Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
File: bsJOKsnNUzmWUVkM85Gta78bPiY.mft (raw, json)
Hash identifier: llwDQwmoP03BrVNqhw3u2uh4g0CZlk0KBUm6efilmbM=
Subject key identifier: 27:F3:A4:4D:BC:2F:78:92:38:A3:AA:BA:76:FC:75:9E:AB:4B:D4:BF
Authority key identifier: 6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
Certificate issuer: /CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Certificate serial: 019F12657B09072FCC2706BCD7C910AC4F4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
Manifest number: 0AEE
Signing time: Mon 29 Jun 2026 08:01:08 +0000
Manifest this update: Mon 29 Jun 2026 08:01:08 +0000
Manifest next update: Tue 30 Jun 2026 08:01:08 +0000
Files and hashes: 1: V4zAIgAoy_1XQ7dP32lAlqC0nxM.roa (hash: o+vrELIZ0yNZvQJf/bVnVUZJH4II7t1VE+Z62K1MGg8=)
2: bsJOKsnNUzmWUVkM85Gta78bPiY.crl (hash: vPXeUrXNqg0HJmgg1bNMZ+YNm2ruV64WNAcSqEvCXYM=)
3: wRsM-J-_RdemGYQhUq06PflenDM.asa (hash: pjI+PT7nOc9seCJaC2jOV5Z3Ysbs3FSmgOLK6vNi+4g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:65:7b:09:07:2f:cc:27:06:bc:d7:c9:10:ac:4f:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26
Validity
Not Before: Jun 29 08:01:08 2026 GMT
Not After : Jun 30 08:01:08 2026 GMT
Subject: CN=27f3a44dbc2f789238a3aaba76fc759eab4bd4bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:56:0f:b7:67:d9:04:a7:02:9b:9c:43:5b:5d:
5b:7f:c3:78:50:ab:48:b4:ca:0b:7a:aa:02:ea:04:
7b:d6:c8:82:e6:40:5f:f9:a7:54:5a:1f:ae:44:8a:
c3:b2:ba:f4:6d:4e:fd:71:ff:51:95:bb:2b:64:56:
96:65:84:35:16:03:7a:c5:7e:ff:6e:51:7c:8e:4f:
cc:30:6c:0c:4c:fe:ec:8e:94:04:85:65:be:d0:7e:
48:49:60:29:99:62:61:58:a6:6d:75:b4:f7:2d:4d:
57:df:29:8f:3c:c9:36:38:2a:3d:a5:e2:18:7b:6d:
5f:86:c2:fc:14:0f:e7:03:e5:59:8d:bc:b8:66:1b:
4d:36:1d:d5:d2:ed:1a:96:19:b3:45:5a:ba:0b:ad:
a3:74:f8:b1:78:06:c9:bf:61:55:fc:cb:98:2c:81:
ce:d1:c7:7f:a9:f8:fd:a0:a4:37:2b:1f:52:3e:9c:
de:50:e8:77:02:88:4c:08:59:07:23:86:65:85:df:
5d:f0:03:c6:80:dd:6d:b3:59:8e:97:45:be:3e:8d:
85:4c:54:71:b6:9f:16:db:ab:28:43:05:23:a3:96:
00:83:f0:a4:47:3a:f6:3d:c6:ed:d5:f7:18:b9:1a:
d5:1e:c3:5b:4f:53:5c:7a:66:1c:80:d6:61:eb:05:
aa:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:F3:A4:4D:BC:2F:78:92:38:A3:AA:BA:76:FC:75:9E:AB:4B:D4:BF
X509v3 Authority Key Identifier:
keyid:6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:65:4d:f3:11:3e:7c:0c:d4:4a:f2:d3:40:e0:5e:1e:e2:ac:
