Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
File: kBewvZCCfeCNJP72G8xEhiAkv34.mft (raw, json)
Hash identifier: m3TPx+Y/GSukZrg1F6MtJV8FjNynxPVTJDCBX0wt7FI=
Subject key identifier: 6D:05:7B:99:30:6E:E5:79:0A:4C:05:20:62:7B:4B:6A:4F:90:60:1D
Authority key identifier: 90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
Certificate issuer: /CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Certificate serial: 019D28BB61EA1C1693E0A138C07CDE592F80
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
Manifest number: 0F1C
Signing time: Thu 26 Mar 2026 06:01:01 +0000
Manifest this update: Thu 26 Mar 2026 06:01:01 +0000
Manifest next update: Fri 27 Mar 2026 06:01:01 +0000
Files and hashes: 1: kBewvZCCfeCNJP72G8xEhiAkv34.crl (hash: Pbe39l90VrHk5l0YlGMs80AEDwB34/o0FC9o43nnQxg=)
2: uocAhhBHBra0ODge7OOLK9aTFIc.roa (hash: oBpQMaQKW9QFUbGv72QiYqlRk6w8Opo+61BD41Uub2I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:61:ea:1c:16:93:e0:a1:38:c0:7c:de:59:2f:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9017b0bd90827de08d24fef61bcc44862024bf7e
Validity
Not Before: Mar 26 06:01:01 2026 GMT
Not After : Mar 27 06:01:01 2026 GMT
Subject: CN=6d057b99306ee5790a4c0520627b4b6a4f90601d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:f4:b7:8d:0c:38:14:5e:43:1c:9a:d7:b8:5f:
8e:f0:fe:91:42:c3:db:7d:4a:aa:1e:88:a3:d9:5d:
92:d6:2e:cc:70:5b:84:33:55:27:9d:31:87:b9:27:
91:d6:2e:2a:75:6f:66:92:59:53:1b:25:07:56:bc:
30:be:68:a8:d1:ce:2b:ee:98:5d:76:1a:9e:98:55:
ef:80:6a:86:74:16:df:ce:f1:30:64:5a:06:df:65:
18:74:22:0a:83:e8:56:6c:53:1d:8d:3f:93:8b:4c:
67:b4:1a:e7:15:d5:e9:fa:68:e6:46:a0:08:9a:9a:
5a:4f:c6:f6:58:e3:84:da:e0:90:c0:a0:da:e9:3e:
aa:5d:91:43:f2:74:1a:8f:d9:1e:31:70:c8:23:ee:
2c:6a:96:91:b4:1f:13:93:4e:cb:95:3e:14:72:81:
fc:24:da:25:ca:89:37:97:22:c2:06:09:b3:7a:62:
a5:8a:62:fd:48:56:16:65:4b:53:e4:2a:c1:f8:7d:
10:9b:1b:ca:af:0e:13:b8:df:a4:26:3a:d3:c1:08:
f5:8e:6e:f2:53:14:2a:cb:58:59:d7:a2:d1:06:4f:
b5:58:f9:b1:dd:80:a6:41:9d:3d:8c:cb:1a:76:d4:
48:76:6e:4d:17:5d:64:0f:af:85:13:f2:2b:4d:ed:
63:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:05:7B:99:30:6E:E5:79:0A:4C:05:20:62:7B:4B:6A:4F:90:60:1D
X509v3 Authority Key Identifier:
keyid:90:17:B0:BD:90:82:7D:E0:8D:24:FE:F6:1B:CC:44:86:20:24:BF:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBewvZCCfeCNJP72G8xEhiAkv34.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/bb560a-4284-4fc0-b05d-a8be9932aa89/1/kBewvZCCfeCNJP72G8xEhiAkv34.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:26:90:37:b3:2b:67:f3:08:36:de:ec:66:41:5d:2a:97:08:
