Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
File: Bv170s3aV23AzQiOvm7mAZceEjQ.mft (raw, json)
Hash identifier: dJVosy1yO+H8C213eEVda6V4JAXlYQsNNPMAwFvAgwE=
Subject key identifier: AD:36:3C:5F:E2:71:48:B9:5F:19:65:EC:69:4F:1A:2F:F5:F9:EA:43
Authority key identifier: 06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34
Certificate issuer: /CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234
Certificate serial: 019E1D22F5D3D725734D44FE5A339CA45FDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
Manifest number: 10DC
Signing time: Tue 12 May 2026 17:01:30 +0000
Manifest this update: Tue 12 May 2026 17:01:30 +0000
Manifest next update: Wed 13 May 2026 17:01:30 +0000
Files and hashes: 1: Bv170s3aV23AzQiOvm7mAZceEjQ.crl (hash: 1MptUa2M9Q7jy8Srrwg5t9WaVEMEcZGqJcTZzGOmVv8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:22:f5:d3:d7:25:73:4d:44:fe:5a:33:9c:a4:5f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234
Validity
Not Before: May 12 17:01:30 2026 GMT
Not After : May 13 17:01:30 2026 GMT
Subject: CN=ad363c5fe27148b95f1965ec694f1a2ff5f9ea43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:09:4d:be:ae:ff:d0:f4:4b:ab:cc:a7:83:34:
3c:49:78:da:d8:10:1d:5d:52:43:1f:20:d4:45:1c:
b1:a1:40:a7:65:f0:7d:99:68:53:e8:9c:0b:9f:7c:
cb:ec:c3:f9:0f:ee:58:00:65:dc:55:11:85:c6:17:
fe:48:47:05:7d:42:fa:fd:93:58:83:3e:54:d8:f0:
0d:03:0f:c0:be:a7:3e:65:16:73:40:d9:4b:3c:e5:
c3:db:32:7a:bd:35:4b:19:66:46:5a:c3:19:2b:d7:
93:43:19:27:b8:03:e8:2e:b7:c8:70:d7:98:90:be:
26:38:3b:66:eb:c5:73:74:34:28:6c:05:21:16:2f:
79:b3:3b:d3:a5:cc:98:8c:24:6a:88:ff:cf:dd:57:
0f:e5:fe:8a:de:41:0c:56:bb:0e:12:d3:9f:05:60:
38:7d:d4:06:15:70:ec:34:3a:31:91:a5:1e:9a:e9:
a3:5c:1d:e0:3b:59:f1:1c:2e:dc:d1:90:be:ed:3e:
49:74:db:ad:32:53:b9:40:e6:9a:b4:4a:91:1c:33:
45:49:a1:3c:e1:61:d1:b8:be:24:ec:73:98:10:44:
22:26:c9:52:2f:1e:89:cb:65:a5:56:3e:13:8e:84:
2d:97:a5:89:3c:0a:68:40:d2:bc:ba:e9:9f:df:ca:
48:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:36:3C:5F:E2:71:48:B9:5F:19:65:EC:69:4F:1A:2F:F5:F9:EA:43
X509v3 Authority Key Identifier:
keyid:06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:c8:65:a7:c8:d3:f6:11:d0:e6:b8:42:e0:42:ad:9d:e9:90:
40:65:1f:4e:0b:ec:6f:ce:26:0c:ca:c3:3c:67:f3:4b:24:93:
8d:f5:97:b4:1a:2b:0b:e4:fc:5e:df:83:83:2e:f8:72:fe:ac:
06:5e:73:58:ff:71:c2:b4:5f:06:5d:cc:84:2d:39:d8:c5:78:
0a:29:7e:1a:c5:a7:f1:b4:7c:f8:83:0a:ec:c7:5e:7b:f8:be:
ae:08:f4:06:ad:e3:ce:a3:66:ab:c5:f6:2f:71:e0:e0:b5:e1:
51:e4:12:2c:2d:50:0c:ea:c5:53:be:33:f0:fc:e4:a5:2f:fc:
cc:76:80:8f:2d:2a:37:3b:d2:ba:f4:d1:cd:ed:7e:4e:3f:ca:
4a:46:04:d5:97:4b:8a:44:e0:d8:2e:de:57:f7:bf:85:ce:bc:
b7:f2:98:ac:ab:d3:4c:7d:bb:9d:08:00:04:3b:41:cc:59:a5:
5d:c0:28:d1:f7:59:7f:c8:20:b9:56:c9:0a:4a:f0:fe:ba:0b:
7c:e7:e6:b3:be:df:3a:ba:60:19:7a:84:94:c9:fb:85:59:7c:
96:6f:ac:42:33:b9:2c:33:5b:ed:5b:43:8c:92:3f:79:a2:d3:
55:2c:6d:a5:a3:81:90:50:5b:59:72:ab:3d:77:fb:57:01:c1:
c7:ea:d0:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dIvXT1yVzTUT+WjOcpF/aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2ZmQ3YmQyY2RkYTU3NmRjMGNkMDg4ZWJlNmVlNjAxOTcx
ZTEyMzQwHhcNMjYwNTEyMTcwMTMwWhcNMjYwNTEzMTcwMTMwWjAzMTEwLwYDVQQD
EyhhZDM2M2M1ZmUyNzE0OGI5NWYxOTY1ZWM2OTRmMWEyZmY1ZjllYTQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuglNvq7/0PRLq8yngzQ8SXja2BAd
XVJDHyDURRyxoUCnZfB9mWhT6JwLn3zL7MP5D+5YAGXcVRGFxhf+SEcFfUL6/ZNY
gz5U2PANAw/Avqc+ZRZzQNlLPOXD2zJ6vTVLGWZGWsMZK9eTQxknuAPoLrfIcNeY
kL4mODtm68VzdDQobAUhFi95szvTpcyYjCRqiP/P3VcP5f6K3kEMVrsOEtOfBWA4
fdQGFXDsNDoxkaUemumjXB3gO1nxHC7c0ZC+7T5JdNutMlO5QOaatEqRHDNFSaE8
4WHRuL4k7HOYEEQiJslSLx6Jy2WlVj4TjoQtl6WJPApoQNK8uumf38pIdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK02PF/icUi5Xxll7GlPGi/1+epDMB8GA1UdIwQY
MBaAFAb9e9LN2ldtwM0Ijr5u5gGXHhI0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnYxNzBzM2FWMjNBelFpT3ZtN21BWmNlRWpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC82MjBkZjEtMzRjYS00ZTU3LWIzZTEt
YjhkNGJiYTcwMjFlLzEvQnYxNzBzM2FWMjNBelFpT3ZtN21BWmNlRWpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yOC82MjBkZjEtMzRjYS00ZTU3LWIzZTEtYjhkNGJiYTcwMjFl
LzEvQnYxNzBzM2FWMjNBelFpT3ZtN21BWmNlRWpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAa8hlp8jT
9hHQ5rhC4EKtnemQQGUfTgvsb84mDMrDPGfzSySTjfWXtBorC+T8Xt+Dgy74cv6s
Bl5zWP9xwrRfBl3MhC052MV4Cil+GsWn8bR8+IMK7Mdee/i+rgj0Bq3jzqNmq8X2
L3Hg4LXhUeQSLC1QDOrFU74z8PzkpS/8zHaAjy0qNzvSuvTRze1+Tj/KSkYE1ZdL
ikTg2C7eV/e/hc68t/KYrKvTTH27nQgABDtBzFmlXcAo0fdZf8gguVbJCkrw/roL
fOfms77fOrpgGXqElMn7hVl8lm+sQjO5LDNb7VtDjJI/eaLTVSxtpaOBkFBbWXKr
PXf7VwHBx+rQ6w==
-----END CERTIFICATE-----
Generated at Tue May 12 21:25:58 2026 by rpki-client