Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.mft
File: bzU9GF_B600HBKS0qJD5i4tP74M.mft (raw, json)
Hash identifier: TwQqYdytsSOnAnvhcCQFQ8jg3gI5Tjag1EBQx1beCQQ=
Subject key identifier: 00:E3:55:8F:27:15:69:44:03:28:12:CB:08:63:F9:BC:07:96:4B:39
Authority key identifier: 6F:35:3D:18:5F:C1:EB:4D:07:04:A4:B4:A8:90:F9:8B:8B:4F:EF:83
Certificate issuer: /CN=6f353d185fc1eb4d0704a4b4a890f98b8b4fef83
Certificate serial: 019F19B1814969FD93AB0993256C0AC208C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzU9GF_B600HBKS0qJD5i4tP74M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.mft
Manifest number: 17AE
Signing time: Tue 30 Jun 2026 18:01:31 +0000
Manifest this update: Tue 30 Jun 2026 18:01:31 +0000
Manifest next update: Wed 01 Jul 2026 18:01:31 +0000
Files and hashes: 1: bzU9GF_B600HBKS0qJD5i4tP74M.crl (hash: tMI1ajB4UdmuXIU8dxkyyk03g45TMyvj/TX6aAq2ac4=)
2: dEBO9P2rTzMGj8WCAwefx9LMEiY.roa (hash: KzSq8awg8N2A2yqoLCZBBx9w+DQcNParU+eeSoLEIgc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzU9GF_B600HBKS0qJD5i4tP74M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:b1:81:49:69:fd:93:ab:09:93:25:6c:0a:c2:08:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f353d185fc1eb4d0704a4b4a890f98b8b4fef83
Validity
Not Before: Jun 30 18:01:31 2026 GMT
Not After : Jul 1 18:01:31 2026 GMT
Subject: CN=00e3558f27156944032812cb0863f9bc07964b39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:8b:9b:7e:d4:d1:a4:73:6d:a4:75:73:36:49:
a8:c2:4b:d2:d0:17:45:f0:b2:3b:07:b5:bb:99:60:
10:aa:c5:2a:17:a9:d7:4a:0d:0a:97:83:4e:34:4e:
5b:25:2b:e2:85:bc:97:0b:2d:7c:f6:6c:c3:c9:44:
6a:c1:c3:2d:ef:f1:c2:90:53:27:3e:54:88:c1:09:
7e:62:eb:c5:dd:a1:cd:22:10:b7:09:8c:5a:b6:0f:
42:66:6d:37:95:90:4a:5d:3a:51:2a:9a:5a:dc:35:
b3:55:eb:87:b5:e9:72:39:8c:fc:f3:b4:d0:d9:5e:
72:22:86:ba:e0:e9:da:2f:14:c9:cc:b8:bc:c4:d9:
74:7f:a9:32:56:b6:c9:51:bb:06:47:20:b5:2b:92:
b0:63:3c:5b:d7:01:22:f2:45:dc:98:e6:11:b5:28:
f4:18:10:9d:86:56:5e:42:57:49:59:73:22:d2:f5:
ac:9d:1e:95:7c:95:e7:c1:94:93:f8:45:e6:17:59:
a7:c9:52:69:27:33:e9:5c:74:2e:17:b7:52:8a:a2:
42:47:f8:91:53:eb:69:56:00:0a:ae:ae:79:99:d6:
8d:04:01:2e:e1:35:a0:bf:da:68:0d:9e:74:00:d7:
03:8a:f4:12:45:1c:ad:81:45:f0:3e:19:0f:88:75:
ed:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E3:55:8F:27:15:69:44:03:28:12:CB:08:63:F9:BC:07:96:4B:39
X509v3 Authority Key Identifier:
keyid:6F:35:3D:18:5F:C1:EB:4D:07:04:A4:B4:A8:90:F9:8B:8B:4F:EF:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzU9GF_B600HBKS0qJD5i4tP74M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/a06a67-d4dc-458e-abe6-4bb1fd0375f2/1/bzU9GF_B600HBKS0qJD5i4tP74M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:82:7c:da:85:37:cb:07:6b:97:cd:c8:b0:c2:47:98:ec:eb:
3e:1b:8f:a9:81:03:72:65:15:4c:70:c9:6f:8d:f5:5f:ba:40:
9d:91:89:80:50:1f:ef:ac:42:5f:62:03:90:1d:e6:22:56:2a:
7d:84:c5:65:aa:9f:87:42:7a:04:c8:44:53:a3:ba:70:6e:50:
25:17:d9:04:a9:ad:05:a1:8e:1a:89:10:24:bf:32:5a:ad:ff:
09:3c:83:36:1e:ef:45:33:7e:a1:ff:3b:c5:23:f8:77:10:53:
18:7f:8b:09:50:38:48:1e:95:77:31:fe:57:93:f5:8a:02:04:
53:f9:7b:ed:33:f8:a1:78:da:ba:71:cd:3f:c8:eb:59:4e:e9:
06:c6:67:8d:17:b3:8f:8f:95:50:44:eb:1e:13:f6:8c:4b:14:
82:8e:5b:b6:0a:d7:16:75:14:10:80:5f:80:1c:e1:1b:39:f6:
fd:56:56:44:a6:58:73:a7:e9:01:4a:79:ed:39:8b:12:aa:65:
76:8e:13:eb:40:58:69:d9:53:54:61:57:3a:85:a7:00:b7:fc:
e9:4e:3f:7c:24:3d:5b:8f:48:04:7e:cb:9a:cd:b8:54:d4:cc:
9f:a0:5a:50:45:00:4b:6d:81:60:62:64:36:48:c6:6c:8c:b7:
00:83:a9:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:15:29 2026 by rpki-client