Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
File: b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft (raw, json)
Hash identifier: EtelPsOh+R2vshqzdGh02vfGh6iE9QI5DeXVXCrWMRY=
Subject key identifier: 3A:2B:2F:DB:9B:70:07:A9:F8:FA:A2:2D:2B:B1:D0:AC:BC:71:ED:EE
Authority key identifier: 6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77
Certificate issuer: /CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177
Certificate serial: 019D386594793E0629AC910491BC634E6617
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
Manifest number: 17D3
Signing time: Sun 29 Mar 2026 07:01:14 +0000
Manifest this update: Sun 29 Mar 2026 07:01:14 +0000
Manifest next update: Mon 30 Mar 2026 07:01:14 +0000
Files and hashes: 1: Istcmzehq60di9EHB3679PMyybA.roa (hash: i4Nhr+MwqYPQIB1uAMbj/cB5SkDAFuxudlJ6P9wPBXU=)
2: b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl (hash: pPinKSRtpZatSTIfuYx/wzMg5LQKsCGaOJNRKsoBnkI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:94:79:3e:06:29:ac:91:04:91:bc:63:4e:66:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6fa48e96197426e4c5eeb423e0fd9c2e952c4177
Validity
Not Before: Mar 29 07:01:14 2026 GMT
Not After : Mar 30 07:01:14 2026 GMT
Subject: CN=3a2b2fdb9b7007a9f8faa22d2bb1d0acbc71edee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:3c:6c:c8:d7:22:3b:d9:6a:60:93:f4:3d:da:
fe:7f:d8:09:70:ec:95:c5:9f:72:0f:48:49:28:a1:
a6:c2:72:09:c5:ff:3d:ca:4d:07:39:b6:e2:45:55:
d9:8d:2c:7f:e3:4a:d0:27:6d:d3:40:c9:78:6d:35:
71:d8:2c:83:f5:96:df:71:21:aa:a1:9c:a5:12:ee:
af:89:58:31:33:78:62:cd:c2:11:bc:03:3e:89:7b:
77:3a:7b:1f:a5:70:5b:be:6e:98:8e:bc:3a:c3:0a:
50:60:26:0c:1e:66:b8:c8:8e:35:5b:d0:b4:58:6b:
d0:59:17:df:a5:e5:d0:8a:b6:98:de:c7:32:f5:db:
69:5b:7d:6e:4e:99:6f:71:9d:57:da:eb:ad:cd:99:
51:bf:26:54:94:c0:43:60:4e:9a:46:8b:5d:9a:68:
5b:9a:31:2c:ce:b6:90:75:9e:52:23:c4:65:57:d9:
07:46:f0:8f:df:bf:1c:c3:16:62:52:48:94:af:b8:
24:88:d3:08:93:46:ff:2d:11:91:b7:d4:85:19:a3:
8d:81:c9:e5:97:3d:a3:13:33:5b:ac:b6:23:10:6c:
8d:05:f4:4d:1e:7c:4a:6b:f0:d5:e9:f7:02:c6:c2:
7b:6d:71:03:26:87:00:26:c3:72:ef:89:67:c3:4a:
ca:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:2B:2F:DB:9B:70:07:A9:F8:FA:A2:2D:2B:B1:D0:AC:BC:71:ED:EE
X509v3 Authority Key Identifier:
keyid:6F:A4:8E:96:19:74:26:E4:C5:EE:B4:23:E0:FD:9C:2E:95:2C:41:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6SOlhl0JuTF7rQj4P2cLpUsQXc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/8c5bc7-55fa-4044-88da-68185fdb9003/1/b6SOlhl0JuTF7rQj4P2cLpUsQXc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:c9:cc:87:56:19:cc:38:9f:8d:4e:d5:25:6b:f5:fe:04:13:
59:a6:2d:82:87:80:dc:41:20:b4:77:e6:8e:43:0b:e3:54:5d:
74:fa:be:38:68:7a:b3:e3:2c:c8:87:b9:82:e5:5a:f4:4c:0c:
b6:62:c2:7b:2b:60:1f:59:55:61:16:ab:f9:15:41:86:00:b5:
75:37:ba:45:ac:56:48:2a:91:4d:95:bf:77:af:77:8e:e2:22:
05:78:3a:33:44:b9:9c:c8:45:24:90:20:83:56:f4:b5:db:33:
62:20:8d:3c:90:9d:8f:88:22:7c:2d:e3:f3:95:4c:8c:ae:ce:
6c:be:eb:a8:37:cf:4f:78:ee:1b:ac:6b:ce:6a:b5:0d:6d:b3:
1e:3b:ee:e5:20:05:4e:6d:bf:84:bc:b1:e1:be:48:e4:be:e8:
5f:9d:f7:14:48:63:47:bc:65:be:8c:83:f1:e4:77:93:5f:cd:
90:28:1e:51:75:97:6e:b8:c8:e0:bc:db:06:ca:2a:2b:46:39:
47:27:27:36:b2:7f:76:58:75:96:20:e7:82:2e:98:12:13:df:
91:08:19:d0:7a:ab:5e:3d:6c:fc:d8:ca:4e:dc:c7:37:2d:ed:
db:8f:b5:47:11:ee:e7:2b:57:80:1f:f6:e9:a3:a6:51:6d:2f:
8f:16:2b:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:02 2026 by rpki-client