Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
File: Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft (raw, json)
Hash identifier: uCumUuJIxhlhbkbwnnCCBsLSEYzQqaf/etKkaL+OJBo=
Subject key identifier: 73:63:96:B3:E6:A7:48:52:80:C2:00:9A:F6:20:85:00:68:A4:20:83
Authority key identifier: 06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98
Certificate issuer: /CN=06097a72e4ae40b6b9929b72f81efd71c517dd98
Certificate serial: 019DCF3DF7A6174113AD71260A6C437E32CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
Manifest number: 0500
Signing time: Mon 27 Apr 2026 14:00:37 +0000
Manifest this update: Mon 27 Apr 2026 14:00:37 +0000
Manifest next update: Tue 28 Apr 2026 14:00:37 +0000
Files and hashes: 1: Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl (hash: rEr9xsHzA8fwGHQRuQBlPq3ikLqhM6pzp82UZl+2HxQ=)
2: egh2jlJ3EvVVoKqsyyD80-m512Q.roa (hash: RHu71nLbKp8lHX4W0lV6aHdUtImYmFlIXsjzf9wXMgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl
rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:3d:f7:a6:17:41:13:ad:71:26:0a:6c:43:7e:32:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06097a72e4ae40b6b9929b72f81efd71c517dd98
Validity
Not Before: Apr 27 14:00:37 2026 GMT
Not After : Apr 28 14:00:37 2026 GMT
Subject: CN=736396b3e6a7485280c2009af620850068a42083
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:9f:60:73:9c:ef:d1:1b:10:93:93:c6:c6:79:
c4:c8:92:b9:98:17:f0:71:12:7d:2e:a6:fa:d6:f4:
c3:56:fd:ee:aa:dd:ce:81:66:c5:39:c4:fe:ef:e5:
b5:cf:19:83:13:e3:f2:c2:b6:db:29:59:60:be:a0:
b5:85:bf:93:7c:e8:c3:b8:ea:31:a0:10:b0:4d:5c:
40:73:79:59:da:86:f5:de:4b:ea:44:62:1e:bf:ac:
e8:9a:ab:18:5e:f8:9c:46:1d:27:36:59:2c:95:32:
38:1f:d7:f1:c6:96:82:e5:63:d5:74:89:5f:f2:6c:
d2:cc:35:a0:2f:c7:2d:ad:c4:ee:bf:38:b5:1f:7f:
82:18:7f:99:95:79:38:de:6c:80:95:88:40:6d:c8:
b1:2e:9c:97:d8:81:da:51:34:6c:5a:6d:50:d2:89:
b3:e7:3a:f0:4e:a9:3b:79:4e:5e:b6:f2:d2:c0:4e:
df:1f:2b:88:fc:e8:cb:f8:61:b3:9e:93:12:2a:4a:
3b:0c:47:e4:c7:60:37:d1:d1:e7:84:b1:ca:2e:8a:
90:b8:1f:4c:61:e8:db:7b:c4:b0:9d:64:a6:5b:4b:
69:ef:8c:a7:e7:6b:73:5c:e8:b6:88:e3:5b:3e:bd:
83:b1:aa:47:02:a9:65:58:db:72:9d:4f:24:ab:c9:
d9:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:63:96:B3:E6:A7:48:52:80:C2:00:9A:F6:20:85:00:68:A4:20:83
X509v3 Authority Key Identifier:
keyid:06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:23:4f:6a:97:9e:df:c9:52:8c:d5:be:29:e8:b1:48:de:84:
ae:e5:59:94:10:03:2e:62:3f:37:b3:b6:d4:bf:88:02:6d:24:
62:cc:e7:76:3f:4b:8f:e1:5a:4d:da:55:15:5b:a3:0c:26:d9:
d6:49:b9:1d:38:40:41:e3:23:65:40:ba:5f:7f:50:42:a8:28:
a3:41:cc:c2:8e:7e:af:67:6a:c6:a6:90:67:cf:8d:f6:9f:58:
15:e3:9b:d2:35:ee:ce:c5:b7:58:7e:e4:89:e9:74:82:63:14:
4f:9d:1a:0d:f4:08:c7:99:1b:71:d5:a2:42:75:ac:13:f6:12:
f0:3d:d1:9c:6f:8c:c7:03:42:39:ec:c3:ff:a5:d6:6f:a9:e5:
8b:10:44:dd:ad:d0:ef:61:0d:14:d5:0d:d8:9c:28:67:43:fe:
10:94:27:ee:35:da:82:b1:64:cb:60:82:45:84:01:65:67:af:
05:02:83:32:f2:48:7a:bc:5e:68:21:fa:43:09:02:39:79:9d:
1e:3c:2c:ff:fd:7d:c6:93:ed:80:ac:35:e2:e3:93:b2:c4:80:
45:4d:62:bb:b5:9f:0e:9c:54:35:1d:6e:4f:66:c3:96:8d:2a:
c9:fb:af:aa:3e:0f:5c:85:31:1d:1c:c0:ea:37:9c:80:66:a0:
6f:e1:d8:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 18:25:17 2026 by rpki-client