Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
File: bSPOewwQBo-8RMAhlD4zkBPyruA.mft (raw, json)
Hash identifier: b1c6LL2xkApiz+MydMU8pRiAxWxXUIGKqO5rXKWnR8g=
Subject key identifier: 86:53:CF:57:B0:1F:0D:B5:4F:0C:55:BF:1A:AC:F4:30:27:C0:A5:CD
Authority key identifier: 6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
Certificate issuer: /CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Certificate serial: 019EB7337D97F278A2D80EA672A4DFD05D78
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
Manifest number: 1955
Signing time: Thu 11 Jun 2026 15:01:05 +0000
Manifest this update: Thu 11 Jun 2026 15:01:05 +0000
Manifest next update: Fri 12 Jun 2026 15:01:05 +0000
Files and hashes: 1: WK4FeKC76gPpIjRhyORnL_0frZU.roa (hash: vdHNIiugtJJb19ih4gpWPEIdemNrQgRmwJqyp8Z7ys0=)
2: bSPOewwQBo-8RMAhlD4zkBPyruA.crl (hash: UIVSsgPg8zGd1GGoRq1retpQP8NMXvh6H+qyPmOYGzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:33:7d:97:f2:78:a2:d8:0e:a6:72:a4:df:d0:5d:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d23ce7b0c10068fbc44c021943e339013f2aee0
Validity
Not Before: Jun 11 15:01:05 2026 GMT
Not After : Jun 12 15:01:05 2026 GMT
Subject: CN=8653cf57b01f0db54f0c55bf1aacf43027c0a5cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:41:95:51:ba:b5:87:8e:49:89:06:94:9c:9e:
78:5e:b3:f9:7b:e4:cc:57:67:60:61:ad:77:d4:82:
f5:b8:04:f6:8e:ee:c0:07:de:68:5d:c5:62:42:1e:
6e:40:cc:29:eb:a6:e6:da:3c:4c:cf:30:cf:a1:31:
df:81:32:e5:67:c4:88:dc:7b:5d:1d:40:e8:84:b2:
c0:75:e7:70:b0:76:ef:23:c0:32:e7:6e:8a:0c:83:
1b:7b:1f:36:78:fc:6b:92:19:5a:2f:76:5e:75:82:
99:b6:e2:f3:b0:48:ce:88:40:03:1d:78:38:2e:02:
27:25:2f:4e:a1:4e:1c:9e:a9:c5:94:33:0b:31:4c:
17:85:b3:7b:f5:45:55:a4:3b:9f:f3:f4:54:70:39:
8b:e4:ea:3d:f2:d3:58:55:f5:d5:a6:97:45:f8:1d:
86:e7:de:f7:30:6d:fe:88:0a:71:88:74:84:12:80:
2e:50:7c:82:09:a0:0a:f8:d6:64:42:1b:60:30:6c:
1f:53:f5:df:a6:5c:9c:73:94:e5:34:7d:67:69:03:
82:43:f7:fd:a8:1b:fd:24:7b:f4:c9:24:91:b5:49:
a2:50:c2:2d:aa:b0:3e:82:40:95:a3:84:35:55:74:
ac:2e:f4:a4:b1:2e:32:6c:10:a5:29:8e:04:c7:53:
05:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:53:CF:57:B0:1F:0D:B5:4F:0C:55:BF:1A:AC:F4:30:27:C0:A5:CD
X509v3 Authority Key Identifier:
keyid:6D:23:CE:7B:0C:10:06:8F:BC:44:C0:21:94:3E:33:90:13:F2:AE:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bSPOewwQBo-8RMAhlD4zkBPyruA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/66af07-3318-4f4a-89ff-40c5ebc6f736/1/bSPOewwQBo-8RMAhlD4zkBPyruA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:4a:46:6f:c6:8b:ee:c2:b9:b1:25:2f:44:e6:1c:05:0a:30:
