ed:4b:3c:63:32:11:49:7a:85:cb:
01:8e:bc:40:2a:e5:81:bb:47:65:cc:27:7b:9b:d0:
ca:5f:4d:4b:a5:36:c6:b9:3c:5d:43:91:69:2f:9c:
d6:7e:e5:b1:3d:a4:d8:35:7f:15:dd:41:43:9d:e0:
71:93:0f:94:85:f4:b0:25:be:55:62:14:26:1b:97:
63:58:87:ff:39:17:af:82:32:24:04:f8:37:e6:9b:
38:e6:15:46:ce:f9:f8:42:56:19:46:84:13:a4:73:
39:b3:e6:7e:6b:78:95:34:46:e6:f1:9b:5d:3a:80:
cd:24:b2:0d:11:9a:8c:4c:d3:0f:c7:08:4c:90:3c:
80:4b:f3:f3:c0:a8:09:64:f2:e2:9b:be:3b:21:fc:
c1:c4:89:11:c5:a6:7b:29:f6:82:1a:9c:86:89:63:
be:48:91:68:4d:7a:70:59:e9:59:50:d9:12:bf:ee:
86:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:1C:6A:18:D1:5F:DE:97:B3:01:D7:78:13:05:A3:0B:06:6D:6D:86
X509v3 Authority Key Identifier:
keyid:6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:12:44:f2:cb:a6:10:37:14:db:a0:70:79:69:94:4e:39:28:
cf:c3:ba:4d:42:04:24:f3:5b:fc:67:cc:cd:e5:d8:81:23:ab:
68:45:cf:a7:99:90:76:7b:d2:9e:d2:4f:ea:98:6d:42:52:d3:
b5:9e:30:28:e2:05:a4:ef:4a:c7:e2:11:97:c2:e7:14:d5:3d:
b3:2c:95:bc:f5:01:f9:ef:69:ee:d0:6b:fc:8a:7f:c9:17:1c:
b9:27:7e:50:5e:a3:10:f7:3b:33:55:d9:67:71:41:a9:fc:9b:
10:e3:96:46:bb:a4:06:41:46:93:a7:4b:f3:0b:d7:aa:60:30:
b8:b3:89:59:a0:9b:d4:77:e3:0f:f6:5d:8d:31:21:74:02:da:
a2:0f:99:af:1f:6f:6e:b8:e7:8c:fc:67:9a:72:48:3e:fb:0f:
77:72:85:a1:67:f0:de:50:9f:79:c3:60:1b:4a:b2:55:7c:bb:
b6:1f:33:7c:57:58:58:89:df:bd:ab:ff:6c:11:48:75:b5:92:
ac:94:a6:6c:67:9c:93:61:1e:1c:7c:eb:ae:c1:59:0c:47:3d:
c7:95:af:bb:1e:86:b8:29:89:a9:35:2b:af:30:6e:a6:1f:32:
56:a9:00:7b:30:53:ca:1f:d9:db:be:f6:71:40:4a:e2:6f:d0:
ed:9f:90:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 07:40:27 2026 by rpki-client