
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json)
Hash identifier: XBeZRSa3AlkEk86baujhoxqr8KXc8OHn1GLMnfXASzo=
Subject key identifier: 6B:F7:DE:C0:24:4B:AB:84:2E:2D:C9:D4:06:00:EA:B1:2D:CC:A0:B1
Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Certificate serial: 019F3001EFB7D2FD113B71D0C4AA8AD9EFE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
Manifest number: 0C47
Signing time: Sun 05 Jul 2026 02:01:00 +0000
Manifest this update: Sun 05 Jul 2026 02:01:00 +0000
Manifest next update: Mon 06 Jul 2026 02:01:00 +0000
Files and hashes: 1: D6BGr-5dJZvETpMbA__Q61SK3f4.roa (hash: zOFmPuRjAmwk6FKGKP0FAzMgJQg9lT91lc24vYQHaUc=)
2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: pp77oJJrynq3qDfiCQdJXaYDuKV5TB/OFYRbm/MI+S0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 06 Jul 2026 02:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:30:01:ef:b7:d2:fd:11:3b:71:d0:c4:aa:8a:d9:ef:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120
Validity
Not Before: Jul 5 02:01:00 2026 GMT
Not After : Jul 6 02:01:00 2026 GMT
Subject: CN=6bf7dec0244bab842e2dc9d40600eab12dcca0b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:be:03:45:e5:15:32:c3:40:5e:b3:0f:df:b3:
fb:19:30:f1:1c:df:f8:00:c4:97:0b:93:0a:06:55:
d4:82:4e:77:52:50:7f:78:c0:18:99:d7:77:67:98:
15:40:4a:a8:25:9b:f0:7b:ab:fd:58:2a:e4:d7:89:
6e:c0:3c:16:39:de:66:12:fd:c8:31:95:16:80:9e:
cd:42:be:37:06:23:3d:16:cf:f9:92:24:03:c9:61:
e3:76:68:67:0c:c9:94:39:e9:b5:ef:02:21:10:2f:
f6:cb:6d:fa:7a:5f:da:17:42:84:66:b8:63:20:2e:
51:2a:e4:a5:63:f8:ef:78:c5:a0:27:80:fb:04:47:
5b:5e:77:32:e9:8d:33:31:58:f4:30:f3:7d:aa:60:
55:ac:af:67:a3:68:ea:9f:d3:9f:3f:bf:ca:50:6b:
d2:cc:31:ca:4d:fc:42:35:c8:70:b4:f4:28:6b:d6:
d3:08:4c:9d:4a:41:da:76:0e:97:76:5c:fe:01:25:
7b:94:6f:c0:f7:a9:6b:8f:22:3c:f9:4a:7c:18:46:
5d:e1:0d:4f:8c:93:65:ef:0a:9b:ae:0b:e4:89:0b:
b4:5c:17:31:fc:ea:96:e5:46:82:c0:96:6d:7a:63:
33:30:db:a5:34:bf:fb:40:03:7c:43:d7:88:28:b4:
60:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:F7:DE:C0:24:4B:AB:84:2E:2D:C9:D4:06:00:EA:B1:2D:CC:A0:B1
X509v3 Authority Key Identifier:
keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:89:e9:19:d8:98:3b:8e:4c:fc:f5:c5:8d:03:7e:f2:5d:f3:
aa:4c:41:06:e5:63:3a:89:39:8f:7f:00:52:7f:42:33:68:be:
01:30:f9:fd:d2:4c:a6:fb:1b:20:29:b6:4f:b3:94:8e:e9:81:
b8:86:7f:d2:61:e1:15:58:e9:e3:29:0e:b4:82:05:ca:c0:55:
92:6f:d1:9f:d0:c3:41:0d:8b:30:36:1d:e7:ee:0f:97:3a:bd:
9f:42:24:fd:46:38:78:d6:69:6a:66:7b:38:e8:6e:7b:d1:73:
17:3d:4d:9c:d5:29:79:62:08:75:3c:3d:2d:ca:02:9d:75:c2:
41:23:6a:8e:d4:b1:e4:f6:79:4b:90:d7:7e:a2:39:b2:4c:f6:
55:70:36:21:ed:f2:20:91:50:52:5f:0f:34:9c:a3:06:0d:67:
bc:05:e1:a0:c9:d9:72:31:d2:43:8a:92:86:65:f1:37:f3:73:
d1:4c:03:ac:42:7b:30:14:74:7d:cc:26:a1:d9:b8:cd:83:f6:
10:ac:c1:8a:38:e8:22:90:75:84:83:1d:6e:8e:a0:d2:08:0e:
ca:69:f7:05:4e:a0:a6:b4:22:73:8e:44:9c:8a:3e:a9:d0:7b:
f4:e7:07:59:59:8c:3b:c2:98:ec:d9:9a:cb:41:ea:16:44:e6:
a2:ac:b3:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 5 11:17:44 2026 by rpki-client