Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
File: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft (raw, json)
Hash identifier: KRW75mOiUlp11tggz5yfDqmM7ZWaUfuDGpppW5BVQg4=
Subject key identifier: 0E:98:76:27:56:CC:98:D9:8C:07:0C:F1:C5:08:35:DA:35:E0:53:76
Authority key identifier: 6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
Certificate issuer: /CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Certificate serial: 019D27044A360A0667BC460D06ACC0B5006B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
Manifest number: 0613
Signing time: Wed 25 Mar 2026 22:01:25 +0000
Manifest this update: Wed 25 Mar 2026 22:01:25 +0000
Manifest next update: Thu 26 Mar 2026 22:01:25 +0000
Files and hashes: 1: Je_y8wxQvqCgs-B_X_JDDy6e4N4.roa (hash: EsZORo0khgTEum2xHY+MdLQ0jyUTYVdE3AQ38NpK21M=)
2: bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl (hash: gYhM5kS+SBuBi5p0iiQ0PjwMJhpLzfojD8NCqpDFPlM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:4a:36:0a:06:67:bc:46:0d:06:ac:c0:b5:00:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6cb850deb28bdb2f655e2f1b02d37c13c6d43452
Validity
Not Before: Mar 25 22:01:25 2026 GMT
Not After : Mar 26 22:01:25 2026 GMT
Subject: CN=0e98762756cc98d98c070cf1c50835da35e05376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:84:89:ad:52:8b:41:c8:01:6b:f5:e0:9b:e2:
fc:8d:39:54:1c:18:0a:a6:f7:1c:d2:87:6b:f9:09:
ed:41:4e:0e:e7:ac:24:ab:15:8d:27:7f:c0:b3:9d:
a6:c3:69:dd:a9:69:1c:7a:56:53:1e:e3:b8:30:b7:
60:20:0e:89:b3:a8:41:1d:29:45:a3:e5:97:69:96:
98:88:1c:70:1f:c1:2b:5f:67:db:59:10:83:f5:5d:
a0:43:ed:51:22:f7:11:b1:4f:11:26:ff:2b:56:98:
b3:9a:9b:4d:a6:df:2c:f7:3a:d1:9e:80:bd:15:d0:
b5:08:cf:d3:5f:9a:c2:83:6d:cd:76:f8:9d:fb:91:
4d:1f:eb:b0:c1:db:b9:48:68:46:99:00:c9:25:63:
08:cf:a7:d0:e8:67:17:de:0c:53:c4:6b:e1:36:3b:
5c:51:e7:ed:d6:5b:3e:bc:0f:b7:bd:2b:ef:be:b9:
3b:86:ec:19:7a:15:3d:d1:a1:36:45:a0:52:12:25:
55:aa:eb:96:44:08:89:53:7b:be:75:2e:93:07:2c:
ac:00:f2:f2:4d:c0:1a:34:05:ac:57:72:e8:c1:98:
5d:07:42:b1:52:b5:aa:ea:8d:0c:3c:6c:2b:0c:96:
ca:60:1c:f2:d8:ef:f7:d8:67:31:1c:2e:b8:c3:10:
91:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:98:76:27:56:CC:98:D9:8C:07:0C:F1:C5:08:35:DA:35:E0:53:76
X509v3 Authority Key Identifier:
keyid:6C:B8:50:DE:B2:8B:DB:2F:65:5E:2F:1B:02:D3:7C:13:C6:D4:34:52
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/b2d70d-4953-4d61-b8c9-88b2d2cf7c31/1/bLhQ3rKL2y9lXi8bAtN8E8bUNFI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:00:da:3d:17:d1:0b:9e:56:26:ca:a7:34:ea:c8:e5:7b:35:
