Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
File: BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft (raw, json)
Hash identifier: ZZvXyI+cFkSaAcMhq2jUZq3RLtFKYo0XZRqBwMJdfh8=
Subject key identifier: 16:64:68:19:CC:71:72:3A:96:D0:4E:46:CE:11:62:3C:9C:70:5F:4D
Authority key identifier: 05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F
Certificate issuer: /CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f
Certificate serial: 019CF31693468278EB78BCAF3E29E530BE5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
Manifest number: 0AE5
Signing time: Sun 15 Mar 2026 20:01:08 +0000
Manifest this update: Sun 15 Mar 2026 20:01:08 +0000
Manifest next update: Mon 16 Mar 2026 20:01:08 +0000
Files and hashes: 1: BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl (hash: GGYKRf8ztOqSfI4f7hNzLRPsfhy7AYfmSucQgIu89pc=)
2: wPZBSgFASeM9SaWJvAkRGk-7twQ.roa (hash: R3wosEg+LuaaoBj4e/mPNIMyKN6NLJP5v9wAW4ICOrI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Mar 2026 20:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f3:16:93:46:82:78:eb:78:bc:af:3e:29:e5:30:be:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f
Validity
Not Before: Mar 15 20:01:08 2026 GMT
Not After : Mar 16 20:01:08 2026 GMT
Subject: CN=16646819cc71723a96d04e46ce11623c9c705f4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:85:6e:d2:d5:77:41:aa:a3:09:30:99:35:e8:
b9:47:3d:c2:93:ac:55:8d:e2:33:a6:c8:8b:b7:b5:
4f:07:a7:60:d5:91:38:19:6f:74:45:0e:b1:07:9e:
57:b9:c4:59:34:08:e1:9d:6a:9d:73:62:d9:02:0a:
5d:30:4c:e7:f8:8c:40:12:72:f8:31:69:df:9f:fe:
2d:bf:8f:bf:1c:7c:87:ab:21:92:9f:d4:b7:11:44:
9e:e3:9d:b8:ed:bf:df:cd:98:a4:14:18:fa:f5:47:
db:5d:ea:90:28:57:3d:d4:f9:c7:0a:59:31:29:2f:
24:3d:60:d1:16:03:9a:81:c1:08:c9:a0:03:5f:a3:
7e:84:52:8f:43:04:d2:6f:5f:23:cf:e5:58:7f:f7:
a6:f7:c1:ce:35:9b:2c:7d:3b:74:0e:6c:95:30:83:
66:a7:6a:81:15:17:b8:0f:29:46:fb:f9:ef:fe:62:
9e:34:77:94:0c:3b:a3:3f:a4:c9:0c:00:9e:01:b7:
06:cc:23:82:55:b6:fa:f1:60:6a:9e:0f:47:90:11:
4c:f5:7a:a9:2a:77:b7:5d:00:6d:a6:3e:7c:df:19:
32:fe:34:28:f8:1f:c5:bf:58:03:d1:01:04:4c:bb:
33:8b:ea:0b:be:1b:2e:4c:16:b2:1f:2b:2d:f4:96:
b5:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:64:68:19:CC:71:72:3A:96:D0:4E:46:CE:11:62:3C:9C:70:5F:4D
X509v3 Authority Key Identifier:
keyid:05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:cf:d2:85:66:b3:1a:7a:cd:8d:4a:f9:12:f5:8b:12:47:ad:
