Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
File: bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft (raw, json)
Hash identifier: ViznES71tYycxwc6EQz6hlmfd/SKH+buJG8st6jxnC4=
Subject key identifier: 87:2D:55:0A:60:66:71:0B:8F:7C:38:F0:68:6D:14:90:FB:8E:38:C4
Authority key identifier: 6E:1D:8D:D3:1A:E9:E0:3A:F4:D2:6E:9D:A6:E2:DD:86:A0:30:39:A4
Certificate issuer: /CN=6e1d8dd31ae9e03af4d26e9da6e2dd86a03039a4
Certificate serial: 019D3865BF64B4D517D01B1811529946197E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
Manifest number: 0435
Signing time: Sun 29 Mar 2026 07:01:25 +0000
Manifest this update: Sun 29 Mar 2026 07:01:25 +0000
Manifest next update: Mon 30 Mar 2026 07:01:25 +0000
Files and hashes: 1: bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl (hash: L5JRryr2FRTSj9FbZQkJtujmXEYQ69QhDxTVB33vpQk=)
2: m4kYecQvosDEbgzFUfKOmbMpQHc.roa (hash: Qzj75bvQYH3AqSh7xgbB5Q2jMsStMjrkOv+BsYSia7o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:bf:64:b4:d5:17:d0:1b:18:11:52:99:46:19:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e1d8dd31ae9e03af4d26e9da6e2dd86a03039a4
Validity
Not Before: Mar 29 07:01:25 2026 GMT
Not After : Mar 30 07:01:25 2026 GMT
Subject: CN=872d550a6066710b8f7c38f0686d1490fb8e38c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:b0:1f:7c:c0:a3:b9:ed:55:67:08:27:8e:f0:
bd:03:f3:12:4c:6c:03:3f:4f:fc:1e:9c:dc:7e:24:
0e:19:3f:05:c6:1c:f0:50:92:df:7b:47:7b:26:8f:
b3:9e:67:d7:86:09:5c:75:2e:89:e1:37:d3:4b:26:
4e:5c:8c:d7:82:66:ea:66:30:86:d2:9a:44:cc:0d:
0f:b9:d3:5a:a2:89:7d:8b:41:93:84:98:40:fd:e3:
42:0d:08:30:1a:8d:84:32:52:0b:1a:17:54:29:c1:
71:b0:d7:55:74:8e:55:55:18:42:b7:c1:a5:05:83:
30:4d:0d:b1:48:98:ad:23:32:e8:d8:b2:d3:e0:df:
91:8a:07:f3:c4:db:c9:15:2d:1d:53:b5:f7:fb:48:
9d:60:c5:5c:73:43:eb:e6:bd:89:48:e8:34:d0:4b:
66:4a:53:24:9a:db:00:c0:19:8d:54:31:43:4e:8a:
49:b1:00:eb:7d:fd:8d:6a:14:ab:f8:1f:d9:f6:a5:
c2:63:b1:4b:51:cc:4c:18:3c:2f:75:f4:e1:69:13:
26:06:f9:28:2d:6f:93:f3:c6:76:fb:85:c2:32:58:
ff:ca:44:e0:90:18:a9:2d:9c:78:79:28:41:2f:49:
a1:77:7a:a8:6c:f6:c7:4d:de:3b:49:8a:f5:f6:82:
09:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:2D:55:0A:60:66:71:0B:8F:7C:38:F0:68:6D:14:90:FB:8E:38:C4
X509v3 Authority Key Identifier:
keyid:6E:1D:8D:D3:1A:E9:E0:3A:F4:D2:6E:9D:A6:E2:DD:86:A0:30:39:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:6d:e3:d4:c7:1f:69:5b:70:83:39:a8:85:d6:e6:07:f6:d7:
a8:fa:62:2b:29:99:41:1d:d6:83:87:80:00:95:b7:28:f5:83:
e0:f6:7f:d4:be:03:bb:a2:9f:62:03:dc:2e:ac:fa:82:27:87:
27:74:07:40:87:e9:ba:fc:34:82:3b:7a:64:94:01:71:f7:33:
c8:15:4d:08:f2:03:28:86:d3:eb:b2:70:18:0b:04:81:d6:8d:
a3:2c:e6:16:f1:02:a9:e7:db:7f:96:bf:68:fb:a1:ee:2f:39:
4c:03:b1:4a:5a:01:9c:02:2f:8a:76:ca:a7:26:45:40:b8:aa:
52:21:33:7f:0b:96:b2:1b:2f:51:ea:77:2a:a7:d4:6e:c5:79:
f6:73:58:a5:ac:0a:00:51:1c:64:9f:db:d4:17:23:b7:e8:d3:
9b:ed:eb:32:00:38:93:59:c1:1c:0d:59:8b:6e:36:40:35:10:
93:4c:07:07:33:04:f6:c8:83:78:df:b2:d3:98:dc:73:2b:4f:
2e:61:4b:ef:6c:6d:c6:b2:69:ef:e0:cb:5d:94:65:03:29:74:
53:4f:fc:98:da:d7:30:17:21:a7:ff:ad:b1:ac:9e:bd:2f:bd:
20:79:7c:f9:1a:5e:0a:c4:2f:ff:3f:51:d2:b0:3e:37:b5:40:
3c:c2:77:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:32 2026 by rpki-client