Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
File: bzOv1B6gEvsoA8cnRSPI7D8mExE.mft (raw, json)
Hash identifier: bewgvf4Nuc1MOJyi+manaegEPlOfNWHxSDGssQ3jK24=
Subject key identifier: AB:DD:C7:C2:1C:0D:FC:DA:DE:2F:59:1D:E0:4E:51:EF:AF:A8:A7:89
Authority key identifier: 6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
Certificate issuer: /CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Certificate serial: 019CE66D955EDC620D00E94157AFEB3A3FAE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
Manifest number: 1865
Signing time: Fri 13 Mar 2026 09:01:07 +0000
Manifest this update: Fri 13 Mar 2026 09:01:07 +0000
Manifest next update: Sat 14 Mar 2026 09:01:07 +0000
Files and hashes: 1: 6QL-slvQFdh5mvAbIdNlA4MoLfE.roa (hash: xCB6LBupsekAKglg6eVWd5d4GZfCpoZMakFZRmJ0HsM=)
2: bzOv1B6gEvsoA8cnRSPI7D8mExE.crl (hash: 5BM/2kfCeeyf/yhXmEtZ9ObXGBHdruWuRxbP7aRrMTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:6d:95:5e:dc:62:0d:00:e9:41:57:af:eb:3a:3f:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6f33afd41ea012fb2803c7274523c8ec3f261311
Validity
Not Before: Mar 13 09:01:07 2026 GMT
Not After : Mar 14 09:01:07 2026 GMT
Subject: CN=abddc7c21c0dfcdade2f591de04e51efafa8a789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:c3:1d:15:d6:6a:58:c3:db:b4:f6:3e:14:07:
ca:4a:47:99:cb:9a:02:19:c8:21:22:0b:84:0d:04:
de:bc:75:c3:ba:79:7f:c0:80:8d:8e:89:c9:fd:36:
e0:f0:7e:38:c2:06:7d:12:2b:a7:af:ac:f9:07:49:
49:65:89:0b:cb:d6:15:69:fb:09:ec:d8:0e:2f:16:
20:8d:ff:aa:8f:99:0c:a5:1a:06:f8:84:ad:a7:00:
87:76:16:75:1e:42:48:cc:e2:1a:7a:a9:f9:03:b2:
72:f2:b7:53:a9:f8:64:21:34:c3:fe:db:6e:88:4d:
6a:b8:a9:b9:5a:84:c4:f4:e5:de:33:aa:8b:28:81:
d1:27:f5:d4:c8:20:de:65:fb:51:b4:06:79:f0:b8:
a9:4e:11:71:f4:94:f4:43:b0:66:0c:b6:a5:dd:a4:
93:6d:17:87:9c:81:68:54:44:82:43:9d:18:7e:6d:
81:56:ca:3d:22:58:8b:69:79:98:68:09:c8:fd:7f:
4a:84:80:1c:9a:e8:b1:5c:35:fa:48:27:8a:44:5f:
c9:01:12:a1:ec:fa:5f:2e:19:1a:28:af:91:2b:c5:
95:c4:63:f0:22:13:77:05:bb:21:ad:c8:f3:53:d1:
41:58:ce:47:58:6e:55:3d:9b:bc:d6:a3:f9:41:d7:
af:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:DD:C7:C2:1C:0D:FC:DA:DE:2F:59:1D:E0:4E:51:EF:AF:A8:A7:89
X509v3 Authority Key Identifier:
keyid:6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:3d:62:f9:90:bb:c7:96:f8:55:16:6a:bb:85:14:31:9f:fa:
a2:64:4d:a6:9b:dd:d6:0c:9d:a8:06:e6:7c:3d:33:12:43:8e:
82:12:87:e2:43:46:62:ac:4a:34:52:c8:26:fa:ff:69:81:47:
e5:07:b0:73:d0:d6:26:33:3e:0f:ab:ef:a4:96:bc:65:29:20:
fa:d8:0d:38:7b:4f:81:76:87:8c:9e:1a:e6:0f:df:6b:fd:56:
4f:9a:cb:3d:65:a3:35:d3:24:80:33:9e:60:fd:d7:4b:a0:17:
8c:0c:12:95:5b:60:ce:b3:b4:c9:fa:94:f2:aa:e7:e9:08:82:
75:d7:2a:89:68:e4:54:92:be:44:b7:4b:39:f1:05:a4:bc:e4:
c3:eb:4d:c6:30:fd:c8:b8:a4:45:9c:09:34:3b:99:da:7e:a8:
48:3a:37:29:2d:29:98:35:71:fe:bb:d1:d0:db:4e:bd:38:21:
bf:4f:ae:51:47:4d:9e:25:6b:c3:d4:1a:44:93:66:82:fa:44:
63:de:a5:d9:db:6c:f6:9c:63:a8:f1:e1:a8:c8:87:ec:57:8a:
53:28:4b:18:27:68:60:f6:ed:5b:ab:53:17:6e:40:81:79:02:
63:11:e6:64:9a:58:7d:0b:d6:69:b1:8a:64:39:02:75:d5:31:
8e:bf:26:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzmbZVe3GINAOlBV6/rOj+uMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZmMzNhZmQ0MWVhMDEyZmIyODAzYzcyNzQ1MjNjOGVjM2Yy
NjEzMTEwHhcNMjYwMzEzMDkwMTA3WhcNMjYwMzE0MDkwMTA3WjAzMTEwLwYDVQQD
EyhhYmRkYzdjMjFjMGRmY2RhZGUyZjU5MWRlMDRlNTFlZmFmYThhNzg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqcMdFdZqWMPbtPY+FAfKSkeZy5oC
GcghIguEDQTevHXDunl/wICNjonJ/Tbg8H44wgZ9Eiunr6z5B0lJZYkLy9YVafsJ
7NgOLxYgjf+qj5kMpRoG+IStpwCHdhZ1HkJIzOIaeqn5A7Jy8rdTqfhkITTD/ttu
iE1quKm5WoTE9OXeM6qLKIHRJ/XUyCDeZftRtAZ58LipThFx9JT0Q7BmDLal3aST
bReHnIFoVESCQ50Yfm2BVso9IliLaXmYaAnI/X9KhIAcmuixXDX6SCeKRF/JARKh
7PpfLhkaKK+RK8WVxGPwIhN3BbshrcjzU9FBWM5HWG5VPZu81qP5QdevJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKvdx8IcDfza3i9ZHeBOUe+vqKeJMB8GA1UdIwQY
MBaAFG8zr9QeoBL7KAPHJ0UjyOw/JhMRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS85ZWFmN2YtYWIwMC00MmIyLTljZTIt
YjM1ODA5OTRhM2IxLzEvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZS85ZWFmN2YtYWIwMC00MmIyLTljZTItYjM1ODA5OTRhM2Ix
LzEvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwD1i+ZC7
x5b4VRZqu4UUMZ/6omRNppvd1gydqAbmfD0zEkOOghKH4kNGYqxKNFLIJvr/aYFH
5Qewc9DWJjM+D6vvpJa8ZSkg+tgNOHtPgXaHjJ4a5g/fa/1WT5rLPWWjNdMkgDOe
YP3XS6AXjAwSlVtgzrO0yfqU8qrn6QiCddcqiWjkVJK+RLdLOfEFpLzkw+tNxjD9
yLikRZwJNDuZ2n6oSDo3KS0pmDVx/rvR0NtOvTghv0+uUUdNniVrw9QaRJNmgvpE
Y96l2dts9pxjqPHhqMiH7FeKUyhLGCdoYPbtW6tTF25AgXkCYxHmZJpYfQvWabGK
ZDkCddUxjr8msQ==
-----END CERTIFICATE-----
Generated at Fri Mar 13 17:25:44 2026 by rpki-client