ce:f7:fa:a0:34:de:b8:7b:79:fd:6a:f1:2c:f5:05:11:db:fa:
3a:92:f1:10:dc:81:e0:fe:89:7c:06:c2:81:a1:e2:60:7b:9d:
c9:8d:2d:bf:1d:c2:0d:d9:80:83:72:73:65:73:b7:0b:bc:58:
a1:ca:20:cf:c2:39:cf:9d:35:b4:47:c4:79:bf:69:6b:a3:3e:
14:71:b8:dd:11:cf:eb:c3:a2:eb:50:d5:32:a5:33:1d:f9:cb:
53:b0:7a:00:2a:ed:af:3f:d8:8d:23:37:5e:99:fb:60:47:43:
1a:eb:c1:4f:17:b3:d9:c1:67:01:f4:cb:fa:c3:29:1e:1a:b3:
0a:d1:d0:4f:e9:df:bb:52:da:b9:fc:ea:cf:c4:e3:f2:61:95:
f1:39:b4:ea:5f:fa:06:c7:0b:c1:ff:98:0b:0a:d8:87:c3:6d:
5e:cb:12:67:b1:64:f5:0d:31:88:93:25:97:d9:2d:2b:7e:96:
32:ef:f9:c3:cb:37:bd:59:1e:0c:56:3b:0b:ad:e2:9b:5b:f4:
35:0e:ab:fc:56:6f:5d:e6:95:73:a1:38:5d:69:31:83:2f:54:
06:7d:69:66:0a:d4:92:f6:07:c5:01:1a:ae:46:46:97:17:2c:
49:81:a9:4f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ou2HqHBaT4KE4wHzeWS+AMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwMTdiMGJkOTA4MjdkZTA4ZDI0ZmVmNjFiY2M0NDg2MjAy
NGJmN2UwHhcNMjYwMzI2MDYwMTAxWhcNMjYwMzI3MDYwMTAxWjAzMTEwLwYDVQQD
Eyg2ZDA1N2I5OTMwNmVlNTc5MGE0YzA1MjA2MjdiNGI2YTRmOTA2MDFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0fS3jQw4FF5DHJrXuF+O8P6RQsPb
fUqqHoij2V2S1i7McFuEM1UnnTGHuSeR1i4qdW9mkllTGyUHVrwwvmio0c4r7phd
dhqemFXvgGqGdBbfzvEwZFoG32UYdCIKg+hWbFMdjT+Ti0xntBrnFdXp+mjmRqAI
mppaT8b2WOOE2uCQwKDa6T6qXZFD8nQaj9keMXDII+4sapaRtB8Tk07LlT4UcoH8
JNolyok3lyLCBgmzemKlimL9SFYWZUtT5CrB+H0QmxvKrw4TuN+kJjrTwQj1jm7y
UxQqy1hZ16LRBk+1WPmx3YCmQZ09jMsadtRIdm5NF11kD6+FE/IrTe1jNwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG0Fe5kwbuV5CkwFIGJ7S2pPkGAdMB8GA1UdIwQY
MBaAFJAXsL2Qgn3gjST+9hvMRIYgJL9+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0Jld3ZaQ0NmZUNOSlA3Mkc4eEVoaUFrdjM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My9iYjU2MGEtNDI4NC00ZmMwLWIwNWQt
YThiZTk5MzJhYTg5LzEva0Jld3ZaQ0NmZUNOSlA3Mkc4eEVoaUFrdjM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84My9iYjU2MGEtNDI4NC00ZmMwLWIwNWQtYThiZTk5MzJhYTg5
LzEva0Jld3ZaQ0NmZUNOSlA3Mkc4eEVoaUFrdjM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACiaQN7Mr
Z/MINt7sZkFdKpcIzvf6oDTeuHt5/WrxLPUFEdv6OpLxENyB4P6JfAbCgaHiYHud
yY0tvx3CDdmAg3JzZXO3C7xYocogz8I5z501tEfEeb9pa6M+FHG43RHP68Oi61DV
MqUzHfnLU7B6ACrtrz/YjSM3Xpn7YEdDGuvBTxez2cFnAfTL+sMpHhqzCtHQT+nf
u1Laufzqz8Tj8mGV8Tm06l/6BscLwf+YCwrYh8NtXssSZ7Fk9Q0xiJMll9ktK36W
Mu/5w8s3vVkeDFY7C63im1v0NQ6r/FZvXeaVc6E4XWkxgy9UBn1pZgrUkvYHxQEa
rkZGlxcsSYGpTw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:29:23 2026 by rpki-client