Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
File: BSAFu2w9aGW4nBDzOwuZS3Svljs.mft (raw, json)
Hash identifier: 7W8I8kXUQazbuMGSYbrofBZ3LKsNMdgF0YlvdtMP8dE=
Subject key identifier: 7D:AC:E9:67:A3:64:8A:B4:F6:81:27:0C:61:19:83:1B:F9:88:CC:B1
Authority key identifier: 05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
Certificate issuer: /CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Certificate serial: 019E1CEC039591119D7E966179BA70806B87
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
Manifest number: 1908
Signing time: Tue 12 May 2026 16:01:29 +0000
Manifest this update: Tue 12 May 2026 16:01:29 +0000
Manifest next update: Wed 13 May 2026 16:01:29 +0000
Files and hashes: 1: BSAFu2w9aGW4nBDzOwuZS3Svljs.crl (hash: lsRbccaRG5i9jhxRD8VQLllKTy1pA89g83KRcou/Qds=)
2: TkHWb7A0dCU6pE1AWMAvWtYjFGQ.roa (hash: SNUkFMiS55HofBAwrMgQasrnX+p3nqcULIOMMHj9Bv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 16:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:ec:03:95:91:11:9d:7e:96:61:79:ba:70:80:6b:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=052005bb6c3d6865b89c10f33b0b994b74af963b
Validity
Not Before: May 12 16:01:29 2026 GMT
Not After : May 13 16:01:29 2026 GMT
Subject: CN=7dace967a3648ab4f681270c6119831bf988ccb1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:ee:d1:85:16:d6:d3:d4:7e:d4:ae:fb:58:63:
0c:8b:ac:12:46:69:ad:2d:b7:d7:e5:37:73:fe:44:
78:97:59:40:5c:d7:4a:b5:08:2b:bc:80:05:a8:2a:
4c:15:26:a1:44:4b:57:d2:87:77:52:b8:37:87:5f:
39:18:d7:ea:71:3a:29:85:7a:47:35:d8:d4:d4:fc:
e0:f3:10:47:be:91:4c:66:1e:8a:59:bd:f4:5e:45:
49:4a:0f:f7:f1:83:04:02:ef:f4:6c:25:8e:90:e7:
0e:25:75:0f:b8:8d:12:a3:df:aa:c9:a1:5b:af:9b:
25:21:62:64:42:82:5c:93:df:40:c8:91:aa:41:b2:
fc:38:d8:94:4d:de:41:13:68:97:22:55:de:4c:94:
7a:b4:1b:3f:0b:3f:c6:17:3b:06:46:aa:89:65:be:
5d:82:a6:43:8c:b0:55:30:30:ac:67:d5:99:1f:f1:
4a:f0:66:89:f9:1b:6d:55:8c:f8:d8:c2:c8:ea:6b:
87:e7:11:b0:91:43:8f:e2:9b:d8:a0:7b:6c:84:15:
9e:ca:b4:5d:13:e7:0f:9d:49:e8:88:20:2e:7b:7d:
6d:a9:98:0e:65:5d:d9:e9:58:f1:85:db:81:11:7b:
55:6a:bd:95:c9:ed:02:bb:71:b0:e7:9d:fa:7c:1b:
0d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:AC:E9:67:A3:64:8A:B4:F6:81:27:0C:61:19:83:1B:F9:88:CC:B1
X509v3 Authority Key Identifier:
keyid:05:20:05:BB:6C:3D:68:65:B8:9C:10:F3:3B:0B:99:4B:74:AF:96:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSAFu2w9aGW4nBDzOwuZS3Svljs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/83eb09-3a14-455b-8895-ba0a76f43704/1/BSAFu2w9aGW4nBDzOwuZS3Svljs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:2e:b5:1d:1f:37:6f:eb:36:ba:ed:98:2b:cb:54:4a:dc:4e:
cc:dc:6c:68:83:16:a6:66:62:fb:79:fa:ea:33:5c:0b:f2:26:
e5:ec:a4:17:d1:83:55:e3:43:ae:fb:6b:1b:e8:00:7e:30:7b:
17:b6:2b:dd:6d:55:bf:3e:35:52:f2:23:30:8a:38:0c:94:ea:
97:5a:49:64:e9:1e:4b:d0:33:63:fd:30:bc:8d:a2:7a:29:51:
80:1e:db:0b:1c:8d:1b:f6:71:c3:15:b2:77:a5:76:a7:c5:0c:
e4:51:ee:30:0e:53:27:6a:f5:2f:12:bd:00:ec:c2:b7:dc:a6:
9b:f5:f8:e9:ae:f3:5f:2f:6b:62:b3:b2:30:0a:05:48:5b:b4:
f4:fe:df:1b:4b:f3:cb:b2:cf:63:af:81:2c:c8:a7:46:c9:30:
3c:aa:d7:18:89:2c:9f:7e:23:09:57:be:66:2b:82:5e:f9:76:
5d:0d:8b:82:76:39:8b:7e:d5:8e:5b:c1:41:da:1f:92:ff:01:
30:d8:09:ca:02:df:b4:72:4c:e8:1f:7b:f8:8f:91:11:9b:76:
c5:73:f9:b0:87:d9:55:72:91:bf:dd:52:b8:e1:25:90:9e:93:
50:4d:b9:b9:ca:0f:fc:e7:f5:1b:92:91:44:e8:c3:3b:2e:29:
35:0c:86:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4c7AOVkRGdfpZhebpwgGuHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA1MjAwNWJiNmMzZDY4NjViODljMTBmMzNiMGI5OTRiNzRh
Zjk2M2IwHhcNMjYwNTEyMTYwMTI5WhcNMjYwNTEzMTYwMTI5WjAzMTEwLwYDVQQD
Eyg3ZGFjZTk2N2EzNjQ4YWI0ZjY4MTI3MGM2MTE5ODMxYmY5ODhjY2IxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAne7RhRbW09R+1K77WGMMi6wSRmmt
LbfX5Tdz/kR4l1lAXNdKtQgrvIAFqCpMFSahREtX0od3Urg3h185GNfqcTophXpH
NdjU1Pzg8xBHvpFMZh6KWb30XkVJSg/38YMEAu/0bCWOkOcOJXUPuI0So9+qyaFb
r5slIWJkQoJck99AyJGqQbL8ONiUTd5BE2iXIlXeTJR6tBs/Cz/GFzsGRqqJZb5d
gqZDjLBVMDCsZ9WZH/FK8GaJ+RttVYz42MLI6muH5xGwkUOP4pvYoHtshBWeyrRd
E+cPnUnoiCAue31tqZgOZV3Z6VjxhduBEXtVar2Vye0Cu3Gw5536fBsNrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFH2s6WejZIq09oEnDGEZgxv5iMyxMB8GA1UdIwQY
MBaAFAUgBbtsPWhluJwQ8zsLmUt0r5Y7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi84M2ViMDktM2ExNC00NTViLTg4OTUt
YmEwYTc2ZjQzNzA0LzEvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yi84M2ViMDktM2ExNC00NTViLTg4OTUtYmEwYTc2ZjQzNzA0
LzEvQlNBRnUydzlhR1c0bkJEek93dVpTM1N2bGpzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaS61HR83
b+s2uu2YK8tUStxOzNxsaIMWpmZi+3n66jNcC/Im5eykF9GDVeNDrvtrG+gAfjB7
F7Yr3W1Vvz41UvIjMIo4DJTql1pJZOkeS9AzY/0wvI2ieilRgB7bCxyNG/ZxwxWy
d6V2p8UM5FHuMA5TJ2r1LxK9AOzCt9ymm/X46a7zXy9rYrOyMAoFSFu09P7fG0vz
y7LPY6+BLMinRskwPKrXGIksn34jCVe+ZiuCXvl2XQ2LgnY5i37VjlvBQdofkv8B
MNgJygLftHJM6B97+I+REZt2xXP5sIfZVXKRv91SuOElkJ6TUE25ucoP/Of1G5KR
ROjDOy4pNQyGyQ==
-----END CERTIFICATE-----
Generated at Wed May 13 03:49:44 2026 by rpki-client