Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.mft
File: BgGOe1K9MmiqTV06pXf0fQ8YdQQ.mft (raw, json)
Hash identifier: drsBFRJqkt7uogohMBBbMet3jyxmpjx5E2myxaMPvTk=
Subject key identifier: 03:4D:41:33:8F:EA:24:95:24:64:9F:5E:26:13:C4:56:47:9E:2B:2F
Authority key identifier: 06:01:8E:7B:52:BD:32:68:AA:4D:5D:3A:A5:77:F4:7D:0F:18:75:04
Certificate issuer: /CN=06018e7b52bd3268aa4d5d3aa577f47d0f187504
Certificate serial: 019E2F96DA85974BC7FCC5ACBDBF1B45E781
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.mft
Manifest number: 0DD7
Signing time: Sat 16 May 2026 07:01:15 +0000
Manifest this update: Sat 16 May 2026 07:01:15 +0000
Manifest next update: Sun 17 May 2026 07:01:15 +0000
Files and hashes: 1: BgGOe1K9MmiqTV06pXf0fQ8YdQQ.crl (hash: N09WxNKoh9dePrr7zSK+fEDOwlo3CwlOvEEUdN8b2YQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 07:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2f:96:da:85:97:4b:c7:fc:c5:ac:bd:bf:1b:45:e7:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06018e7b52bd3268aa4d5d3aa577f47d0f187504
Validity
Not Before: May 16 07:01:15 2026 GMT
Not After : May 17 07:01:15 2026 GMT
Subject: CN=034d41338fea249524649f5e2613c456479e2b2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:7a:79:48:64:9d:96:13:fd:f0:6d:4d:28:14:
e0:46:e1:8f:f9:03:0b:59:ca:36:e4:b1:20:5a:ea:
35:56:9f:2c:f8:d6:db:1d:44:22:c5:62:61:4d:54:
79:00:c1:18:0c:6a:1e:e4:05:ce:63:62:8a:84:94:
ee:1d:41:24:69:b2:d1:72:ab:20:15:dd:3f:65:d9:
8e:9b:e4:03:f4:6d:7b:52:d9:28:23:07:f0:53:b7:
72:57:74:8f:ee:c7:b6:2d:2b:09:12:49:44:9c:cc:
f5:d6:81:4d:3e:de:ac:34:71:6e:71:24:f3:72:68:
1a:6f:7d:cf:53:1b:a9:ea:75:a0:c8:52:ba:fa:05:
fc:fd:64:f4:0c:9d:12:b8:aa:6e:9c:28:3e:16:49:
0f:a8:20:20:60:ae:b0:8b:f7:b2:5a:a8:aa:28:aa:
f3:49:4e:da:d2:4c:21:5b:44:70:87:63:a9:d0:69:
2c:d5:0b:bf:a7:7f:f6:d0:4e:70:22:c9:fd:ae:83:
ef:1c:31:c2:4e:0c:29:df:76:1c:99:34:c0:34:5e:
c5:b9:b2:a2:2f:9d:71:35:08:5d:b0:7c:68:c3:64:
2b:bb:5d:b6:d6:51:b2:df:e4:04:10:c8:2a:19:8c:
64:fe:d7:b4:64:8f:b8:d6:a4:25:be:12:85:ce:9a:
c7:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:4D:41:33:8F:EA:24:95:24:64:9F:5E:26:13:C4:56:47:9E:2B:2F
X509v3 Authority Key Identifier:
keyid:06:01:8E:7B:52:BD:32:68:AA:4D:5D:3A:A5:77:F4:7D:0F:18:75:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/fdc9b0-7185-4b18-857d-1d9fe8aa12ab/1/BgGOe1K9MmiqTV06pXf0fQ8YdQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:1c:a4:7c:e2:2f:3d:30:7e:f8:cc:9e:06:19:b8:c1:01:0d:
