Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
File: bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft (raw, json)
Hash identifier: ZD1MH0bdVFVmvJtG5YWAj+jytYNCbFo2qdlT+v5m/zc=
Subject key identifier: 5B:1F:57:B6:2C:32:63:6F:53:12:8D:72:10:22:B4:D8:0F:B0:45:0D
Authority key identifier: 6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
Certificate issuer: /CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Certificate serial: 019D29CEC81BF93547C2AFD2F3214DCB1DDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
Manifest number: 0639
Signing time: Thu 26 Mar 2026 11:01:50 +0000
Manifest this update: Thu 26 Mar 2026 11:01:50 +0000
Manifest next update: Fri 27 Mar 2026 11:01:50 +0000
Files and hashes: 1: N6W-eQiPRjqw3-6I_QmctyffMuY.roa (hash: Zu+HeLoruNEi/OX9srfF84zysLGJyEcbFNJHAud3tiU=)
2: bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl (hash: uEd4OZtxNpebJ22Zzjn65f8SPFKs2R8ewLMS6vOqCr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:c8:1b:f9:35:47:c2:af:d2:f3:21:4d:cb:1d:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e4428f7f17b19c15068cab939d377940e8d4c70
Validity
Not Before: Mar 26 11:01:50 2026 GMT
Not After : Mar 27 11:01:50 2026 GMT
Subject: CN=5b1f57b62c32636f53128d721022b4d80fb0450d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a3:26:ae:ee:af:6f:7c:7f:67:e8:f2:55:e1:
50:34:dd:a5:62:42:76:68:0a:e2:9c:ce:3e:bd:e3:
ef:96:9e:91:63:ad:61:10:f8:de:96:e6:4e:03:55:
34:94:76:c9:d1:71:80:7a:fa:c7:a6:5d:7b:df:e6:
d2:6f:30:c8:6d:15:c8:48:59:0e:ff:45:d0:44:f3:
3a:37:d1:ef:d6:2a:91:ae:1b:80:36:99:60:51:70:
32:d0:0d:34:e4:7d:de:60:c0:12:a1:10:fb:43:dd:
8c:2a:f4:fa:d8:67:1d:40:2e:6f:57:27:67:f7:d2:
f7:12:95:a9:10:15:ae:7b:d5:bb:ae:4b:8a:06:93:
36:0e:1c:37:c6:04:2d:ea:3b:43:bf:d7:77:5e:b1:
84:00:e9:23:0d:60:11:f0:67:42:be:cd:7b:c4:0e:
37:02:8e:fa:4b:b5:10:6b:1a:cb:fc:e2:be:37:2b:
9a:3b:54:4e:a1:7a:9e:28:81:97:fa:93:f7:9b:24:
da:e9:6c:91:df:ff:2f:93:38:3f:91:1f:56:47:c0:
9b:20:3a:59:23:36:e7:96:07:a1:39:ae:e0:7e:f2:
e2:80:91:96:27:64:8f:4c:9c:a6:ec:f9:fb:34:1c:
d9:00:f1:27:e5:fb:73:4d:81:1c:ca:56:7b:c0:58:
91:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:1F:57:B6:2C:32:63:6F:53:12:8D:72:10:22:B4:D8:0F:B0:45:0D
X509v3 Authority Key Identifier:
keyid:6E:44:28:F7:F1:7B:19:C1:50:68:CA:B9:39:D3:77:94:0E:8D:4C:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bkQo9_F7GcFQaMq5OdN3lA6NTHA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6cf5f4-3d60-41d7-ae1a-cbc331bfcdb2/1/bkQo9_F7GcFQaMq5OdN3lA6NTHA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:2f:ee:70:28:1b:05:2d:0b:be:3e:e6:ca:45:ca:c1:82:33:
f2:39:0b:a7:91:72:a9:f6:7f:7e:f0:7c:e0:c8:59:9d:e2:c6:
da:b9:f0:10:9b:fa:24:6a:0e:d2:fa:56:3b:ae:6c:79:27:1e:
68:5e:a5:9b:c1:3c:90:83:d0:58:ab:5e:e5:4a:d7:e2:43:14:
c9:11:09:6b:a9:5a:dc:ea:90:5f:7c:3e:af:9e:2d:5d:b9:46:
91:67:1a:2d:ca:0d:1a:c3:9c:5d:e8:14:d6:22:76:0b:31:59:
18:6c:29:bd:31:ba:4e:70:f6:ca:c4:b4:4a:da:e4:ed:80:92:
b8:b8:c2:99:23:a6:dc:9e:3f:eb:ff:a5:8b:27:62:5e:22:e9:
79:b3:0f:5f:74:1a:90:51:92:b2:b5:e0:0f:ca:eb:19:ba:14:
6a:5b:fd:0f:83:dd:43:cc:05:de:6e:bc:08:2a:8e:ae:d0:75:
47:a6:f2:5e:ee:71:07:17:52:20:99:b3:9b:33:b7:55:d7:af:
e6:7f:64:69:0e:aa:31:20:98:9c:db:29:6f:09:33:e0:ae:35:
f9:43:32:f8:21:9a:b6:ea:19:7e:d2:72:e5:94:6a:2d:1f:85:
a7:02:63:02:6e:ef:08:72:d7:21:59:2a:64:1d:b0:2d:84:8a:
0c:9c:3f:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pzsgb+TVHwq/S8yFNyx3aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlNDQyOGY3ZjE3YjE5YzE1MDY4Y2FiOTM5ZDM3Nzk0MGU4
ZDRjNzAwHhcNMjYwMzI2MTEwMTUwWhcNMjYwMzI3MTEwMTUwWjAzMTEwLwYDVQQD
Eyg1YjFmNTdiNjJjMzI2MzZmNTMxMjhkNzIxMDIyYjRkODBmYjA0NTBkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqMmru6vb3x/Z+jyVeFQNN2lYkJ2
aArinM4+vePvlp6RY61hEPjeluZOA1U0lHbJ0XGAevrHpl173+bSbzDIbRXISFkO
/0XQRPM6N9Hv1iqRrhuANplgUXAy0A005H3eYMASoRD7Q92MKvT62GcdQC5vVydn
99L3EpWpEBWue9W7rkuKBpM2Dhw3xgQt6jtDv9d3XrGEAOkjDWAR8GdCvs17xA43
Ao76S7UQaxrL/OK+NyuaO1ROoXqeKIGX+pP3myTa6WyR3/8vkzg/kR9WR8CbIDpZ
IzbnlgehOa7gfvLigJGWJ2SPTJym7Pn7NBzZAPEn5ftzTYEcylZ7wFiRGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFsfV7YsMmNvUxKNchAitNgPsEUNMB8GA1UdIwQY
MBaAFG5EKPfxexnBUGjKuTnTd5QOjUxwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82Y2Y1ZjQtM2Q2MC00MWQ3LWFlMWEt
Y2JjMzMxYmZjZGIyLzEvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNS82Y2Y1ZjQtM2Q2MC00MWQ3LWFlMWEtY2JjMzMxYmZjZGIy
LzEvYmtRbzlfRjdHY0ZRYU1xNU9kTjNsQTZOVEhBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAci/ucCgb
BS0Lvj7mykXKwYIz8jkLp5FyqfZ/fvB84MhZneLG2rnwEJv6JGoO0vpWO65seSce
aF6lm8E8kIPQWKte5UrX4kMUyREJa6la3OqQX3w+r54tXblGkWcaLcoNGsOcXegU
1iJ2CzFZGGwpvTG6TnD2ysS0Strk7YCSuLjCmSOm3J4/6/+liydiXiLpebMPX3Qa
kFGSsrXgD8rrGboUalv9D4PdQ8wF3m68CCqOrtB1R6byXu5xBxdSIJmzmzO3Vdev
5n9kaQ6qMSCYnNspbwkz4K41+UMy+CGatuoZftJy5ZRqLR+FpwJjAm7vCHLXIVkq
ZB2wLYSKDJw/pw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 15:16:02 2026 by rpki-client