0e:30:99:51:bc:4b:db:84:3d:20:88:58:76:3c:bf:27:aa:91:
f4:35:d0:16:bd:64:bf:b2:1f:e3:6b:03:a9:ac:b7:e8:22:d2:
1f:71:fd:ab:bb:c2:39:74:7f:07:9e:4a:d9:2b:6d:93:19:cf:
55:19:f9:4c:26:2a:cb:b3:c5:e3:e9:6f:e6:53:6a:1c:05:8c:
01:f1:67:92:f9:08:a2:3e:4b:ca:42:e9:b6:ce:b1:39:3e:b8:
15:db:05:96:d3:09:fa:2d:34:8b:d5:e0:ed:52:c8:13:69:20:
02:79:8f:4d:b1:86:34:01:bc:24:2a:4e:13:e7:7a:1c:a9:ba:
26:b5:c3:cc:e9:8a:ac:84:c1:12:c9:39:8a:48:68:22:9d:1e:
32:a1:2a:e0:59:3f:6f:65:e6:08:8a:33:d5:a0:f1:92:8c:bd:
3d:06:7c:0e:27:fc:7c:6f:2c:47:c1:88:6a:b2:d5:88:fe:ed:
28:d4:98:89:b7:c6:71:11:e2:81:10:31:a3:bf:74:af:35:53:
5b:ad:50:b4:02:46:1e:d8:e5:60:5b:ed:9f:f8:ba:0a:d7:03:
fd:49:40:0e:86:5f:62:43:39:c5:2f:f4:3b:88:01:47:68:35:
59:17:df:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nBEo2CgZnvEYNBqzAtQBrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjYjg1MGRlYjI4YmRiMmY2NTVlMmYxYjAyZDM3YzEzYzZk
NDM0NTIwHhcNMjYwMzI1MjIwMTI1WhcNMjYwMzI2MjIwMTI1WjAzMTEwLwYDVQQD
EygwZTk4NzYyNzU2Y2M5OGQ5OGMwNzBjZjFjNTA4MzVkYTM1ZTA1Mzc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmYSJrVKLQcgBa/Xgm+L8jTlUHBgK
pvcc0odr+QntQU4O56wkqxWNJ3/As52mw2ndqWkcelZTHuO4MLdgIA6Js6hBHSlF
o+WXaZaYiBxwH8ErX2fbWRCD9V2gQ+1RIvcRsU8RJv8rVpizmptNpt8s9zrRnoC9
FdC1CM/TX5rCg23Ndvid+5FNH+uwwdu5SGhGmQDJJWMIz6fQ6GcX3gxTxGvhNjtc
Ueft1ls+vA+3vSvvvrk7huwZehU90aE2RaBSEiVVquuWRAiJU3u+dS6TByysAPLy
TcAaNAWsV3LowZhdB0KxUrWq6o0MPGwrDJbKYBzy2O/32GcxHC64wxCRLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA6YdidWzJjZjAcM8cUINdo14FN2MB8GA1UdIwQY
MBaAFGy4UN6yi9svZV4vGwLTfBPG1DRSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkxoUTNyS0wyeTlsWGk4YkF0TjhFOGJVTkZJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC9iMmQ3MGQtNDk1My00ZDYxLWI4Yzkt
ODhiMmQyY2Y3YzMxLzEvYkxoUTNyS0wyeTlsWGk4YkF0TjhFOGJVTkZJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC9iMmQ3MGQtNDk1My00ZDYxLWI4YzktODhiMmQyY2Y3YzMx
LzEvYkxoUTNyS0wyeTlsWGk4YkF0TjhFOGJVTkZJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoQDaPRfR
C55WJsqnNOrI5Xs1DjCZUbxL24Q9IIhYdjy/J6qR9DXQFr1kv7If42sDqay36CLS
H3H9q7vCOXR/B55K2SttkxnPVRn5TCYqy7PF4+lv5lNqHAWMAfFnkvkIoj5LykLp
ts6xOT64FdsFltMJ+i00i9Xg7VLIE2kgAnmPTbGGNAG8JCpOE+d6HKm6JrXDzOmK
rITBEsk5ikhoIp0eMqEq4Fk/b2XmCIoz1aDxkoy9PQZ8Dif8fG8sR8GIarLViP7t
KNSYibfGcRHigRAxo790rzVTW61QtAJGHtjlYFvtn/i6CtcD/UlADoZfYkM5xS/0
O4gBR2g1WRff6g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:34:56 2026 by rpki-client