Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
File: BmNp4nBctDPbBlirZm0ItnsVUdw.mft (raw, json)
Hash identifier: zxuGXZCXs2Cd0jGkJvTC9ZALbo0e09tvrAXHqxRBb2c=
Subject key identifier: FF:33:94:7E:F9:E9:1C:7D:DB:4F:ED:E4:3C:EB:B6:7D:0E:67:AF:D3
Authority key identifier: 06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC
Certificate issuer: /CN=066369e2705cb433db0658ab666d08b67b1551dc
Certificate serial: 019E1D90074B44615D1035C545A402F3F683
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
Manifest number: 182B
Signing time: Tue 12 May 2026 19:00:38 +0000
Manifest this update: Tue 12 May 2026 19:00:38 +0000
Manifest next update: Wed 13 May 2026 19:00:38 +0000
Files and hashes: 1: BmNp4nBctDPbBlirZm0ItnsVUdw.crl (hash: hEH/3pLvzd6fpsg6PdeGjnEM0t7/xtkNk9aZ3o/X/2w=)
2: M2182yhCWIp3Dr1q8N4Z80xWV3w.roa (hash: IY36SUnI5dTjS3K8jOcIn+WsAvHQBxCsJZS9oy5ygLI=)
3: jYy2uYNL4nb69qr5FWiz-y5I14g.roa (hash: uK2ZzVfws+izj4DF8qyLOr4woZd1HOHCjMW0FZXm+bY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl
rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:07:4b:44:61:5d:10:35:c5:45:a4:02:f3:f6:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=066369e2705cb433db0658ab666d08b67b1551dc
Validity
Not Before: May 12 19:00:38 2026 GMT
Not After : May 13 19:00:38 2026 GMT
Subject: CN=ff33947ef9e91c7ddb4fede43cebb67d0e67afd3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:b7:87:b6:4d:97:a8:70:ec:15:38:81:71:60:
0f:40:0d:de:26:a8:60:92:df:70:d4:81:40:c9:5c:
70:4e:74:5d:43:82:6c:5f:e0:0c:44:ba:e9:85:65:
ac:82:58:27:05:48:d8:15:ff:3c:f2:aa:79:85:3b:
d3:ad:a9:3d:a6:3c:b3:f2:eb:45:3b:8d:a8:df:b3:
6e:14:16:95:e6:64:7b:27:47:8a:ff:ee:c2:70:df:
35:6d:99:17:74:e8:f8:a5:f2:f5:ee:64:7b:4e:1e:
67:08:10:1b:d7:c5:c3:f6:25:48:b5:6c:da:88:d1:
ea:ca:13:16:9d:6a:62:f3:16:6f:bd:ad:99:34:e9:
11:d1:8c:21:8c:70:dd:e7:be:24:3b:8d:4c:7f:d6:
6c:78:ca:27:c0:ed:4c:57:df:e9:22:d1:ca:a4:c9:
24:9a:f5:e6:e0:27:6c:a4:ba:68:d2:d3:da:ea:63:
a0:db:b1:4f:1b:44:37:b7:d8:e4:e2:e6:6a:7c:2a:
a2:2b:c7:52:16:7e:05:c9:6e:42:bd:e9:43:8e:65:
71:11:4d:5d:a1:c6:57:5b:3a:1f:4f:ce:01:d4:50:
80:a6:e7:34:44:b9:66:ad:2a:0d:5e:9c:5c:5b:a6:
00:2a:9f:a8:2d:39:51:72:89:c1:d7:7b:38:fc:ec:
4f:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:33:94:7E:F9:E9:1C:7D:DB:4F:ED:E4:3C:EB:B6:7D:0E:67:AF:D3
X509v3 Authority Key Identifier:
keyid:06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:3b:29:33:f4:c0:29:90:42:60:3c:8b:9a:78:fb:65:01:17:
e5:9a:93:b9:8b:9c:0f:67:f1:bd:3e:f1:0e:bc:1b:a5:1c:e3:
4b:8f:af:fd:70:95:f3:80:5f:69:58:92:f5:72:bb:6d:0a:0e:
94:5a:71:32:45:80:2f:0f:aa:ea:de:e1:76:b4:74:02:0c:6e:
0b:81:49:dc:3f:62:c7:b4:57:45:6c:f9:b4:95:9a:48:7c:a8:
4f:ac:ab:81:ff:7f:9b:ef:87:0b:cf:14:30:ee:90:3c:4e:ab:
3a:ca:34:a9:5d:f4:23:31:75:69:72:a3:d7:27:99:8a:3a:15:
9a:d0:83:68:3f:b4:8b:b6:1d:2d:98:b8:00:3a:9a:2c:38:3e:
86:b9:78:3f:7a:f9:9d:4c:f7:dc:90:c6:42:ae:a6:77:78:78:
eb:ef:52:24:8c:f5:c9:85:61:9a:72:d9:ec:48:3b:22:1a:2b:
d6:b1:88:0b:9a:52:0d:05:74:c1:d8:12:ba:82:bc:a4:f6:16:
5c:9c:63:58:d4:5b:00:c3:2a:01:65:78:54:e2:ae:6f:d7:a4:
f9:67:ae:7f:46:b1:4f:c6:8c:81:fc:0c:60:54:75:a7:68:12:
d7:e2:1d:03:b6:15:ff:90:2b:ed:d1:e0:a0:6b:a3:d7:14:ef:
ea:3e:4d:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dkAdLRGFdEDXFRaQC8/aDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NjM2OWUyNzA1Y2I0MzNkYjA2NThhYjY2NmQwOGI2N2Ix
NTUxZGMwHhcNMjYwNTEyMTkwMDM4WhcNMjYwNTEzMTkwMDM4WjAzMTEwLwYDVQQD
EyhmZjMzOTQ3ZWY5ZTkxYzdkZGI0ZmVkZTQzY2ViYjY3ZDBlNjdhZmQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoreHtk2XqHDsFTiBcWAPQA3eJqhg
kt9w1IFAyVxwTnRdQ4JsX+AMRLrphWWsglgnBUjYFf888qp5hTvTrak9pjyz8utF
O42o37NuFBaV5mR7J0eK/+7CcN81bZkXdOj4pfL17mR7Th5nCBAb18XD9iVItWza
iNHqyhMWnWpi8xZvva2ZNOkR0YwhjHDd574kO41Mf9ZseMonwO1MV9/pItHKpMkk
mvXm4CdspLpo0tPa6mOg27FPG0Q3t9jk4uZqfCqiK8dSFn4FyW5CvelDjmVxEU1d
ocZXWzofT84B1FCApuc0RLlmrSoNXpxcW6YAKp+oLTlRconB13s4/OxPJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP8zlH756Rx920/t5Dzrtn0OZ6/TMB8GA1UdIwQY
MBaAFAZjaeJwXLQz2wZYq2ZtCLZ7FVHcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC82NGU0OWEtNWZlMS00NWMyLTgzMTAt
MzRhOWU5OGE1Zjg2LzEvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMC82NGU0OWEtNWZlMS00NWMyLTgzMTAtMzRhOWU5OGE1Zjg2
LzEvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABDspM/TA
KZBCYDyLmnj7ZQEX5ZqTuYucD2fxvT7xDrwbpRzjS4+v/XCV84BfaViS9XK7bQoO
lFpxMkWALw+q6t7hdrR0AgxuC4FJ3D9ix7RXRWz5tJWaSHyoT6yrgf9/m++HC88U
MO6QPE6rOso0qV30IzF1aXKj1yeZijoVmtCDaD+0i7YdLZi4ADqaLDg+hrl4P3r5
nUz33JDGQq6md3h46+9SJIz1yYVhmnLZ7Eg7Ihor1rGIC5pSDQV0wdgSuoK8pPYW
XJxjWNRbAMMqAWV4VOKub9ek+Weuf0axT8aMgfwMYFR1p2gS1+IdA7YV/5Ar7dHg
oGuj1xTv6j5N4g==
-----END CERTIFICATE-----
Generated at Wed May 13 01:34:03 2026 by rpki-client