b7:c0:45:ca:03:c3:7a:23:b0:05:0c:b0:cb:b0:82:d0:7f:37:
89:d5:19:4c:4c:1b:45:0d:a6:1c:8a:1c:cb:33:a0:5e:83:39:
38:3a:82:f1:d2:a1:c5:5a:3f:99:57:16:a9:a7:f2:bf:9a:db:
d1:37:68:7b:bf:e9:4a:7f:5c:4a:62:9f:d1:58:3b:8b:f0:f1:
56:2c:01:aa:5e:c6:fe:73:9c:0f:7a:a8:47:f7:07:f2:1b:a1:
b7:f4:08:94:c7:4a:6c:17:ba:96:f0:fa:6c:fd:4a:a8:93:f1:
3e:d2:be:d0:2c:cc:a6:1b:3c:14:8f:bb:34:4c:b8:ed:33:1c:
76:8c:71:9c:7d:e0:2f:86:e2:69:9a:17:b4:73:c9:0c:ae:4c:
25:c8:49:40:c6:ba:88:68:c9:31:65:9a:58:86:19:2a:a9:76:
72:ae:45:f4:aa:a6:91:42:7f:59:6b:24:30:5c:41:9e:53:b6:
b6:ef:2a:b4:0d:2f:fd:a7:1e:81:0b:eb:b1:ab:07:59:fc:c8:
c6:08:e0:1a:6c:b9:45:39:76:1d:ad:68:fc:0a:66:a3:1a:ab:
66:3d:05:2b:0a:09:a8:34:81:74:30:9b:3c:0b:d4:7f:07:0e:
fd:53:f2:67
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzzFpNGgnjreLyvPinlML5bMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MmIxMGU1NDdlODlmZjZjN2IzOWI2Y2E5N2ZiMTZiM2Zk
ZmJlNGYwHhcNMjYwMzE1MjAwMTA4WhcNMjYwMzE2MjAwMTA4WjAzMTEwLwYDVQQD
EygxNjY0NjgxOWNjNzE3MjNhOTZkMDRlNDZjZTExNjIzYzljNzA1ZjRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwoVu0tV3QaqjCTCZNei5Rz3Ck6xV
jeIzpsiLt7VPB6dg1ZE4GW90RQ6xB55XucRZNAjhnWqdc2LZAgpdMEzn+IxAEnL4
MWnfn/4tv4+/HHyHqyGSn9S3EUSe45247b/fzZikFBj69UfbXeqQKFc91PnHClkx
KS8kPWDRFgOagcEIyaADX6N+hFKPQwTSb18jz+VYf/em98HONZssfTt0DmyVMINm
p2qBFRe4DylG+/nv/mKeNHeUDDujP6TJDACeAbcGzCOCVbb68WBqng9HkBFM9Xqp
Kne3XQBtpj583xky/jQo+B/Fv1gD0QEETLszi+oLvhsuTBayHyst9Ja1CQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBZkaBnMcXI6ltBORs4RYjyccF9NMB8GA1UdIwQY
MBaAFAUrEOVH6J/2x7ObbKl/sWs/375PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlNzUTVVZm9uX2JIczV0c3FYLXhhel9mdms4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yYWEyMTgtN2UxZS00OTk0LThjYjAt
MWY3NmU5ZGNmZjkyLzEvQlNzUTVVZm9uX2JIczV0c3FYLXhhel9mdms4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMi8yYWEyMTgtN2UxZS00OTk0LThjYjAtMWY3NmU5ZGNmZjky
LzEvQlNzUTVVZm9uX2JIczV0c3FYLXhhel9mdms4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJs/ShWaz
GnrNjUr5EvWLEkett8BFygPDeiOwBQywy7CC0H83idUZTEwbRQ2mHIocyzOgXoM5
ODqC8dKhxVo/mVcWqafyv5rb0Tdoe7/pSn9cSmKf0Vg7i/DxViwBql7G/nOcD3qo
R/cH8huht/QIlMdKbBe6lvD6bP1KqJPxPtK+0CzMphs8FI+7NEy47TMcdoxxnH3g
L4biaZoXtHPJDK5MJchJQMa6iGjJMWWaWIYZKql2cq5F9KqmkUJ/WWskMFxBnlO2
tu8qtA0v/acegQvrsasHWfzIxgjgGmy5RTl2Ha1o/ApmoxqrZj0FKwoJqDSBdDCb
PAvUfwcO/VPyZw==
-----END CERTIFICATE-----
Generated at Mon Mar 16 03:36:42 2026 by rpki-client