Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
File: BgOecctxUgSoPMJTgi3CmmLHmeY.mft (raw, json)
Hash identifier: wmRExGs0XwkHaSDKyfbUIogXbouJ3yAYs5rj1M+GU2U=
Subject key identifier: A8:AB:AB:A6:20:0E:08:33:72:DE:EC:03:04:A1:BB:A7:2F:21:49:9C
Authority key identifier: 06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6
Certificate issuer: /CN=06039e71cb715204a83cc253822dc29a62c799e6
Certificate serial: 019E30E075CD853873D634B45CEDD5733D0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
Manifest number: 0A21
Signing time: Sat 16 May 2026 13:01:17 +0000
Manifest this update: Sat 16 May 2026 13:01:17 +0000
Manifest next update: Sun 17 May 2026 13:01:17 +0000
Files and hashes: 1: BgOecctxUgSoPMJTgi3CmmLHmeY.crl (hash: IwZfThZao0POC8r1VPOB1m4/jaA2pkllmYLj7TyUHIs=)
2: WsB2cpz5PeeV12FuRGXIMnfEpDA.roa (hash: RXGdsxXZdhMgqQg6njT8x//0fSXw5JT6Hs6Qaa1Fb6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:75:cd:85:38:73:d6:34:b4:5c:ed:d5:73:3d:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06039e71cb715204a83cc253822dc29a62c799e6
Validity
Not Before: May 16 13:01:17 2026 GMT
Not After : May 17 13:01:17 2026 GMT
Subject: CN=a8ababa6200e083372deec0304a1bba72f21499c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:ae:03:de:fc:38:6c:03:e7:f0:7d:13:4c:07:
8b:e9:97:cb:09:e5:2b:26:4a:7a:5e:16:c2:15:ab:
17:f0:03:12:fe:c2:9f:ba:33:c9:6e:48:dd:50:fb:
ef:9a:2b:43:5b:75:24:5d:e2:84:c3:94:1e:3b:b4:
96:dc:42:79:a9:55:9e:d0:56:dc:b9:02:51:1c:5b:
5b:93:8e:58:9d:4f:5a:fd:46:61:95:0f:f2:a2:7f:
18:53:e2:2a:74:fe:12:e9:5f:fe:59:c6:e7:c9:41:
60:dd:15:8c:18:50:ac:8b:e4:c2:e5:b0:9b:22:89:
81:67:09:33:5e:db:51:21:2c:46:df:33:93:a4:77:
44:60:32:36:86:87:9e:93:74:b6:32:a6:f6:93:27:
1a:0a:88:a5:34:13:97:36:50:06:3e:3f:ae:31:9d:
a1:80:1f:7b:9a:87:46:51:d2:c2:35:b1:1e:20:ee:
6f:72:b3:f9:0b:6c:3e:17:d1:03:01:ef:e4:e9:63:
33:29:be:9a:89:bd:e0:b9:68:ea:79:e3:4e:96:18:
7e:78:ac:6c:8e:0b:11:4c:76:f4:87:e0:9e:04:4c:
e1:da:19:5b:db:1e:78:7d:d4:f9:60:b4:bc:30:54:
fb:38:91:b4:3a:05:0d:dd:e4:e1:0a:4e:d9:eb:0f:
21:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:AB:AB:A6:20:0E:08:33:72:DE:EC:03:04:A1:BB:A7:2F:21:49:9C
X509v3 Authority Key Identifier:
keyid:06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:9c:a7:fb:36:80:c2:8d:f3:6d:a5:8f:8c:3a:a6:25:f1:e3:
9f:87:c2:20:6b:e4:c5:78:d0:6c:f2:15:14:fc:50:bf:43:6d:
d0:3a:26:56:22:2e:57:22:57:78:a4:c2:87:4f:2f:75:91:91:
2d:96:0f:20:eb:38:9d:37:f8:3a:9d:7e:c4:89:bb:57:84:a5:
5a:2e:03:bc:d9:78:26:c7:4d:36:bb:1a:11:39:7b:c3:ed:5c:
5b:bf:d5:4f:ed:d8:3d:ad:80:99:90:f2:7e:52:b5:25:8d:e1:
b9:8e:a2:53:b0:dc:b3:c8:8c:1c:ce:8e:9e:ea:76:99:e1:9c:
98:b8:df:02:d0:26:05:12:e1:65:14:ac:71:b1:63:48:77:2f:
e3:65:b4:fa:d4:92:fc:cb:14:70:3c:da:70:32:4b:4e:1f:f9:
9e:8f:1b:88:44:13:82:52:7a:68:64:55:23:4d:7a:54:78:c9:
2f:79:bb:ac:6f:32:17:2c:1d:e0:bc:7d:8e:f6:18:37:b5:ec:
43:aa:5a:a8:58:7e:2a:3e:1d:4d:ee:f4:b3:22:6e:a2:fe:29:
3b:59:7c:1d:04:a2:f0:51:9a:9d:76:95:b4:fa:43:11:53:e3:
c2:23:a9:76:bf:53:81:14:5b:af:93:ae:0a:8e:74:ac:90:98:
62:7a:4f:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4HXNhThz1jS0XO3Vcz0KMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2MDM5ZTcxY2I3MTUyMDRhODNjYzI1MzgyMmRjMjlhNjJj
Nzk5ZTYwHhcNMjYwNTE2MTMwMTE3WhcNMjYwNTE3MTMwMTE3WjAzMTEwLwYDVQQD
EyhhOGFiYWJhNjIwMGUwODMzNzJkZWVjMDMwNGExYmJhNzJmMjE0OTljMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwK4D3vw4bAPn8H0TTAeL6ZfLCeUr
Jkp6XhbCFasX8AMS/sKfujPJbkjdUPvvmitDW3UkXeKEw5QeO7SW3EJ5qVWe0Fbc
uQJRHFtbk45YnU9a/UZhlQ/yon8YU+IqdP4S6V/+WcbnyUFg3RWMGFCsi+TC5bCb
IomBZwkzXttRISxG3zOTpHdEYDI2hoeek3S2Mqb2kycaCoilNBOXNlAGPj+uMZ2h
gB97modGUdLCNbEeIO5vcrP5C2w+F9EDAe/k6WMzKb6aib3guWjqeeNOlhh+eKxs
jgsRTHb0h+CeBEzh2hlb2x54fdT5YLS8MFT7OJG0OgUN3eThCk7Z6w8h7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKirq6YgDggzct7sAwShu6cvIUmcMB8GA1UdIwQY
MBaAFAYDnnHLcVIEqDzCU4Itwppix5nmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9lNjI4NzktMmM2OS00MGMzLWIxMTYt
MGU0Njg3NWQ0NWZkLzEvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi9lNjI4NzktMmM2OS00MGMzLWIxMTYtMGU0Njg3NWQ0NWZk
LzEvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACZyn+zaA
wo3zbaWPjDqmJfHjn4fCIGvkxXjQbPIVFPxQv0Nt0DomViIuVyJXeKTCh08vdZGR
LZYPIOs4nTf4Op1+xIm7V4SlWi4DvNl4JsdNNrsaETl7w+1cW7/VT+3YPa2AmZDy
flK1JY3huY6iU7Dcs8iMHM6Onup2meGcmLjfAtAmBRLhZRSscbFjSHcv42W0+tSS
/MsUcDzacDJLTh/5no8biEQTglJ6aGRVI016VHjJL3m7rG8yFywd4Lx9jvYYN7Xs
Q6paqFh+Kj4dTe70syJuov4pO1l8HQSi8FGanXaVtPpDEVPjwiOpdr9TgRRbr5Ou
Co50rJCYYnpPhg==
-----END CERTIFICATE-----
Generated at Sat May 16 15:37:29 2026 by rpki-client