1b:d6:b6:10:e2:92:11:5c:35:cc:96:7a:0d:59:0f:46:9b:64:
9a:0e:e2:b0:05:66:20:59:86:b0:ef:d4:60:50:35:92:95:0a:
74:26:c0:13:4a:db:c1:0e:0d:a1:b9:78:b7:0b:8c:16:47:24:
01:2d:3e:71:7a:ed:59:fd:8f:00:44:5b:3d:c6:ec:40:97:7d:
8b:3c:ba:71:e9:1b:d0:53:47:48:92:e6:d5:5c:54:37:b5:4f:
5f:4c:f9:d8:59:4f:e3:aa:56:a1:e9:d6:68:f1:48:f2:e7:1e:
5f:e7:57:a2:5e:a6:23:54:74:56:ff:61:56:85:f3:92:8d:49:
ba:63:31:f0:e9:d1:0a:40:7f:6e:38:57:5d:fc:93:21:3a:fe:
8d:2d:09:3f:07:17:37:bb:c3:91:76:67:5e:d3:21:cf:1b:53:
8f:ec:d9:6c:ed:71:2f:76:d3:5d:10:a0:4e:03:47:86:f4:3d:
97:12:d3:7f:f1:8e:f7:f7:8f:ba:d0:df:0f:f4:23:a5:ee:38:
6b:fc:02:1b:51:30:53:10:dc:06:3f:7e:b3:89:29:87:1e:d0:
d2:1a:85:e7:f4:df:ef:60:66:f8:65:ad:0a:88:96:00:ef:61:
e2:0d:1d:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4vltqFl0vH/MWsvb8bReeBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2MDE4ZTdiNTJiZDMyNjhhYTRkNWQzYWE1NzdmNDdkMGYx
ODc1MDQwHhcNMjYwNTE2MDcwMTE1WhcNMjYwNTE3MDcwMTE1WjAzMTEwLwYDVQQD
EygwMzRkNDEzMzhmZWEyNDk1MjQ2NDlmNWUyNjEzYzQ1NjQ3OWUyYjJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjHp5SGSdlhP98G1NKBTgRuGP+QML
Wco25LEgWuo1Vp8s+NbbHUQixWJhTVR5AMEYDGoe5AXOY2KKhJTuHUEkabLRcqsg
Fd0/ZdmOm+QD9G17UtkoIwfwU7dyV3SP7se2LSsJEklEnMz11oFNPt6sNHFucSTz
cmgab33PUxup6nWgyFK6+gX8/WT0DJ0SuKpunCg+FkkPqCAgYK6wi/eyWqiqKKrz
SU7a0kwhW0Rwh2Op0Gks1Qu/p3/20E5wIsn9roPvHDHCTgwp33YcmTTANF7FubKi
L51xNQhdsHxow2Qru1221lGy3+QEEMgqGYxk/te0ZI+41qQlvhKFzprHxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFANNQTOP6iSVJGSfXiYTxFZHnisvMB8GA1UdIwQY
MBaAFAYBjntSvTJoqk1dOqV39H0PGHUEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmdHT2UxSzlNbWlxVFYwNnBYZjBmUThZZFFRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9mZGM5YjAtNzE4NS00YjE4LTg1N2Qt
MWQ5ZmU4YWExMmFiLzEvQmdHT2UxSzlNbWlxVFYwNnBYZjBmUThZZFFRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9mZGM5YjAtNzE4NS00YjE4LTg1N2QtMWQ5ZmU4YWExMmFi
LzEvQmdHT2UxSzlNbWlxVFYwNnBYZjBmUThZZFFRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQhykfOIv
PTB++MyeBhm4wQENG9a2EOKSEVw1zJZ6DVkPRptkmg7isAVmIFmGsO/UYFA1kpUK
dCbAE0rbwQ4Nobl4twuMFkckAS0+cXrtWf2PAERbPcbsQJd9izy6cekb0FNHSJLm
1VxUN7VPX0z52FlP46pWoenWaPFI8uceX+dXol6mI1R0Vv9hVoXzko1JumMx8OnR
CkB/bjhXXfyTITr+jS0JPwcXN7vDkXZnXtMhzxtTj+zZbO1xL3bTXRCgTgNHhvQ9
lxLTf/GO9/ePutDfD/Qjpe44a/wCG1EwUxDcBj9+s4kphx7Q0hqF5/Tf72Bm+GWt
CoiWAO9h4g0dbQ==
-----END CERTIFICATE-----
Generated at Sat May 16 16:25:45 2026 by rpki-client