Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
File: bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft (raw, json)
Hash identifier: VrYiADbC6sZWX/g0dlODrXvOrZtXtC7L+oWlTmuf5CM=
Subject key identifier: A5:0A:04:EE:7B:0C:D5:EC:AD:BA:A1:E8:B2:98:2E:DC:27:FA:B7:97
Authority key identifier: 6E:1D:8D:D3:1A:E9:E0:3A:F4:D2:6E:9D:A6:E2:DD:86:A0:30:39:A4
Certificate issuer: /CN=6e1d8dd31ae9e03af4d26e9da6e2dd86a03039a4
Certificate serial: 019F1189EE46431C74DCB8692795BF39B88E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
Manifest number: 052A
Signing time: Mon 29 Jun 2026 04:01:19 +0000
Manifest this update: Mon 29 Jun 2026 04:01:19 +0000
Manifest next update: Tue 30 Jun 2026 04:01:19 +0000
Files and hashes: 1: bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl (hash: xj6QdKnSERteslsDviwpRxpGDcuonznWCHNto9vAFz8=)
2: m4kYecQvosDEbgzFUfKOmbMpQHc.roa (hash: Qzj75bvQYH3AqSh7xgbB5Q2jMsStMjrkOv+BsYSia7o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:89:ee:46:43:1c:74:dc:b8:69:27:95:bf:39:b8:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e1d8dd31ae9e03af4d26e9da6e2dd86a03039a4
Validity
Not Before: Jun 29 04:01:19 2026 GMT
Not After : Jun 30 04:01:19 2026 GMT
Subject: CN=a50a04ee7b0cd5ecadbaa1e8b2982edc27fab797
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:40:f8:28:41:08:76:2a:75:68:9a:b2:05:0d:
99:2f:31:25:ac:0f:23:08:9c:39:9b:1e:fc:7a:b2:
93:64:42:81:bd:5f:ef:70:46:22:1d:a8:0f:49:e6:
d6:af:5e:cf:23:27:30:61:21:a3:d6:2e:e1:62:6b:
5b:bb:69:08:e2:b8:ae:d9:0b:f7:9c:56:8e:09:bf:
64:0c:77:99:ec:4b:18:bb:22:ae:72:85:dd:5d:57:
9c:3e:00:e8:55:57:86:8f:95:96:10:6f:93:5d:32:
60:5f:5f:96:d4:92:2d:f7:ee:da:dd:4e:16:ea:05:
e3:ea:c5:69:95:3d:83:0a:18:56:3b:d3:ba:ac:7d:
0f:bc:05:21:58:7a:f5:5a:16:68:d2:6f:ff:d6:a6:
6a:88:a1:7a:79:84:e8:3e:7b:ad:80:0f:5a:26:a0:
72:44:24:cc:dd:59:62:cc:ad:a2:dd:43:10:78:08:
36:74:36:68:3f:fd:f5:54:1b:00:69:60:5a:2d:b4:
de:7a:93:d8:4d:f4:e0:4c:c1:eb:82:dd:95:e7:2e:
5f:67:fd:89:12:7f:bf:06:1c:dc:10:b9:cc:bb:64:
10:31:f9:ec:cf:55:8c:6e:cb:bb:5a:b5:73:47:82:
23:40:f2:ff:5f:89:f0:4b:7f:db:ea:d2:39:9f:98:
60:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:0A:04:EE:7B:0C:D5:EC:AD:BA:A1:E8:B2:98:2E:DC:27:FA:B7:97
X509v3 Authority Key Identifier:
keyid:6E:1D:8D:D3:1A:E9:E0:3A:F4:D2:6E:9D:A6:E2:DD:86:A0:30:39:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:4b:dc:fa:12:34:54:93:18:9a:4d:c5:54:10:3b:20:9b:e4:
bc:c9:f0:99:62:62:f8:3e:89:f1:64:18:39:16:4a:ca:f8:7d:
cb:85:09:a4:8d:5b:b8:7f:f3:52:24:09:48:46:c2:d2:99:dc:
56:bc:10:11:28:8a:cf:9d:4b:77:25:32:d5:73:43:4f:17:29:
c0:7a:0b:2d:5c:23:3f:75:34:3c:a5:29:c2:f6:ce:31:65:74:
4d:db:32:84:7e:6e:37:d0:95:7d:ae:4d:db:d6:db:f0:79:23:
89:5a:1b:34:89:fb:a2:89:d7:76:8c:9b:18:9f:a1:cc:7b:1f:
cb:91:33:57:84:cf:8d:66:64:bd:8e:ca:95:e6:9c:fc:51:e2:
95:7e:0b:f9:09:1f:01:43:77:62:f9:58:41:1c:62:99:99:d9:
fb:82:65:47:27:c9:a6:2e:2a:7a:5b:fc:db:3a:80:b9:7b:cf:
9b:00:46:de:41:35:78:d1:99:7c:b6:e5:6b:99:16:2b:31:b4:
13:66:ff:af:ec:fc:6d:b1:5f:02:f9:e2:53:c3:85:f4:85:53:
fa:e2:20:9b:c6:88:9a:b6:04:a9:89:a8:ea:6c:0c:cf:b3:07:
7f:0d:91:d2:30:e9:27:d3:8c:be:28:63:6e:1a:6a:ca:53:6d:
bb:78:c8:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:38:20 2026 by rpki-client