Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
File: bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft (raw, json)
Hash identifier: PtZb8W/IY4FdmdrT579+YGfhA3aDBEUbMpRyqYaOnHE=
Subject key identifier: C9:73:F1:67:28:F2:A9:B7:A1:0D:BE:7E:41:71:F0:2E:85:60:EF:84
Authority key identifier: 6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
Certificate issuer: /CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Certificate serial: 019D39407A2D33D44D88E1C86FD1DF149693
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
Manifest number: 0641
Signing time: Sun 29 Mar 2026 11:00:19 +0000
Manifest this update: Sun 29 Mar 2026 11:00:19 +0000
Manifest next update: Mon 30 Mar 2026 11:00:19 +0000
Files and hashes: 1: N6W-eQiPRjqw3-6I_QmctyffMuY.roa (hash: Zu+HeLoruNEi/OX9srfF84zysLGJyEcbFNJHAud3tiU=)
2: bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl (hash: bWW8hWhn4N4Pr3/80WnIRG4CNhImZIdcnwbiolMQEPs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:7a:2d:33:d4:4d:88:e1:c8:6f:d1:df:14:96:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Validity
Not Before: Mar 29 11:00:19 2026 GMT
Not After : Mar 30 11:00:19 2026 GMT
Subject: CN=c973f16728f2a9b7a10dbe7e4171f02e8560ef84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:30:65:22:d7:12:e5:58:15:ad:b5:71:18:1d:
b8:4a:1e:92:08:d1:c7:ab:80:f4:07:3d:f2:e9:15:
da:b3:85:c7:6a:27:96:4a:23:e0:b4:08:39:d9:c1:
dc:f1:b5:43:13:b7:a6:e7:53:65:03:31:d4:b4:8b:
28:25:2f:72:ba:2c:98:5c:4b:bf:b0:b7:5b:51:c1:
bc:a1:66:90:8b:f7:f3:cf:1e:a4:55:9a:0c:94:a9:
ca:b3:b0:14:62:cb:5d:e7:01:bb:a4:a6:25:f5:75:
89:cf:25:0e:e7:14:ab:a0:68:8d:7e:b8:68:88:ff:
41:e7:7e:0a:45:90:7f:4b:65:a3:14:09:e9:b5:cb:
a3:f7:cc:91:a4:27:0d:61:c0:5c:33:b3:a8:77:98:
e5:5e:41:94:ff:60:ca:61:c3:67:93:aa:05:3d:38:
03:b1:c0:33:cd:4a:86:a9:41:56:b0:ae:02:d0:5c:
08:9b:a1:ff:d7:00:4c:df:e9:38:f9:8f:af:17:b8:
34:71:5f:a5:8c:d3:a8:df:24:f9:55:65:95:02:05:
c8:76:44:2f:35:fe:06:d6:6a:a0:52:9d:58:c4:42:
bf:50:8b:2d:26:bd:fe:d2:b6:bb:4b:4e:9f:8f:68:
a9:30:2c:a1:2d:c5:08:a3:dc:44:6b:4f:ac:3c:e4:
f4:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:73:F1:67:28:F2:A9:B7:A1:0D:BE:7E:41:71:F0:2E:85:60:EF:84
X509v3 Authority Key Identifier:
keyid:6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:e8:4b:05:f0:bb:fc:75:77:9e:82:5a:64:68:fb:11:33:de:
ae:82:50:a4:9d:73:de:15:f4:05:23:4e:85:11:d4:20:63:ba:
16:bd:97:8b:56:dc:22:71:be:57:3c:b0:67:b7:83:95:15:cd:
7a:8d:3b:f2:4f:ea:8b:eb:5d:f5:f9:8a:b0:2b:29:b1:d4:8c:
1e:71:5a:18:7b:39:f7:67:af:50:cc:94:54:c0:38:a8:f3:0d:
f2:c1:49:25:98:ed:79:ee:f7:82:50:80:ff:e4:7d:6d:7c:22:
12:5f:dc:a6:4f:d5:31:b9:6b:35:85:f5:98:ed:e1:45:59:06:
69:45:7b:b7:e4:c8:7f:74:70:22:d2:2a:b2:26:a7:61:62:8d:
c5:f6:04:9e:8a:65:cc:07:58:30:ce:df:37:71:04:5b:8b:42:
64:68:06:b6:16:cc:d7:0c:e0:05:7e:c2:d6:ab:d4:28:71:9f:
ef:b3:2c:3e:fd:21:cc:86:bf:5c:0a:ec:d6:ea:ae:83:84:0b:
68:6c:b9:4d:d7:d7:d6:67:62:2c:b5:41:7b:5f:d6:f5:09:a8:
2c:91:40:5d:ee:d7:6b:e7:ac:9b:ce:f0:32:59:21:24:84:94:
b7:1f:af:8f:ab:46:39:b3:96:20:8f:b2:fa:bf:42:2c:46:54:
b3:23:a3:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QHotM9RNiOHIb9HfFJaTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlNDQyOGY3ZjE3YjE5YzE1MDY4Y2FiOTM5ZDM3Nzk0MGU4
ZDRjNzAwHhcNMjYwMzI5MTEwMDE5WhcNMjYwMzMwMTEwMDE5WjAzMTEwLwYDVQQD
EyhjOTczZjE2NzI4ZjJhOWI3YTEwZGJlN2U0MTcxZjAyZTg1NjBlZjg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzBlItcS5VgVrbVxGB24Sh6SCNHH
q4D0Bz3y6RXas4XHaieWSiPgtAg52cHc8bVDE7em51NlAzHUtIsoJS9yuiyYXEu/
sLdbUcG8oWaQi/fzzx6kVZoMlKnKs7AUYstd5wG7pKYl9XWJzyUO5xSroGiNfrho
iP9B534KRZB/S2WjFAnptcuj98yRpCcNYcBcM7Ood5jlXkGU/2DKYcNnk6oFPTgD
scAzzUqGqUFWsK4C0FwIm6H/1wBM3+k4+Y+vF7g0cV+ljNOo3yT5VWWVAgXIdkQv
Nf4G1mqgUp1YxEK/UIstJr3+0ra7S06fj2ipMCyhLcUIo9xEa0+sPOT0uQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMlz8Wco8qm3oQ2+fkFx8C6FYO+EMB8GA1UdIwQY
MBaAFG5EKPfxexnBUGjKuTnTd5QOjUxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82Y2Y1ZjQtM2Q2MC00MWQ3LWFlMWEt
Y2JjMzMxYmZjZGIyLzEvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS82Y2Y1ZjQtM2Q2MC00MWQ3LWFlMWEtY2JjMzMxYmZjZGIy
LzEvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnOhLBfC7
/HV3noJaZGj7ETPeroJQpJ1z3hX0BSNOhRHUIGO6Fr2Xi1bcInG+VzywZ7eDlRXN
eo078k/qi+td9fmKsCspsdSMHnFaGHs592evUMyUVMA4qPMN8sFJJZjtee73glCA
/+R9bXwiEl/cpk/VMblrNYX1mO3hRVkGaUV7t+TIf3RwItIqsianYWKNxfYEnopl
zAdYMM7fN3EEW4tCZGgGthbM1wzgBX7C1qvUKHGf77MsPv0hzIa/XArs1uqug4QL
aGy5TdfX1mdiLLVBe1/W9QmoLJFAXe7Xa+esm87wMlkhJISUtx+vj6tGObOWII+y
+r9CLEZUsyOj6w==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:04:13 2026 by rpki-client