Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
File: bJHX1fXOV5JskDlz7L8RK_rhUw0.mft (raw, json)
Hash identifier: 24xxHLmfSgW6HUMCLD9h0Gmgcl5qe5HDYJPhZ6eTt5s=
Subject key identifier: E5:7D:0B:46:DA:E2:25:0A:F7:A6:AD:64:02:31:F0:F5:E1:66:71:48
Authority key identifier: 6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D
Certificate issuer: /CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d
Certificate serial: 019F18306CA80A05BA8BD53722C90213DBC6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
Manifest number: 1988
Signing time: Tue 30 Jun 2026 11:00:54 +0000
Manifest this update: Tue 30 Jun 2026 11:00:54 +0000
Manifest next update: Wed 01 Jul 2026 11:00:54 +0000
Files and hashes: 1: bJHX1fXOV5JskDlz7L8RK_rhUw0.crl (hash: P61iOEiDDoFT78X1AUYwTzk6IKwJhtp8ZOttghVhXJw=)
2: gAFSZzKTjEVRf47WvbPQw9RuhoM.roa (hash: jPokL5/z/e0Il4m/WG56yEQQsrUzjo4pjF7u6A/T3a4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:6c:a8:0a:05:ba:8b:d5:37:22:c9:02:13:db:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d
Validity
Not Before: Jun 30 11:00:54 2026 GMT
Not After : Jul 1 11:00:54 2026 GMT
Subject: CN=e57d0b46dae2250af7a6ad640231f0f5e1667148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:8e:22:b3:3e:8e:fb:23:ee:48:32:9e:96:dd:
77:b4:b9:36:37:cb:71:13:cf:58:35:68:58:47:a3:
14:7f:50:bc:7f:a1:55:9e:42:36:ae:f1:3f:fd:8b:
cd:af:22:db:f4:fa:f8:af:b7:ac:39:25:76:cc:4d:
f3:d6:61:f1:ff:f9:cb:b6:7a:49:60:43:16:63:97:
c9:25:b6:f0:27:2e:f3:2f:88:ba:00:29:56:d2:01:
2c:da:18:91:f7:a0:68:30:b0:a5:06:a0:aa:bb:60:
51:c4:ee:a8:e2:36:78:96:05:64:68:e3:7f:91:2a:
a3:59:4d:77:e0:0a:f4:60:2e:6e:e0:04:a6:8f:ed:
4a:31:43:46:da:9b:0f:a4:8e:0d:3e:29:1e:0b:90:
df:11:16:29:a5:a2:84:bc:60:38:3d:36:38:36:ae:
30:30:71:04:2e:8f:55:3c:a5:1a:3f:81:45:a2:f3:
94:30:03:fe:8c:e6:c9:d8:54:75:20:ba:bd:89:9d:
97:77:8e:5e:ba:83:d8:f7:5a:17:6d:da:aa:48:2d:
5f:29:74:10:46:ff:ed:28:7e:43:20:63:9b:04:ad:
a9:aa:b3:ed:b6:ca:77:54:4d:fb:11:c3:2e:06:3c:
a8:bf:f3:ac:4b:29:05:1c:ba:df:d7:57:55:4e:5c:
2e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:7D:0B:46:DA:E2:25:0A:F7:A6:AD:64:02:31:F0:F5:E1:66:71:48
X509v3 Authority Key Identifier:
keyid:6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:7c:e1:05:23:76:80:57:b6:cc:e3:34:62:0f:5a:bb:0a:82:
7b:45:78:8a:01:e7:66:96:36:fa:9b:38:57:e0:6e:11:05:ff:
13:9d:f4:60:53:09:e7:02:0c:45:55:04:9d:15:5b:60:69:76:
37:83:47:52:e1:8d:3a:7e:1a:b3:c6:97:4e:0d:63:86:15:4b:
77:00:db:de:81:28:4a:e1:79:ff:c9:da:63:5d:96:c5:67:73:
f4:e0:67:b2:0b:1c:80:80:d7:1b:fb:87:ec:87:6b:b4:42:83:
91:d5:10:9b:22:49:d4:36:77:f0:0e:76:49:06:26:f0:5d:7f:
b6:38:f8:a4:a0:cc:38:e7:db:c7:30:53:50:39:a3:51:9b:02:
c9:9c:aa:78:43:04:33:c9:23:f8:3e:98:eb:cb:ad:77:dc:d7:
fc:a1:3d:ef:b9:7a:05:f5:37:6b:28:3b:77:9f:e8:a4:58:87:
2b:e0:70:e0:82:ee:d4:df:ad:0d:da:8c:80:85:62:6a:24:15:
6d:52:6a:c4:8d:32:68:75:6c:a2:42:b2:7b:a4:28:a7:f3:2a:
e8:1e:19:f4:47:01:62:80:9a:a3:be:94:95:26:9f:e3:86:7e:
6c:37:e2:57:0a:82:44:51:ec:c8:39:bd:9a:fd:59:5b:c8:26:
72:58:04:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 16:25:22 2026 by rpki-client