Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json)
Hash identifier: apfALLH9pXi80tTej/8sTkoMosMJx7+Y8jTOSuA8aKw=
Subject key identifier: F2:9D:26:51:91:AD:62:04:3D:D0:5C:26:55:44:B5:48:3E:72:0B:8E
Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4
Certificate serial: 019D25F15A24D322824E7D03ED76732067D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
Manifest number: 155F
Signing time: Wed 25 Mar 2026 17:01:06 +0000
Manifest this update: Wed 25 Mar 2026 17:01:06 +0000
Manifest next update: Thu 26 Mar 2026 17:01:06 +0000
Files and hashes: 1: aCRE3gLyqKdnvA-j-2aLcuCjRwM.roa (hash: ynx5tfnKZJH99nxW03XgpU3cYgXZihD5CZxo4tNLmhI=)
2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: 5PXQ1Wc+b/0brt9Jcv/409Qv0tmUjk2ywGsi7bMH/lE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:5a:24:d3:22:82:4e:7d:03:ed:76:73:20:67:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4
Validity
Not Before: Mar 25 17:01:06 2026 GMT
Not After : Mar 26 17:01:06 2026 GMT
Subject: CN=f29d265191ad62043dd05c265544b5483e720b8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:fe:82:d6:6c:41:45:59:83:4c:9e:d9:21:8e:
df:b8:14:0d:bf:e3:b1:bc:5e:68:27:44:ad:a4:32:
7f:86:c8:f4:91:05:99:1f:c8:40:56:cc:77:1a:0d:
01:04:73:59:22:76:7e:27:2c:93:d5:2b:b1:7e:9d:
f0:25:5d:4d:07:61:3a:74:20:04:fb:70:6e:59:9a:
b3:0f:b2:1e:12:a6:3d:14:50:08:e5:92:aa:c5:c3:
44:01:66:87:b6:87:ce:45:84:40:ea:d3:5c:0e:85:
7d:7d:15:e3:23:fe:43:2b:56:3f:8a:c2:8b:31:ad:
cc:6e:63:72:08:df:c5:f4:80:b9:98:b9:f5:12:02:
f1:ba:92:c2:27:80:c3:9e:4d:66:a7:80:d9:1d:6e:
75:2d:e2:7b:86:96:34:f5:e9:60:3f:94:a0:85:b8:
65:c6:a2:9d:48:87:b8:9d:48:fb:ba:f5:27:d8:bd:
46:4d:c5:f4:9f:85:01:ab:25:c4:a3:75:54:32:14:
fe:ce:35:ce:46:fd:b7:18:59:5d:f9:c3:d3:f4:e4:
4a:10:8c:1b:a7:a8:d4:1a:48:ca:78:ac:c0:32:6f:
11:fe:a7:54:58:16:81:4b:53:5d:58:2f:20:f8:fa:
0c:75:d6:c8:b4:83:10:54:e3:2a:9b:72:23:49:9c:
9a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:9D:26:51:91:AD:62:04:3D:D0:5C:26:55:44:B5:48:3E:72:0B:8E
X509v3 Authority Key Identifier:
keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:8e:51:71:88:dd:15:07:3c:c4:91:bb:b8:f1:5c:44:67:f2:
30:f5:b8:e7:e0:c4:80:e7:fa:e4:44:1f:4e:d0:8f:42:3a:8d:
98:ef:91:a7:05:24:62:42:4c:47:2c:9e:d4:4b:4c:db:4c:4b:
aa:1d:4f:fc:2b:d0:ec:e6:31:f9:1a:f8:67:7f:b3:6a:3e:e9:
7f:53:a8:6e:f7:a2:d9:42:78:72:64:a3:46:56:5e:a7:44:f5:
0f:d2:c6:e0:5d:7e:cc:e2:43:94:8d:16:13:c2:68:d4:9d:ec:
32:e9:eb:36:0b:da:f4:fd:b9:67:b6:89:19:0f:d1:a6:99:cd:
41:4b:ac:35:5e:6f:85:48:64:fb:aa:02:54:d9:12:ed:9f:0b:
27:a5:e7:62:18:5e:8c:10:29:e7:17:ef:05:c2:3d:2f:19:e7:
0b:12:f1:33:6f:74:d5:e7:1f:25:69:b9:fe:21:2d:1f:34:12:
81:6e:33:34:a0:4a:d4:a7:73:65:aa:34:5e:6f:1b:d0:5f:8f:
fe:9b:37:13:d9:df:f9:b5:15:36:b0:1e:40:dc:34:c3:a2:e0:
66:d5:7f:da:90:47:2b:c6:3c:a3:64:04:7e:cc:85:99:07:1f:
ab:f8:b9:1c:f6:ec:42:fe:e1:6b:77:2a:f0:6f:cf:b6:a7:6d:
3a:d1:9c:ef
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0l8Vok0yKCTn0D7XZzIGfUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjNmY2MzkxMTM5NjM4Y2VmODMxODExNDEzMmNjZjI2ZTE2
N2QzYTQwHhcNMjYwMzI1MTcwMTA2WhcNMjYwMzI2MTcwMTA2WjAzMTEwLwYDVQQD
EyhmMjlkMjY1MTkxYWQ2MjA0M2RkMDVjMjY1NTQ0YjU0ODNlNzIwYjhlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkP6C1mxBRVmDTJ7ZIY7fuBQNv+Ox
vF5oJ0StpDJ/hsj0kQWZH8hAVsx3Gg0BBHNZInZ+JyyT1Suxfp3wJV1NB2E6dCAE
+3BuWZqzD7IeEqY9FFAI5ZKqxcNEAWaHtofORYRA6tNcDoV9fRXjI/5DK1Y/isKL
Ma3MbmNyCN/F9IC5mLn1EgLxupLCJ4DDnk1mp4DZHW51LeJ7hpY09elgP5Sghbhl
xqKdSIe4nUj7uvUn2L1GTcX0n4UBqyXEo3VUMhT+zjXORv23GFld+cPT9ORKEIwb
p6jUGkjKeKzAMm8R/qdUWBaBS1NdWC8g+PoMddbItIMQVOMqm3IjSZyaHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPKdJlGRrWIEPdBcJlVEtUg+cguOMB8GA1UdIwQY
MBaAFGxvY5ETljjO+DGBFBMszybhZ9OkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgt
MzRhZDFjODUzNTk5LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgtMzRhZDFjODUzNTk5
LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS45RcYjd
FQc8xJG7uPFcRGfyMPW45+DEgOf65EQfTtCPQjqNmO+RpwUkYkJMRyye1EtM20xL
qh1P/CvQ7OYx+Rr4Z3+zaj7pf1Oobvei2UJ4cmSjRlZep0T1D9LG4F1+zOJDlI0W
E8Jo1J3sMunrNgva9P25Z7aJGQ/RppnNQUusNV5vhUhk+6oCVNkS7Z8LJ6XnYhhe
jBAp5xfvBcI9LxnnCxLxM2901ecfJWm5/iEtHzQSgW4zNKBK1KdzZao0Xm8b0F+P
/ps3E9nf+bUVNrAeQNw0w6LgZtV/2pBHK8Y8o2QEfsyFmQcfq/i5HPbsQv7ha3cq
8G/PtqdtOtGc7w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 03:45:07 2026 by rpki-client