c9:d3:89:9f:ef:68:2a:2b:8b:18:9c:88:c0:d5:1a:b8:4f:4e:
e4:2f:39:66:08:34:87:7d:79:82:53:13:3d:02:bd:81:10:9a:
91:93:a0:aa:5f:73:0a:8c:9e:a7:c5:92:9a:7b:34:dc:eb:c5:
54:c9:b8:a2:13:a1:8d:4c:e3:c5:48:ca:2a:b4:88:57:bf:17:
4c:23:1a:23:b3:cd:8b:d1:df:5b:b7:3f:42:4b:45:5f:2a:f6:
e4:19:2a:2e:18:8b:c8:4d:4f:a9:e8:0e:84:42:d4:f5:56:9e:
7b:17:7e:a6:45:38:6c:04:e4:1c:49:4e:a0:a7:88:dc:58:5c:
2c:96:0e:a2:6d:28:d6:80:48:0b:75:69:9b:ef:b0:36:83:00:
a5:b9:e7:10:9f:ee:8e:14:cf:3e:d1:49:5a:96:e8:15:56:f0:
4e:b0:1f:3b:d9:c1:db:30:19:54:4a:cd:10:a4:d8:60:03:6a:
95:f3:e8:54:b1:95:e0:b7:e4:07:2c:0d:39:6c:08:0f:7a:52:
d2:f3:1a:ae:9f:68:2a:ad:21:49:72:80:82:4e:05:bd:14:84:
72:48:95:d9:c8:e1:19:be:3c:c3:d0:74:0d:78:b3:76:3e:a8:
a0:ad:45:98
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ63M32X8nii2A6mcqTf0F14MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMjNjZTdiMGMxMDA2OGZiYzQ0YzAyMTk0M2UzMzkwMTNm
MmFlZTAwHhcNMjYwNjExMTUwMTA1WhcNMjYwNjEyMTUwMTA1WjAzMTEwLwYDVQQD
Eyg4NjUzY2Y1N2IwMWYwZGI1NGYwYzU1YmYxYWFjZjQzMDI3YzBhNWNkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEGVUbq1h45JiQaUnJ54XrP5e+TM
V2dgYa131IL1uAT2ju7AB95oXcViQh5uQMwp66bm2jxMzzDPoTHfgTLlZ8SI3Htd
HUDohLLAdedwsHbvI8Ay526KDIMbex82ePxrkhlaL3ZedYKZtuLzsEjOiEADHXg4
LgInJS9OoU4cnqnFlDMLMUwXhbN79UVVpDuf8/RUcDmL5Oo98tNYVfXVppdF+B2G
5973MG3+iApxiHSEEoAuUHyCCaAK+NZkQhtgMGwfU/Xfplycc5TlNH1naQOCQ/f9
qBv9JHv0ySSRtUmiUMItqrA+gkCVo4Q1VXSsLvSksS4ybBClKY4Ex1MFeQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZTz1ewHw21TwxVvxqs9DAnwKXNMB8GA1UdIwQY
MBaAFG0jznsMEAaPvETAIZQ+M5AT8q7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My82NmFmMDctMzMxOC00ZjRhLTg5ZmYt
NDBjNWViYzZmNzM2LzEvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My82NmFmMDctMzMxOC00ZjRhLTg5ZmYtNDBjNWViYzZmNzM2
LzEvYlNQT2V3d1FCby04Uk1BaGxENHprQlB5cnVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx0pGb8aL
7sK5sSUvROYcBQowydOJn+9oKiuLGJyIwNUauE9O5C85Zgg0h315glMTPQK9gRCa
kZOgql9zCoyep8WSmns03OvFVMm4ohOhjUzjxUjKKrSIV78XTCMaI7PNi9HfW7c/
QktFXyr25BkqLhiLyE1PqegOhELU9Vaeexd+pkU4bATkHElOoKeI3FhcLJYOom0o
1oBIC3Vpm++wNoMApbnnEJ/ujhTPPtFJWpboFVbwTrAfO9nB2zAZVErNEKTYYANq
lfPoVLGV4LfkBywNOWwID3pS0vMarp9oKq0hSXKAgk4FvRSEckiV2cjhGb48w9B0
DXizdj6ooK1FmA==
-----END CERTIFICATE-----
Generated at Thu Jun 11 23:14:25 2026 by rpki-client