Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.mft
File: BbzEhnSas6uATPEZjL9XWoQFqNQ.mft (raw, json)
Hash identifier: OblKfZZacow25rsX1xD+9CdyqARkbRo0RZTTfPNciOY=
Subject key identifier: 40:A3:E2:56:F7:C6:8F:B2:A4:84:4C:71:0E:D2:19:91:23:94:C4:94
Authority key identifier: 05:BC:C4:86:74:9A:B3:AB:80:4C:F1:19:8C:BF:57:5A:84:05:A8:D4
Certificate issuer: /CN=05bcc486749ab3ab804cf1198cbf575a8405a8d4
Certificate serial: 019E1D90B0D170C3F45F5870F17A5D6BC7A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BbzEhnSas6uATPEZjL9XWoQFqNQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.mft
Manifest number: 0D6A
Signing time: Tue 12 May 2026 19:01:22 +0000
Manifest this update: Tue 12 May 2026 19:01:22 +0000
Manifest next update: Wed 13 May 2026 19:01:22 +0000
Files and hashes: 1: BbzEhnSas6uATPEZjL9XWoQFqNQ.crl (hash: yXl2j0MdkIQu3GK1FNUgoKLbB0pvTsvrv8DlUlHTUVs=)
2: g9ARekBVcGhcdV1yDxzPFfg3FSA.roa (hash: CrdyMkeoZOTfj+RdiOHlPBQWgx83YTO1C282t0kyBq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/BbzEhnSas6uATPEZjL9XWoQFqNQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:b0:d1:70:c3:f4:5f:58:70:f1:7a:5d:6b:c7:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=05bcc486749ab3ab804cf1198cbf575a8405a8d4
Validity
Not Before: May 12 19:01:22 2026 GMT
Not After : May 13 19:01:22 2026 GMT
Subject: CN=40a3e256f7c68fb2a4844c710ed219912394c494
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9f:36:e4:eb:0d:fc:7d:98:19:c5:a9:9d:3d:
ea:53:ae:5d:41:4b:65:48:e6:43:a8:ec:12:87:b7:
07:45:a7:08:ab:94:ce:cf:33:c6:0f:47:4f:1c:50:
5b:36:34:a0:b0:9c:f3:f2:12:36:f6:24:4e:ea:0d:
09:8b:f2:92:0f:2a:bd:14:71:1b:a3:d4:c7:68:07:
57:b1:02:07:0d:44:b5:76:34:53:2d:35:af:86:b5:
e5:39:c1:33:cc:cf:ea:00:bb:69:ec:fc:e6:ad:bd:
ff:01:18:72:36:b9:d9:eb:8e:c9:14:1f:69:85:33:
fc:9f:19:80:9a:e8:7b:8c:20:40:c5:d7:33:e0:f9:
76:9b:58:0e:6f:e4:39:d7:65:50:4a:15:16:27:b7:
63:c4:03:05:6b:8d:df:b9:1a:6d:b3:9a:9a:cf:6f:
7d:28:bd:c8:d2:a4:01:e3:ff:09:cc:23:e1:c4:92:
c9:7a:86:df:e6:f0:20:55:e5:18:0f:f2:16:de:90:
3e:a8:88:ca:d0:56:50:43:8a:bd:20:ec:a6:7b:f4:
eb:08:53:37:e6:5a:42:fc:e3:78:47:c3:24:2e:38:
2d:df:9a:ed:31:f7:e6:ed:14:44:f5:08:fb:b9:a9:
24:16:f9:06:03:42:be:39:66:33:c5:e1:ba:da:77:
e7:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:A3:E2:56:F7:C6:8F:B2:A4:84:4C:71:0E:D2:19:91:23:94:C4:94
X509v3 Authority Key Identifier:
keyid:05:BC:C4:86:74:9A:B3:AB:80:4C:F1:19:8C:BF:57:5A:84:05:A8:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BbzEhnSas6uATPEZjL9XWoQFqNQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/535a67-f540-4f14-ad11-7f699a83bb0c/1/BbzEhnSas6uATPEZjL9XWoQFqNQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:16:e0:bd:d3:61:af:b1:74:2d:33:dc:01:f1:67:0b:d6:69:
d1:e8:35:08:54:81:7a:99:54:33:03:b5:43:3c:b5:e0:d3:d8:
63:23:b5:ad:3a:af:5b:38:d7:01:d1:da:e5:ba:59:dc:d8:72:
a3:b3:e2:38:8a:fb:e6:68:cb:ca:95:aa:53:76:70:f5:04:98:
c2:19:fb:e5:1f:d6:3a:2f:52:46:4c:b0:82:ed:bb:c4:39:26:
e4:c7:65:07:d9:59:42:03:39:d0:31:01:14:c1:57:60:69:12:
bc:9d:82:d7:cf:7b:02:55:ff:64:c7:fd:fe:39:ad:e6:65:6e:
27:ce:70:35:52:78:5e:98:b7:9a:b8:8b:2a:d2:c0:9c:40:ac:
05:e9:07:b2:1e:18:7b:d8:7e:f6:7d:d5:53:49:52:e0:87:a6:
5d:70:d3:a0:6f:04:29:dc:97:24:2c:62:ed:e8:68:15:43:0c:
4f:48:a1:9d:e9:fd:ee:7b:59:62:19:ea:ad:f0:d4:9b:df:d0:
b4:a5:1f:8b:a4:31:b0:cd:44:1b:e8:56:4a:27:98:7d:c0:27:
0a:c5:27:2f:c0:41:2a:d4:10:2c:98:f3:5a:51:10:cc:f0:84:
9a:98:70:b1:c8:5b:a2:54:81:df:3f:be:0f:5b:0b:a2:bd:92:
b0:cd:c7:89
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dkLDRcMP0X1hw8Xpda8elMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1YmNjNDg2NzQ5YWIzYWI4MDRjZjExOThjYmY1NzVhODQw
NWE4ZDQwHhcNMjYwNTEyMTkwMTIyWhcNMjYwNTEzMTkwMTIyWjAzMTEwLwYDVQQD
Eyg0MGEzZTI1NmY3YzY4ZmIyYTQ4NDRjNzEwZWQyMTk5MTIzOTRjNDk0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5825OsN/H2YGcWpnT3qU65dQUtl
SOZDqOwSh7cHRacIq5TOzzPGD0dPHFBbNjSgsJzz8hI29iRO6g0Ji/KSDyq9FHEb
o9THaAdXsQIHDUS1djRTLTWvhrXlOcEzzM/qALtp7Pzmrb3/ARhyNrnZ647JFB9p
hTP8nxmAmuh7jCBAxdcz4Pl2m1gOb+Q512VQShUWJ7djxAMFa43fuRpts5qaz299
KL3I0qQB4/8JzCPhxJLJeobf5vAgVeUYD/IW3pA+qIjK0FZQQ4q9IOyme/TrCFM3
5lpC/ON4R8MkLjgt35rtMffm7RRE9Qj7uakkFvkGA0K+OWYzxeG62nfnwQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFECj4lb3xo+ypIRMcQ7SGZEjlMSUMB8GA1UdIwQY
MBaAFAW8xIZ0mrOrgEzxGYy/V1qEBajUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmJ6RWhuU2FzNnVBVFBFWmpMOVhXb1FGcU5RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZC81MzVhNjctZjU0MC00ZjE0LWFkMTEt
N2Y2OTlhODNiYjBjLzEvQmJ6RWhuU2FzNnVBVFBFWmpMOVhXb1FGcU5RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84ZC81MzVhNjctZjU0MC00ZjE0LWFkMTEtN2Y2OTlhODNiYjBj
LzEvQmJ6RWhuU2FzNnVBVFBFWmpMOVhXb1FGcU5RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALRbgvdNh
r7F0LTPcAfFnC9Zp0eg1CFSBeplUMwO1Qzy14NPYYyO1rTqvWzjXAdHa5bpZ3Nhy
o7PiOIr75mjLypWqU3Zw9QSYwhn75R/WOi9SRkywgu27xDkm5MdlB9lZQgM50DEB
FMFXYGkSvJ2C1897AlX/ZMf9/jmt5mVuJ85wNVJ4Xpi3mriLKtLAnECsBekHsh4Y
e9h+9n3VU0lS4IemXXDToG8EKdyXJCxi7ehoFUMMT0ihnen97ntZYhnqrfDUm9/Q
tKUfi6QxsM1EG+hWSieYfcAnCsUnL8BBKtQQLJjzWlEQzPCEmphwschbolSB3z++
D1sLor2SsM3HiQ==
-----END CERTIFICATE-----
Generated at Tue May 12 21:33:57 2026 by rpki-client