Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
File: bRRgVvD7veYYv_ARwPIrp0pYMrc.mft (raw, json)
Hash identifier: lxNa6ATYaDOjDFPLzDiqjiH0z0TBsp8VPeV0UqaLvrg=
Subject key identifier: 58:5A:02:22:68:E4:C5:2A:6D:E2:0A:88:8E:B1:04:03:D4:0A:C8:C3
Authority key identifier: 6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
Certificate issuer: /CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Certificate serial: 019EB87C6B5E951C7036A62E79C2945A3089
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
Manifest number: 1957
Signing time: Thu 11 Jun 2026 21:00:22 +0000
Manifest this update: Thu 11 Jun 2026 21:00:22 +0000
Manifest next update: Fri 12 Jun 2026 21:00:22 +0000
Files and hashes: 1: WkpO27Y8ZxNKd7U3qDzWmgFGPCo.roa (hash: 8pKYcInVWQ20ee2YIPC0/BRFBVDzYLbWsfYCougTXnw=)
2: bRRgVvD7veYYv_ARwPIrp0pYMrc.crl (hash: iNSbU55P0fmHXBxy9+Ftkic30n8obhs0gkF+KDuzxXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:6b:5e:95:1c:70:36:a6:2e:79:c2:94:5a:30:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d146056f0fbbde618bff011c0f22ba74a5832b7
Validity
Not Before: Jun 11 21:00:22 2026 GMT
Not After : Jun 12 21:00:22 2026 GMT
Subject: CN=585a022268e4c52a6de20a888eb10403d40ac8c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:22:09:e6:4f:f9:6b:e2:06:be:e9:0c:e7:bc:
41:c6:36:29:85:2d:e2:05:6a:8b:21:41:35:f0:09:
90:07:5a:5b:f5:d5:dd:56:c3:a0:6a:95:10:d2:48:
19:23:fc:66:05:86:16:65:16:ab:7a:17:65:c7:ab:
5d:24:c8:c1:25:a6:68:42:fd:02:c7:f3:80:90:b0:
03:10:f1:62:a3:da:6c:75:13:d4:51:73:6a:77:de:
1a:57:9c:ce:16:08:0f:11:ca:12:b9:31:f2:25:da:
28:89:f8:60:7b:62:5b:bd:32:0f:07:85:d0:14:6c:
ed:12:70:cb:51:57:0c:c4:27:e5:2e:fc:72:22:b8:
62:1a:8c:f2:4b:bb:79:85:d8:7f:f7:95:4d:c2:13:
3b:79:be:24:82:30:40:7e:a4:6d:48:c8:83:27:19:
17:45:ef:f6:84:d4:f2:19:a1:c9:b1:27:63:6d:a1:
2a:2d:f9:58:b7:a8:8b:5c:6a:d5:b4:6c:6c:cb:85:
98:11:6b:03:c6:9b:28:a7:c8:f8:78:25:67:f4:c5:
f3:61:19:61:02:f8:a0:9b:84:da:dc:f9:c1:3c:27:
a0:33:31:b9:23:61:53:01:d6:bf:ff:4c:63:d2:c9:
ae:f5:b1:a7:5b:22:49:6d:42:d4:5d:4b:b0:0e:3b:
fc:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:5A:02:22:68:E4:C5:2A:6D:E2:0A:88:8E:B1:04:03:D4:0A:C8:C3
X509v3 Authority Key Identifier:
keyid:6D:14:60:56:F0:FB:BD:E6:18:BF:F0:11:C0:F2:2B:A7:4A:58:32:B7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bRRgVvD7veYYv_ARwPIrp0pYMrc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/589db9-e22b-4d64-94b4-8ecf751057ac/1/bRRgVvD7veYYv_ARwPIrp0pYMrc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:6b:01:b5:01:b4:3f:3e:1c:7d:21:7a:71:35:ce:8e:c4:f3:
32:c7:3c:a1:4b:63:67:4a:da:7c:c7:54:ed:ae:72:4f:14:0a:
30:02:97:3a:65:a5:fe:da:b7:2d:26:bf:ed:17:74:86:1a:7c:
c1:57:a1:00:03:76:8f:6e:40:23:d8:d9:c2:db:83:06:ce:93:
38:53:2b:c1:df:e2:02:54:54:9f:80:fb:ad:47:a4:98:c3:85:
e4:de:0b:f2:95:a7:0c:b9:94:93:da:c3:d9:91:21:0e:2a:10:
81:f0:99:a2:25:93:ad:6d:71:7f:d4:08:a6:7b:9f:b3:3b:38:
4b:e6:8a:f8:c7:e0:12:a4:dc:64:3c:51:e4:b5:1f:d5:83:71:
50:58:e2:f7:44:57:2a:0f:e1:22:4e:1c:4c:e5:fa:22:8c:92:
8a:55:10:83:e3:c9:09:53:72:b8:22:ee:42:57:af:4b:e3:42:
2c:ce:71:df:57:13:0d:b1:9e:dd:30:c5:ad:d2:7f:5f:bb:c0:
e5:a7:c5:1b:bb:7e:aa:74:05:29:0e:87:8d:86:56:02:37:05:
53:f4:a1:8b:b7:af:4b:49:4d:b9:cd:a6:df:72:d5:4c:2c:6d:
0c:8c:83:b7:b7:6f:11:72:fa:92:d7:c0:72:53:1c:f6:92:52:
84:d1:cf:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:17:06 2026 by rpki-client