90:69:8b:69:9e:cc:9b:02:71:45:a2:0c:41:43:aa:cc:ee:0d:
83:2d:bc:60:7d:03:19:b8:c9:f2:3b:a2:82:bc:79:b2:c5:3c:
b6:e3:5d:55:45:7d:e9:d7:e5:70:28:62:4d:06:bc:99:c0:83:
b9:60:0c:76:98:dc:56:e4:61:62:d4:41:16:c6:28:d9:a1:cc:
97:06:5c:c6:0d:7c:9b:1c:e1:aa:f0:84:31:6b:06:b4:ba:70:
28:f2:48:c0:d2:f6:8e:cd:0a:60:8c:1d:f2:10:03:b7:21:75:
56:08:5e:45:a4:09:e8:02:32:f6:91:44:1f:8f:17:01:6e:ec:
6b:94:4f:ac:b4:8b:2e:9e:0e:d0:56:92:6c:dc:89:22:dc:2c:
7f:a9:62:c5:4d:9e:8a:cc:3c:bf:67:cc:36:a0:28:f3:a1:dd:
2c:21:ea:2a:aa:a9:ca:2f:0e:11:54:a1:22:13:76:4b:c3:c9:
3f:99:d8:8a:ee:ce:f7:23:50:7f:13:a5:af:d4:44:d7:be:97:
74:5d:c8:3f:6f:2c:81:a8:18:b7:55:5d:fe:7d:79:13:4c:53:
a3:29:b5:4d:56:b0:70:45:96:26:d9:2f:b7:e2:a0:29:7e:bb:
ac:39:8f:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8SZXsJBy/MJwa818kQrE9NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlYzI0ZTJhYzljZDUzMzk5NjUxNTkwY2YzOTFhZDZiYmYx
YjNlMjYwHhcNMjYwNjI5MDgwMTA4WhcNMjYwNjMwMDgwMTA4WjAzMTEwLwYDVQQD
EygyN2YzYTQ0ZGJjMmY3ODkyMzhhM2FhYmE3NmZjNzU5ZWFiNGJkNGJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1YPt2fZBKcCm5xDW11bf8N4UKtI
tMoLeqoC6gR71siC5kBf+adUWh+uRIrDsrr0bU79cf9RlbsrZFaWZYQ1FgN6xX7/
blF8jk/MMGwMTP7sjpQEhWW+0H5ISWApmWJhWKZtdbT3LU1X3ymPPMk2OCo9peIY
e21fhsL8FA/nA+VZjby4ZhtNNh3V0u0alhmzRVq6C62jdPixeAbJv2FV/MuYLIHO
0cd/qfj9oKQ3Kx9SPpzeUOh3AohMCFkHI4Zlhd9d8APGgN1ts1mOl0W+Po2FTFRx
tp8W26soQwUjo5YAg/CkRzr2Pcbt1fcYuRrVHsNbT1NcemYcgNZh6wWqQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCfzpE28L3iSOKOqunb8dZ6rS9S/MB8GA1UdIwQY
MBaAFG7CTirJzVM5llFZDPORrWu/Gz4mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9jMWY5NjItODhkNi00NjQyLWEyZDMt
N2E3NDczYzU0NWIxLzEvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS9jMWY5NjItODhkNi00NjQyLWEyZDMtN2E3NDczYzU0NWIx
LzEvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU2VN8xE+
fAzUSvLTQOBeHuKskGmLaZ7MmwJxRaIMQUOqzO4Ngy28YH0DGbjJ8juigrx5ssU8
tuNdVUV96dflcChiTQa8mcCDuWAMdpjcVuRhYtRBFsYo2aHMlwZcxg18mxzhqvCE
MWsGtLpwKPJIwNL2js0KYIwd8hADtyF1VgheRaQJ6AIy9pFEH48XAW7sa5RPrLSL
Lp4O0FaSbNyJItwsf6lixU2eisw8v2fMNqAo86HdLCHqKqqpyi8OEVShIhN2S8PJ
P5nYiu7O9yNQfxOlr9RE176XdF3IP28sgagYt1Vd/n15E0xToym1TVawcEWWJtkv
t+KgKX67rDmPyg==
-----END CERTIFICATE-----
Generated at Mon Jun 29 10:41:03 2026 by rpki-client