Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
File: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft (raw, json)
Hash identifier: EGaCeQ1ZOJ3rxIEeleUhJgnG2tomcHvBFp2NEZh+TYE=
Subject key identifier: 68:70:4B:8A:BA:72:10:88:E7:B2:8D:6B:04:8C:3D:29:7E:B2:22:88
Authority key identifier: 6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
Certificate issuer: /CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Certificate serial: 019E202402B6A5942675216DC669CE9EBEBC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
Manifest number: 0694
Signing time: Wed 13 May 2026 07:01:31 +0000
Manifest this update: Wed 13 May 2026 07:01:31 +0000
Manifest next update: Thu 14 May 2026 07:01:31 +0000
Files and hashes: 1: Je_y8wxQvqCgs-B_X_JDDy6e4N4.roa (hash: EsZORo0khgTEum2xHY+MdLQ0jyUTYVdE3AQ38NpK21M=)
2: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl (hash: KWnL6Wl2NgG+EbUkmWRonXCmrvn3dAp65WUy09EJXEI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:24:02:b6:a5:94:26:75:21:6d:c6:69:ce:9e:be:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Validity
Not Before: May 13 07:01:31 2026 GMT
Not After : May 14 07:01:31 2026 GMT
Subject: CN=68704b8aba721088e7b28d6b048c3d297eb22288
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:eb:6f:1b:06:16:07:2a:4a:60:29:14:31:a5:
0e:5b:0f:92:a8:d7:af:54:ac:de:a4:81:db:d1:55:
22:f3:17:99:15:88:f9:ed:36:d9:b2:67:a4:59:0a:
f6:c5:4a:b8:27:35:2f:c4:fa:d9:bb:8e:f0:57:03:
f5:30:ff:4a:46:83:e7:e5:da:83:e0:4d:71:42:b7:
3c:5a:6a:80:18:63:84:9c:1c:ae:2f:5b:65:b3:92:
79:b1:1d:20:b6:84:a5:d4:06:96:0b:7e:fb:31:e9:
d9:e1:ef:ec:6a:d7:d2:61:bd:67:fa:41:85:f2:06:
37:29:61:55:97:be:4a:2e:cc:44:3f:9b:00:f5:6f:
90:02:5e:70:fe:35:05:7e:82:94:eb:d9:15:4f:3e:
47:b3:be:46:7b:e8:95:54:f2:a8:fc:13:26:ff:5d:
45:2d:7e:50:0c:85:9e:ab:6b:3d:e0:80:d8:35:e9:
00:4f:c3:c8:d7:e4:e2:6e:b0:d5:b8:e0:da:bd:13:
0e:7f:da:71:b5:31:7d:ec:4f:7c:d0:fc:64:a8:03:
a4:00:b2:a3:d5:84:23:6e:0b:2e:bf:45:a8:84:80:
f4:63:3e:ed:5a:d7:6e:f3:fc:22:bb:4c:72:b0:61:
4f:0f:b4:b5:24:8e:6b:a7:69:b5:84:2e:2d:00:f1:
84:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:70:4B:8A:BA:72:10:88:E7:B2:8D:6B:04:8C:3D:29:7E:B2:22:88
X509v3 Authority Key Identifier:
keyid:6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:3e:27:94:fa:9a:5a:c8:64:18:a1:83:e3:4b:03:33:e7:1f:
e9:a5:60:34:72:ba:94:91:57:92:6f:e7:5c:de:b1:54:f1:d5:
88:0c:11:33:4e:13:d8:4f:e4:2e:79:de:1a:0c:eb:25:69:09:
8e:7c:26:6f:ff:ee:29:9b:43:9a:eb:e2:fa:dd:31:3d:6b:d4:
1e:a0:2c:d5:fd:a9:c5:29:20:22:d2:a7:a6:48:18:34:41:f4:
24:dd:6f:3b:60:03:8a:54:07:d3:bf:41:d8:30:8a:cf:e3:87:
be:9c:9f:96:b1:34:51:64:69:55:67:5f:7e:76:b7:87:9e:f9:
12:80:a6:3c:54:b3:43:27:43:22:17:c9:10:0b:e3:61:b7:fa:
af:de:bf:fb:44:94:8f:f0:cc:08:47:a6:ad:be:86:19:1b:eb:
50:4f:79:58:6c:a3:d5:7a:e7:85:65:6c:0b:98:79:90:94:54:
b8:ff:14:43:d9:9f:ea:d6:8f:72:14:50:be:d5:1b:40:16:b4:
d6:e8:68:ad:98:19:5a:9a:4f:67:2e:0e:c5:95:4a:39:68:93:
ad:52:8b:11:28:fe:ed:03:9c:1f:46:2e:80:a5:cf:f0:7e:c0:
0e:0c:c4:a6:c4:a8:60:4e:60:9f:f5:3d:d2:5c:43:ba:0e:0c:
37:a3:ef:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:53:25 2026 by rpki-client