Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
File: BkwamGxZM6O5EIToo_8IBm05jhk.mft (raw, json)
Hash identifier: 4GAZFJnCtV+DRJbKTNzTQijgIiKRi4aL7Ps7QC8BdXI=
Subject key identifier: 03:D8:B4:3A:34:19:E6:0D:12:06:3F:20:4E:69:22:DD:BC:D4:5C:7E
Authority key identifier: 06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
Certificate issuer: /CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Certificate serial: 019D3865FF67EA4AB6955D8D61B1406AAE24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
Manifest number: 0C9F
Signing time: Sun 29 Mar 2026 07:01:41 +0000
Manifest this update: Sun 29 Mar 2026 07:01:41 +0000
Manifest next update: Mon 30 Mar 2026 07:01:41 +0000
Files and hashes: 1: BkwamGxZM6O5EIToo_8IBm05jhk.crl (hash: RP3u+27Ky4sJ1Umpsu51mkxfjZyGbyJAP3t1S7twqUo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:ff:67:ea:4a:b6:95:5d:8d:61:b1:40:6a:ae:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Validity
Not Before: Mar 29 07:01:41 2026 GMT
Not After : Mar 30 07:01:41 2026 GMT
Subject: CN=03d8b43a3419e60d12063f204e6922ddbcd45c7e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:85:62:40:8e:88:c5:3b:07:14:fd:92:93:e2:
ca:58:80:f2:8d:57:95:6a:5b:bf:53:2a:14:df:6f:
33:68:08:bb:cf:ac:b6:92:55:7d:f5:0f:df:e0:e4:
e4:27:ed:4b:96:d3:bc:cc:6b:19:3d:56:f5:4c:47:
82:45:60:0c:fb:55:aa:b5:65:56:af:9b:d8:75:09:
0f:4c:e1:15:65:20:a4:f8:03:f7:3b:4b:a8:4e:5a:
73:80:3e:32:14:ce:66:89:9e:9a:b5:e1:3e:24:3c:
b9:98:b7:04:2a:cf:36:2b:ce:ce:3a:c3:e1:f0:34:
8b:d9:f6:ae:36:dd:8d:92:68:09:5d:70:1b:67:9f:
c7:82:2e:c6:0e:7d:2a:c7:53:bc:d1:60:c5:9b:8a:
3d:b6:02:94:3e:5b:d5:5f:0b:68:8f:43:0f:3f:04:
2e:63:71:1c:b5:04:d8:84:cd:75:0e:ee:33:81:29:
a6:2a:69:61:f5:f9:4a:5d:07:1e:e4:cc:c0:de:5c:
db:63:50:84:48:e6:9a:04:6d:fe:f5:eb:3c:ff:3c:
d7:04:63:c3:fb:f3:c3:38:8a:79:99:0d:39:c3:3c:
4e:99:5c:c1:c7:ff:44:23:cb:ea:0e:54:0c:5c:25:
e3:b2:1f:46:06:62:18:7a:5d:c1:49:10:11:2c:c7:
07:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:D8:B4:3A:34:19:E6:0D:12:06:3F:20:4E:69:22:DD:BC:D4:5C:7E
X509v3 Authority Key Identifier:
keyid:06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:1a:42:75:40:fd:6b:5a:98:c7:6d:01:4e:ad:f2:41:d6:d2:
20:c7:13:ee:e6:3b:29:77:ee:a5:da:80:0a:c0:02:4d:f8:88:
50:bc:40:b7:4b:27:a2:14:f4:40:2f:a1:b8:c8:a7:cf:48:30:
55:28:70:35:88:6b:e2:74:37:16:53:c0:e4:11:da:b4:1a:2c:
fe:cb:4e:c4:73:d1:91:94:66:9c:b5:9c:33:bb:b1:ff:6c:0a:
2e:ea:9e:91:f7:4d:3e:17:1d:9f:ea:fe:7c:7f:15:ef:82:27:
62:0b:e2:84:d1:91:8b:a7:d0:de:20:31:9d:ec:f2:83:8b:1a:
24:06:51:2b:7f:31:ba:c9:dc:40:c3:0d:bb:65:4c:56:3f:de:
88:01:53:ac:f0:06:c1:f5:2d:e7:c1:80:21:62:81:f3:dc:ab:
22:b2:45:2b:a9:c6:91:90:e5:6c:bc:14:9e:68:f5:d6:14:8c:
bf:af:3e:7c:93:f2:a6:1f:f8:18:12:b9:53:a6:f0:f4:6a:b2:
e2:ea:77:10:aa:94:7b:dd:e0:8c:bd:b4:3c:03:02:e8:02:f7:
c4:f7:1e:17:91:7c:51:d1:ba:11:d1:70:4e:14:82:4d:6c:ba:
52:d4:95:4c:22:f5:55:bf:e4:6a:69:27:6d:a4:ec:a3:e6:82:
f1:58:6c:05
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04Zf9n6kq2lV2NYbFAaq4kMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NGMxYTk4NmM1OTMzYTNiOTEwODRlOGEzZmYwODA2NmQz
OThlMTkwHhcNMjYwMzI5MDcwMTQxWhcNMjYwMzMwMDcwMTQxWjAzMTEwLwYDVQQD
EygwM2Q4YjQzYTM0MTllNjBkMTIwNjNmMjA0ZTY5MjJkZGJjZDQ1YzdlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYViQI6IxTsHFP2Sk+LKWIDyjVeV
alu/UyoU328zaAi7z6y2klV99Q/f4OTkJ+1LltO8zGsZPVb1TEeCRWAM+1WqtWVW
r5vYdQkPTOEVZSCk+AP3O0uoTlpzgD4yFM5miZ6ateE+JDy5mLcEKs82K87OOsPh
8DSL2fauNt2NkmgJXXAbZ5/Hgi7GDn0qx1O80WDFm4o9tgKUPlvVXwtoj0MPPwQu
Y3EctQTYhM11Du4zgSmmKmlh9flKXQce5MzA3lzbY1CESOaaBG3+9es8/zzXBGPD
+/PDOIp5mQ05wzxOmVzBx/9EI8vqDlQMXCXjsh9GBmIYel3BSRARLMcHCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAPYtDo0GeYNEgY/IE5pIt281Fx+MB8GA1UdIwQY
MBaAFAZMGphsWTOjuRCE6KP/CAZtOY4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9mNjI1NTItMTRmMS00OTljLWFmNzgt
N2Y2YTY1NWZkNzg4LzEvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9mNjI1NTItMTRmMS00OTljLWFmNzgtN2Y2YTY1NWZkNzg4
LzEvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZRpCdUD9
a1qYx20BTq3yQdbSIMcT7uY7KXfupdqACsACTfiIULxAt0snohT0QC+huMinz0gw
VShwNYhr4nQ3FlPA5BHatBos/stOxHPRkZRmnLWcM7ux/2wKLuqekfdNPhcdn+r+
fH8V74InYgvihNGRi6fQ3iAxnezyg4saJAZRK38xusncQMMNu2VMVj/eiAFTrPAG
wfUt58GAIWKB89yrIrJFK6nGkZDlbLwUnmj11hSMv68+fJPyph/4GBK5U6bw9Gqy
4up3EKqUe93gjL20PAMC6AL3xPceF5F8UdG6EdFwThSCTWy6UtSVTCL1Vb/kamkn
baTso+aC8VhsBQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 13:49:00 2026 by rpki-client