Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
File: bOrnoCiJYKda-M6A54iFQ8f3fNc.mft (raw, json)
Hash identifier: gZ5k7Y/UOgmbv3Gi3pUu55lN065COqpLTRHBWCIAblU=
Subject key identifier: 7C:FA:2A:2C:DB:CB:6E:65:43:8D:16:13:92:35:6F:71:53:3B:2D:8F
Authority key identifier: 6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
Certificate issuer: /CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Certificate serial: 019DA4544DD9215CE910D5EA7DBB46789878
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
Manifest number: 15D5
Signing time: Sun 19 Apr 2026 06:01:21 +0000
Manifest this update: Sun 19 Apr 2026 06:01:21 +0000
Manifest next update: Mon 20 Apr 2026 06:01:21 +0000
Files and hashes: 1: 06iciWMnCvsa1G81d73kMnybKl0.roa (hash: 9/zv2guSkQOWznP9YeG/uAwYzC8tOeda3ReFt/vmKVQ=)
2: bOrnoCiJYKda-M6A54iFQ8f3fNc.crl (hash: iIWcp58Hx3/TK/xYKxEdJ20/Fl9FwoxvJyYAS6anMAM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:54:4d:d9:21:5c:e9:10:d5:ea:7d:bb:46:78:98:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6ceae7a0288960a75af8ce80e7888543c7f77cd7
Validity
Not Before: Apr 19 06:01:21 2026 GMT
Not After : Apr 20 06:01:21 2026 GMT
Subject: CN=7cfa2a2cdbcb6e65438d161392356f71533b2d8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:a5:bd:d2:b0:14:5d:74:7f:35:94:b4:d5:ea:
83:98:51:44:44:e3:29:a7:9b:3d:5d:a9:46:47:58:
e3:d3:aa:6d:84:c7:7f:aa:f2:ad:6c:a8:db:f1:b2:
6f:d9:86:92:19:82:75:30:81:b6:41:ed:3c:cd:da:
ac:6b:a5:1b:b8:a0:1a:81:2a:be:f7:9b:7a:bf:76:
2b:0c:75:f0:ed:f6:f6:2a:ef:dc:64:53:67:40:dc:
c9:a9:4c:f5:8d:b1:79:b9:44:7a:1c:b5:21:45:12:
47:1c:36:16:a1:02:64:06:f6:58:4f:f5:cb:c3:d3:
b6:49:c2:ca:95:df:2a:5f:14:3c:36:bf:1f:66:ab:
cb:74:65:17:12:f7:02:52:60:07:1a:3a:25:5a:f9:
78:55:e6:95:0f:14:f1:f0:4a:9a:0a:09:70:98:38:
a6:7c:8d:ff:59:43:40:22:c3:e2:55:48:3c:3c:e5:
bb:e8:a7:8b:58:df:c0:ec:5c:dd:cd:90:16:b9:b7:
df:f8:15:63:eb:07:d1:f6:6f:d3:fc:b2:a2:cc:4d:
47:d2:f9:9e:6c:98:62:8c:af:3b:0c:c3:30:09:35:
8d:9c:e7:74:22:a5:44:d3:a4:a4:67:0e:fa:69:69:
bb:91:00:83:a0:8d:9a:7c:15:43:30:29:2c:7a:b1:
ce:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:FA:2A:2C:DB:CB:6E:65:43:8D:16:13:92:35:6F:71:53:3B:2D:8F
X509v3 Authority Key Identifier:
keyid:6C:EA:E7:A0:28:89:60:A7:5A:F8:CE:80:E7:88:85:43:C7:F7:7C:D7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bOrnoCiJYKda-M6A54iFQ8f3fNc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/05/708f76-56ef-433f-9eac-4a4a3b0408a6/1/bOrnoCiJYKda-M6A54iFQ8f3fNc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:9e:62:f2:4e:04:43:6e:f6:ce:c7:f4:ef:93:68:5c:0c:6b:
16:fb:4d:9e:32:85:b5:fe:19:2c:69:5d:a8:56:8a:11:cf:62:
98:4d:63:b1:38:a8:e9:2a:87:0d:4c:23:57:a5:a0:ff:58:15:
a6:a6:1e:6e:57:96:ec:57:82:0c:b8:29:ad:0d:12:67:a1:5f:
37:da:1e:13:26:c6:bb:8f:39:a1:74:6d:62:4c:77:ef:8e:3e:
d9:3b:83:5e:1f:36:ab:89:23:3a:20:57:0d:eb:c0:77:94:02:
63:11:0b:ad:90:97:2d:a9:9f:14:a8:f3:1f:96:cd:74:7c:c6:
80:d7:aa:45:31:d6:be:4d:49:e8:f2:a4:d1:fd:aa:99:6a:b9:
f3:2c:84:eb:85:91:5a:43:be:47:2c:21:fe:12:d5:ee:41:44:
9f:2e:bc:44:4e:cc:ca:9b:e8:4a:b2:3c:42:32:3a:52:8b:da:
11:67:86:0c:5e:6f:ca:e2:fa:24:c0:ee:b3:39:d6:64:9a:de:
31:d9:6b:27:b8:d6:5b:e7:c5:e1:c4:17:7f:44:d5:fd:dd:2a:
d8:e1:ba:c0:35:e0:49:fd:b6:cf:84:b3:72:ea:5a:54:18:64:
da:0a:94:51:6a:20:45:18:3d:67:a0:72:4e:90:b0:27:57:cf:
09:26:2a:92
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2kVE3ZIVzpENXqfbtGeJh4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZjZWFlN2EwMjg4OTYwYTc1YWY4Y2U4MGU3ODg4NTQzYzdm
NzdjZDcwHhcNMjYwNDE5MDYwMTIxWhcNMjYwNDIwMDYwMTIxWjAzMTEwLwYDVQQD
Eyg3Y2ZhMmEyY2RiY2I2ZTY1NDM4ZDE2MTM5MjM1NmY3MTUzM2IyZDhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaW90rAUXXR/NZS01eqDmFFEROMp
p5s9XalGR1jj06pthMd/qvKtbKjb8bJv2YaSGYJ1MIG2Qe08zdqsa6UbuKAagSq+
95t6v3YrDHXw7fb2Ku/cZFNnQNzJqUz1jbF5uUR6HLUhRRJHHDYWoQJkBvZYT/XL
w9O2ScLKld8qXxQ8Nr8fZqvLdGUXEvcCUmAHGjolWvl4VeaVDxTx8EqaCglwmDim
fI3/WUNAIsPiVUg8POW76KeLWN/A7FzdzZAWubff+BVj6wfR9m/T/LKizE1H0vme
bJhijK87DMMwCTWNnOd0IqVE06SkZw76aWm7kQCDoI2afBVDMCkserHOKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHz6Kizby25lQ40WE5I1b3FTOy2PMB8GA1UdIwQY
MBaAFGzq56AoiWCnWvjOgOeIhUPH93zXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS83MDhmNzYtNTZlZi00MzNmLTllYWMt
NGE0YTNiMDQwOGE2LzEvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNS83MDhmNzYtNTZlZi00MzNmLTllYWMtNGE0YTNiMDQwOGE2
LzEvYk9ybm9DaUpZS2RhLU02QTU0aUZROGYzZk5jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhp5i8k4E
Q272zsf075NoXAxrFvtNnjKFtf4ZLGldqFaKEc9imE1jsTio6SqHDUwjV6Wg/1gV
pqYebleW7FeCDLgprQ0SZ6FfN9oeEybGu485oXRtYkx3744+2TuDXh82q4kjOiBX
DevAd5QCYxELrZCXLamfFKjzH5bNdHzGgNeqRTHWvk1J6PKk0f2qmWq58yyE64WR
WkO+Rywh/hLV7kFEny68RE7MypvoSrI8QjI6UovaEWeGDF5vyuL6JMDusznWZJre
MdlrJ7jWW+fF4cQXf0TV/d0q2OG6wDXgSf22z4SzcupaVBhk2gqUUWogRRg9Z6By
TpCwJ1fPCSYqkg==
-----END CERTIFICATE-----
Generated at Sun Apr 19 11:20:47 2026 by rpki-client