
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
File: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft (raw, json)
Hash identifier: 3gKzuMdbB3GMeba+w+I/MotH7RPg0v/Hanid10p4RnY=
Subject key identifier: D2:CC:67:F0:EF:C8:86:22:28:C5:67:DA:4F:E3:9E:2C:9D:89:49:D8
Authority key identifier: D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
Certificate issuer: /CN=d346e5d46291f6bc53b965865051ba399749eb2d
Certificate serial: 019F577D9167F85A07F8B33C2B514AAD75B5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
Manifest number: 0551
Signing time: Sun 12 Jul 2026 18:01:14 +0000
Manifest this update: Sun 12 Jul 2026 18:01:14 +0000
Manifest next update: Mon 13 Jul 2026 18:01:14 +0000
Files and hashes: 1: 00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl (hash: gQb7pV+g6GKOl/8EzIbPHIhV4AKsLz4c9qLZrq8JjTI=)
2: Fb3aBBcJ_RU5gPWUY71udWZuQ_o.roa (hash: VnpK440llW/db9ofXXkT+hMi7FL519qaQ5nOCrY4q+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 13 Jul 2026 14:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:57:7d:91:67:f8:5a:07:f8:b3:3c:2b:51:4a:ad:75:b5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d346e5d46291f6bc53b965865051ba399749eb2d
Validity
Not Before: Jul 12 18:01:14 2026 GMT
Not After : Jul 13 18:01:14 2026 GMT
Subject: CN=d2cc67f0efc8862228c567da4fe39e2c9d8949d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:da:24:de:bd:88:4c:0b:e0:48:11:8a:de:e6:
f7:a1:d4:bf:d1:23:00:8b:7d:37:03:63:12:d5:bf:
68:34:ab:75:e6:59:ed:1f:f6:f9:d0:31:77:13:c4:
64:4d:08:e3:7d:03:8a:2c:54:e2:40:5f:5c:ce:cf:
3e:ec:3c:30:63:77:85:58:4f:a4:1f:0c:45:37:c5:
f3:46:2d:81:d0:0d:e2:99:63:a9:72:ec:3f:fe:ba:
52:3a:b8:68:a8:d8:83:78:9e:94:20:d0:f5:7d:11:
a4:99:b6:c9:20:00:a1:e9:bc:1a:47:40:2c:25:d8:
aa:7c:dd:94:d2:96:00:2a:a6:23:1c:6e:a3:9f:b7:
96:8f:40:75:9a:d9:77:ed:31:bd:6a:27:bd:9b:fe:
13:71:eb:8a:18:46:22:eb:ab:fe:9e:c8:8d:63:9f:
c3:6e:2c:f7:27:af:2a:d1:8b:88:7f:6f:1a:a5:e7:
af:e1:24:57:f7:f0:e0:70:40:60:d8:62:40:d5:62:
b9:8a:04:0f:d6:5a:cd:87:25:8d:1f:15:fe:1c:13:
90:9a:bb:80:1a:dd:d3:57:0a:20:29:55:e2:1d:67:
19:ee:58:da:27:8b:8c:49:f3:2c:25:7a:37:81:a5:
0d:d9:d5:80:57:79:f4:2a:a9:02:3e:8c:1c:dc:72:
bd:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:CC:67:F0:EF:C8:86:22:28:C5:67:DA:4F:E3:9E:2C:9D:89:49:D8
X509v3 Authority Key Identifier:
keyid:D3:46:E5:D4:62:91:F6:BC:53:B9:65:86:50:51:BA:39:97:49:EB:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00bl1GKR9rxTuWWGUFG6OZdJ6y0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/7c8e9c-ec48-4a90-86e5-3e943f97ff31/1/00bl1GKR9rxTuWWGUFG6OZdJ6y0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:26:ce:63:b3:a2:35:cb:b4:23:8e:30:9b:cd:ba:ad:45:10:
a8:51:13:a2:43:fa:d1:4d:bc:7b:eb:64:e0:5c:2c:0c:59:80:
55:d1:8e:14:ca:64:41:2e:ee:64:23:32:6c:ca:45:8c:48:56:
59:72:e0:eb:de:95:2c:3f:d6:d1:c7:b4:f8:e3:c0:b3:92:0a:
a1:21:3a:e2:eb:cd:70:f4:95:69:12:75:7b:cf:e6:9d:32:fe:
ac:65:93:c2:15:9b:06:ec:30:1d:51:8a:5e:6a:b4:76:86:c1:
41:14:a0:12:45:e7:68:a2:87:f6:69:7b:33:37:cb:7a:42:07:
ca:00:cc:76:7f:32:46:d4:4e:a9:86:4d:29:8f:5e:b9:4a:72:
30:74:61:da:c7:9d:d3:a7:af:fb:0f:ed:86:a4:80:58:3a:77:
3b:f8:63:2f:bd:f1:45:e6:9b:19:a6:6f:95:01:b8:ec:da:b7:
b7:91:e5:d0:8a:fe:6c:b1:eb:d4:ae:94:5c:24:10:f8:ba:7d:
fc:61:7e:87:a8:91:b0:37:17:43:d6:0c:85:c7:04:7b:73:77:
d0:b8:3d:55:5f:02:8b:f7:bd:52:1e:0e:ae:7c:55:60:18:2e:
00:49:dd:90:e5:94:14:b6:6e:54:63:d5:0a:dc:c9:76:08:fa:
32:4a:bb:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 12 22:01:08 2026 by rpki-client