Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json)
Hash identifier: 7Tuz2jGHWwE5qJ9HQMIF2N8iGzU5vlAZ1+QtI/9QApE=
Subject key identifier: BC:34:7F:93:1B:08:2F:9B:44:D8:BC:69:D6:6F:83:83:DA:23:26:D8
Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db
Certificate serial: 019E20C83833C9D9FFAA8D9EB27184D500A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
Manifest number: 04D6
Signing time: Wed 13 May 2026 10:00:52 +0000
Manifest this update: Wed 13 May 2026 10:00:52 +0000
Manifest next update: Thu 14 May 2026 10:00:52 +0000
Files and hashes: 1: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: yVM2ToIR7NXs1tqvDcEn55P7nDzViHVks2xpsdwSspE=)
2: IuMZcspQ8K2Rh1GaYKyW2FT1kL4.roa (hash: 9/0A8YPeaznPXiLNVP4FFOJdTd1wwZVGFqXuoC2dxWg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:c8:38:33:c9:d9:ff:aa:8d:9e:b2:71:84:d5:00:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db
Validity
Not Before: May 13 10:00:52 2026 GMT
Not After : May 14 10:00:52 2026 GMT
Subject: CN=bc347f931b082f9b44d8bc69d66f8383da2326d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:03:8f:98:12:37:f6:02:6a:fa:bc:f6:a0:1c:
d4:f2:b3:03:20:a9:c6:ca:4e:6e:36:f4:57:60:be:
2e:cc:bd:77:3b:d4:29:52:b8:e2:b9:c1:56:f8:79:
84:26:29:bf:e8:35:0f:9e:a7:54:1c:8c:f3:94:0e:
d1:1a:f1:9c:5a:12:ba:d1:1f:f5:b2:17:55:fc:55:
db:7d:e9:cd:f1:cc:88:db:20:b2:75:5b:24:47:f0:
91:ec:78:a4:03:c1:ae:15:dd:09:35:42:42:d5:01:
7e:bf:02:91:c0:ce:30:42:85:82:c1:3e:9a:97:af:
aa:d3:19:36:36:3b:07:f6:38:d2:ac:44:3f:09:bf:
2f:b9:fb:5f:69:98:05:9b:4d:c3:8e:10:c2:f0:6e:
32:8e:ce:2d:3a:ba:ec:ea:aa:d4:2f:5e:1c:40:e6:
e5:7f:d9:f2:00:6e:f6:27:59:ea:a0:1f:6b:85:da:
e8:c7:98:2f:d8:23:6f:9b:a4:10:49:ca:fa:36:94:
2f:bb:bd:83:03:ce:cc:a4:93:94:db:ed:24:9d:46:
e2:57:98:54:64:b9:08:79:a6:d9:c3:04:47:20:16:
73:b6:0f:93:95:9b:6d:65:90:3d:1b:c4:84:84:4b:
8d:32:26:4b:5c:d3:03:22:99:fe:18:ce:68:cf:cf:
0c:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:34:7F:93:1B:08:2F:9B:44:D8:BC:69:D6:6F:83:83:DA:23:26:D8
X509v3 Authority Key Identifier:
keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:41:95:3b:22:8b:04:fd:d3:c8:fc:b1:d4:0b:1e:8c:9c:7d:
96:f9:ce:af:5f:0b:c3:e4:aa:55:32:a4:be:a9:1d:fc:f8:ed:
b1:07:80:0e:35:e3:e2:da:02:07:e9:39:1d:e6:6a:71:04:33:
44:3b:d9:82:8a:b6:d7:7a:80:1d:f5:db:91:ff:fd:f9:78:b3:
97:98:5e:f9:62:a9:15:82:a2:9c:40:66:7e:84:92:b5:24:87:
fc:67:f9:38:f0:d9:da:bd:ae:60:6d:88:a0:75:a4:19:ac:82:
ac:7b:18:14:f7:1b:7a:35:b0:58:03:78:3f:ec:eb:e3:f7:60:
a5:12:7f:98:1c:c3:40:cd:cd:1b:1a:6b:84:20:fe:0d:27:72:
a1:1e:ee:02:fa:ca:65:14:ab:39:10:c6:fd:9d:f3:ed:40:ba:
8d:c7:8a:5f:02:79:e8:80:08:21:a6:4e:02:8b:7f:b4:39:fd:
ba:b1:40:e2:fa:40:f5:a3:4c:d6:8e:75:1b:d5:8b:cc:7f:2a:
56:87:f3:0f:7b:7b:1a:37:df:c9:c9:c8:e9:1c:84:3c:0e:27:
b7:01:49:89:f8:38:14:e4:89:bb:c4:92:80:9f:86:2d:f7:85:
7e:74:ca:89:5d:e0:36:c1:f5:41:b6:93:3b:b1:ff:6c:1b:86:
eb:35:2d:0f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4gyDgzydn/qo2esnGE1QCnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NjU2YzVhZDk3MzgzNzJkNTRjMDM3ZTM5N2YzNWJlOWFh
OTI0ZGIwHhcNMjYwNTEzMTAwMDUyWhcNMjYwNTE0MTAwMDUyWjAzMTEwLwYDVQQD
EyhiYzM0N2Y5MzFiMDgyZjliNDRkOGJjNjlkNjZmODM4M2RhMjMyNmQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8wOPmBI39gJq+rz2oBzU8rMDIKnG
yk5uNvRXYL4uzL13O9QpUrjiucFW+HmEJim/6DUPnqdUHIzzlA7RGvGcWhK60R/1
shdV/FXbfenN8cyI2yCydVskR/CR7HikA8GuFd0JNUJC1QF+vwKRwM4wQoWCwT6a
l6+q0xk2NjsH9jjSrEQ/Cb8vuftfaZgFm03DjhDC8G4yjs4tOrrs6qrUL14cQObl
f9nyAG72J1nqoB9rhdrox5gv2CNvm6QQScr6NpQvu72DA87MpJOU2+0knUbiV5hU
ZLkIeabZwwRHIBZztg+TlZttZZA9G8SEhEuNMiZLXNMDIpn+GM5oz88MjQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLw0f5MbCC+bRNi8adZvg4PaIybYMB8GA1UdIwQY
MBaAFAZlbFrZc4Ny1UwDfjl/Nb6aqSTbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMt
OGIwNzYyNTZmMzlkLzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMtOGIwNzYyNTZmMzlk
LzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATEGVOyKL
BP3TyPyx1AsejJx9lvnOr18Lw+SqVTKkvqkd/PjtsQeADjXj4toCB+k5HeZqcQQz
RDvZgoq213qAHfXbkf/9+Xizl5he+WKpFYKinEBmfoSStSSH/Gf5OPDZ2r2uYG2I
oHWkGayCrHsYFPcbejWwWAN4P+zr4/dgpRJ/mBzDQM3NGxprhCD+DSdyoR7uAvrK
ZRSrORDG/Z3z7UC6jceKXwJ56IAIIaZOAot/tDn9urFA4vpA9aNM1o51G9WLzH8q
VofzD3t7GjffycnI6RyEPA4ntwFJifg4FOSJu8SSgJ+GLfeFfnTKiV3gNsH1QbaT
O7H/bBuG6zUtDw==
-----END CERTIFICATE-----
Generated at Wed May 13 13:18:18 2026 by rpki-client