Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json)
Hash identifier: 46fGQ+c3lqcfXt//Cli0W9+W4ygK6I9Zrhiz0+Whngs=
Subject key identifier: 5A:AF:E5:8C:E2:E1:AA:95:3B:34:4D:D0:74:A5:BA:3F:56:A5:2A:8D
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 019D37522980A8BD9C2F87390595DC87EC31
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
Manifest number: 1568
Signing time: Sun 29 Mar 2026 02:00:24 +0000
Manifest this update: Sun 29 Mar 2026 02:00:24 +0000
Manifest next update: Mon 30 Mar 2026 02:00:24 +0000
Files and hashes: 1: aCRE3gLyqKdnvA-j-2aLcuCjRwM.roa (hash: ynx5tfnKZJH99nxW03XgpU3cYgXZihD5CZxo4tNLmhI=)
2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: jWFYy1IxoKH45bIYggQbSY3FYu6GCa3UznWAftIIF8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:29:80:a8:bd:9c:2f:87:39:05:95:dc:87:ec:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: Mar 29 02:00:24 2026 GMT
Not After : Mar 30 02:00:24 2026 GMT
Subject: CN=5aafe58ce2e1aa953b344dd074a5ba3f56a52a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:8c:25:32:f1:32:58:de:22:e3:40:76:b2:07:
49:80:bb:87:19:33:fd:e7:07:93:be:c1:fc:74:bf:
97:3d:8d:3c:16:b5:0b:44:48:79:6f:40:a3:09:08:
2d:75:29:46:91:10:8a:43:cf:a3:ce:41:cf:c0:5f:
25:48:f7:c4:04:58:17:09:9a:23:56:c4:4a:4a:a2:
d1:66:18:c9:cb:5d:d8:ed:a2:49:65:81:bc:17:46:
3e:ae:51:23:e4:22:25:16:a0:88:b7:ce:97:92:39:
37:77:38:8f:7d:32:4e:1f:34:ed:1a:17:ad:3f:df:
56:4d:49:c8:7d:6c:2d:b3:61:24:5f:3d:a2:f3:3b:
81:8b:d2:d6:8a:0c:b7:98:36:4a:03:a8:0e:ad:6f:
28:6a:b5:62:a0:b0:ee:fb:bf:10:27:53:15:05:3d:
a5:bd:12:b3:d9:ad:bd:5f:95:bc:2f:3f:c3:23:3a:
bb:18:f5:36:43:4c:5a:01:4d:47:7f:83:06:10:2f:
3c:e2:27:5d:41:f0:17:82:a4:b5:2d:5b:20:8f:c1:
c2:e2:0f:26:53:7b:ab:66:2d:15:02:b0:3a:22:2f:
b6:7e:91:41:88:3a:1d:fc:79:bd:a6:84:a9:46:06:
c5:97:e4:b4:ce:3b:ad:e1:20:cd:b9:f1:db:05:a9:
83:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:AF:E5:8C:E2:E1:AA:95:3B:34:4D:D0:74:A5:BA:3F:56:A5:2A:8D
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:7b:b2:30:92:8c:31:fc:67:6a:6a:6b:59:75:60:f8:74:24:
9c:9f:fd:84:7b:e8:91:04:ec:e8:bc:66:77:b1:be:14:c4:7f:
cf:ff:0b:06:69:66:8a:8c:31:da:e5:e7:fd:67:8c:85:5c:0f:
66:02:10:39:cd:7c:ee:3f:d6:49:69:67:d1:ac:aa:f4:ca:b0:
6f:99:be:90:8e:df:83:f5:8c:a8:7e:b9:9a:54:33:cf:d1:e5:
72:1a:73:41:9d:cc:28:32:4d:66:a5:dd:a2:81:ee:b7:b3:a2:
8f:af:2e:c2:ce:ea:3e:ac:03:85:ab:cc:66:d0:cd:93:cf:63:
88:fe:ac:37:5e:44:e9:0f:f6:09:c7:f7:23:bf:47:dc:15:86:
a6:f9:e8:e9:fc:35:95:a6:fb:a1:7d:fc:36:0d:65:69:6a:f2:
8f:d0:fb:5c:3b:39:30:f8:f0:81:82:25:ba:a5:9a:3c:d0:ef:
50:b9:c8:81:e4:bc:42:58:34:0d:7c:f2:6e:0e:d6:f8:2d:30:
40:d7:d1:26:ec:21:f0:29:97:f3:eb:04:33:9b:4f:ca:75:61:
17:b2:da:f1:81:88:3e:70:f9:89:2c:15:77:24:f0:c1:ad:59:
35:f1:09:ac:25:b3:29:77:bb:e1:83:81:0d:a6:4a:36:95:cb:
2e:a3:f9:9a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03UimAqL2cL4c5BZXch+wxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjNmY2MzkxMTM5NjM4Y2VmODMxODExNDEzMmNjZjI2ZTE2
N2QzYTQwHhcNMjYwMzI5MDIwMDI0WhcNMjYwMzMwMDIwMDI0WjAzMTEwLwYDVQQD
Eyg1YWFmZTU4Y2UyZTFhYTk1M2IzNDRkZDA3NGE1YmEzZjU2YTUyYThkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7YwlMvEyWN4i40B2sgdJgLuHGTP9
5weTvsH8dL+XPY08FrULREh5b0CjCQgtdSlGkRCKQ8+jzkHPwF8lSPfEBFgXCZoj
VsRKSqLRZhjJy13Y7aJJZYG8F0Y+rlEj5CIlFqCIt86Xkjk3dziPfTJOHzTtGhet
P99WTUnIfWwts2EkXz2i8zuBi9LWigy3mDZKA6gOrW8oarVioLDu+78QJ1MVBT2l
vRKz2a29X5W8Lz/DIzq7GPU2Q0xaAU1Hf4MGEC884iddQfAXgqS1LVsgj8HC4g8m
U3urZi0VArA6Ii+2fpFBiDod/Hm9poSpRgbFl+S0zjut4SDNufHbBamDmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFqv5Yzi4aqVOzRN0HSluj9WpSqNMB8GA1UdIwQY
MBaAFGxvY5ETljjO+DGBFBMszybhZ9OkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgt
MzRhZDFjODUzNTk5LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgtMzRhZDFjODUzNTk5
LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMXuyMJKM
MfxnamprWXVg+HQknJ/9hHvokQTs6Lxmd7G+FMR/z/8LBmlmiowx2uXn/WeMhVwP
ZgIQOc187j/WSWln0ayq9Mqwb5m+kI7fg/WMqH65mlQzz9HlchpzQZ3MKDJNZqXd
ooHut7Oij68uws7qPqwDhavMZtDNk89jiP6sN15E6Q/2Ccf3I79H3BWGpvno6fw1
lab7oX38Ng1laWryj9D7XDs5MPjwgYIluqWaPNDvULnIgeS8Qlg0DXzybg7W+C0w
QNfRJuwh8CmX8+sEM5tPynVhF7La8YGIPnD5iSwVdyTwwa1ZNfEJrCWzKXe74YOB
DaZKNpXLLqP5mg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:14 2026 by rpki-client