Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
File: hB6IIdAaloi57nryrruVnLvtBys.mft (raw, json)
Hash identifier: 4d/il6v8gvAQAk1uxdwgnOJLS9uuOcbdWaU1A++fkwc=
Subject key identifier: C5:BD:DE:99:11:B7:99:86:B5:99:AC:FE:C2:4D:DF:49:BC:55:17:C1
Authority key identifier: 84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B
Certificate issuer: /CN=841e8821d01a9688b9ee7af2aebb959cbbed072b
Certificate serial: 019EE39E6DE206EE1A1371622FE196BEE1C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
Manifest number: 01A1
Signing time: Sat 20 Jun 2026 06:01:11 +0000
Manifest this update: Sat 20 Jun 2026 06:01:11 +0000
Manifest next update: Sun 21 Jun 2026 06:01:11 +0000
Files and hashes: 1: eQ8pUqqadp9cp4FYzeNplhCqiz8.roa (hash: RF09/EJZQF5XIgJSe7QHfYgaZkhCRVhxSpLB2BRdPks=)
2: hB6IIdAaloi57nryrruVnLvtBys.crl (hash: QDFKsSnk6GfdTsKI09DKIYCgRWhKE8gZysBACKKZCAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Jun 2026 04:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e3:9e:6d:e2:06:ee:1a:13:71:62:2f:e1:96:be:e1:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=841e8821d01a9688b9ee7af2aebb959cbbed072b
Validity
Not Before: Jun 20 06:01:11 2026 GMT
Not After : Jun 21 06:01:11 2026 GMT
Subject: CN=c5bdde9911b79986b599acfec24ddf49bc5517c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:62:70:0d:91:38:8e:0e:60:b1:94:fa:58:1d:
94:e1:c1:b9:46:74:36:ea:ff:43:cb:8d:9d:2b:92:
2b:23:a8:4c:de:f4:c3:81:a3:85:96:db:52:3b:e4:
fa:a5:31:35:64:52:5c:25:65:a6:1a:d8:5d:73:7a:
19:3c:3f:2f:2e:bb:68:5a:28:4b:e9:08:b3:6a:a3:
9c:0b:de:70:2e:86:08:2a:66:17:75:15:7b:4e:f5:
6b:ed:86:bb:34:8a:80:e0:f7:81:d4:5d:fa:5e:5d:
f1:9a:1f:1d:9c:54:98:f7:dd:e0:72:8e:26:e3:76:
bc:b0:75:c8:f2:41:a4:93:38:f5:e0:d4:55:66:db:
be:b3:a0:5a:da:5f:2a:80:7d:41:24:ad:be:d3:6b:
75:5c:c9:5c:c9:fa:df:b3:de:30:54:27:f8:fe:22:
3b:1d:5c:18:75:55:fd:69:5d:36:4a:81:c4:3a:9a:
35:02:aa:5e:77:7a:81:9e:15:1c:56:49:c3:7c:84:
43:40:37:e2:94:d6:e1:78:4b:ab:18:a5:4f:ed:1f:
f9:ff:a2:e4:d4:a3:c2:f4:47:34:98:b5:3f:04:92:
03:22:98:b9:e4:2a:52:fa:55:4d:c4:97:01:50:ab:
91:05:3b:63:ea:c5:b7:d3:f8:85:fa:8f:66:42:fb:
b4:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:BD:DE:99:11:B7:99:86:B5:99:AC:FE:C2:4D:DF:49:BC:55:17:C1
X509v3 Authority Key Identifier:
keyid:84:1E:88:21:D0:1A:96:88:B9:EE:7A:F2:AE:BB:95:9C:BB:ED:07:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hB6IIdAaloi57nryrruVnLvtBys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b067db-9ab1-4b13-9b70-a13237613459/1/hB6IIdAaloi57nryrruVnLvtBys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:85:ff:4b:d5:6c:30:56:aa:96:9c:80:2e:77:f1:61:d3:f1:
18:e4:91:d5:13:dc:69:58:97:e8:5d:c6:50:00:cb:31:f4:77:
3d:7b:82:6f:29:c1:db:66:52:fe:88:4f:44:0d:ee:f0:5c:7d:
e1:90:a6:97:df:77:0f:b5:d7:b6:77:36:2b:9c:b0:b8:0d:2a:
f0:fe:ba:26:cb:bb:6e:c6:06:43:f1:7f:c5:3b:53:65:0d:07:
d3:7d:5d:cd:82:89:64:38:a4:58:d1:c0:24:ef:ca:fb:1d:1c:
67:9d:19:47:27:8c:be:d5:05:a2:59:5a:45:38:f4:5b:40:07:
3e:1c:f2:86:2e:3a:53:ba:25:49:da:2c:d1:12:7c:ef:6d:78:
f6:51:e2:9b:be:bb:fb:fb:c6:d7:60:30:04:d2:94:36:bd:92:
8a:0f:8d:e0:f6:23:bf:6e:53:2a:1b:63:bc:f8:f8:ff:01:fe:
97:1e:9d:47:15:e6:b1:1c:38:ef:df:0f:47:c6:bc:1d:5b:86:
a7:05:7f:c6:b2:02:bb:1b:9f:d0:79:94:89:7a:f9:c5:e9:40:
2c:b6:d9:29:82:66:96:bc:1e:de:3d:99:bb:cf:45:8b:f7:bf:
b7:56:fd:b1:f2:18:3f:3a:bd:10:46:ea:78:e0:16:e7:35:df:
92:de:76:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 20 13:15:28 2026 by rpki-client