Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
File: bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft (raw, json)
Hash identifier: vS4dl+1qjni7X/l/YrHNTF5boVubokDsRPlr9/7CQng=
Subject key identifier: BF:C5:A1:1F:F3:3B:E3:2C:D0:DC:A7:93:5D:E1:93:29:08:F4:EB:69
Authority key identifier: 6E:AE:4B:B0:51:39:80:C8:7F:9B:AC:59:29:52:C0:95:77:7A:C1:2E
Certificate issuer: /CN=6eae4bb0513980c87f9bac592952c095777ac12e
Certificate serial: 019D9A752AF56D574468B605FB67C48A19C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
Manifest number: 051D
Signing time: Fri 17 Apr 2026 08:01:03 +0000
Manifest this update: Fri 17 Apr 2026 08:01:03 +0000
Manifest next update: Sat 18 Apr 2026 08:01:03 +0000
Files and hashes: 1: bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl (hash: x0s+pJIi1/PbEcdlpzEu7ZcRYFnErfyu6ppkglsFvko=)
2: zLQM5UGUZQZaDaXLLIq2Cs9lTG4.roa (hash: lEMGpphC2f316K3X8TeGMMDyruycSyCxjomy+Oc5l4k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:75:2a:f5:6d:57:44:68:b6:05:fb:67:c4:8a:19:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6eae4bb0513980c87f9bac592952c095777ac12e
Validity
Not Before: Apr 17 08:01:03 2026 GMT
Not After : Apr 18 08:01:03 2026 GMT
Subject: CN=bfc5a11ff33be32cd0dca7935de1932908f4eb69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f1:2d:82:ca:a0:97:61:28:1b:93:5d:f5:ad:
25:6d:5e:c8:b6:7d:96:a9:93:34:23:34:2e:ea:6a:
4f:44:a9:65:47:7d:dc:62:75:d6:10:1d:d1:7a:cc:
32:03:46:9c:f6:58:19:83:52:08:74:86:ab:e8:5f:
82:4d:62:03:6f:b8:6e:43:75:a7:ff:5a:ee:ef:bc:
56:89:73:f0:4b:f5:85:c8:8f:76:e2:36:4b:28:84:
be:04:b1:2c:51:4f:ee:ae:61:39:cf:a9:59:14:15:
b4:d2:25:81:56:1b:1e:1f:da:88:77:24:a1:ce:14:
10:a0:0d:ac:e3:a5:f3:cb:7b:ea:53:7a:28:07:e8:
16:63:87:d5:06:27:a6:99:4f:33:e2:87:f0:f9:14:
aa:98:df:78:38:66:5b:e9:2d:47:a1:74:0c:3a:35:
c2:af:4d:d8:39:dd:0b:12:30:3f:97:ed:b3:63:b1:
06:25:45:d6:81:b7:c2:c5:e3:b7:7a:49:b0:e3:ef:
9b:e0:14:25:80:d6:e5:38:fc:77:e7:70:3f:ec:7f:
25:71:c4:f0:fa:ae:10:ce:30:eb:9c:3a:02:70:c0:
7c:99:f9:00:51:c6:24:79:ec:b3:db:61:8a:08:0a:
40:98:e0:92:8a:f2:de:61:db:b0:f6:f1:c6:87:37:
6f:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:C5:A1:1F:F3:3B:E3:2C:D0:DC:A7:93:5D:E1:93:29:08:F4:EB:69
X509v3 Authority Key Identifier:
keyid:6E:AE:4B:B0:51:39:80:C8:7F:9B:AC:59:29:52:C0:95:77:7A:C1:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bq5LsFE5gMh_m6xZKVLAlXd6wS4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/3a72ba-1dca-40d9-a8ad-4ce6231f2ad9/1/bq5LsFE5gMh_m6xZKVLAlXd6wS4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:4f:e9:10:19:ab:31:9e:0a:e4:71:4c:2e:7e:9e:c6:ef:7f:
11:51:1d:06:97:37:e6:de:5a:50:6b:79:d6:68:47:9a:57:61:
61:ef:8f:90:4c:bc:d5:3d:e2:8e:bf:68:b4:13:b0:18:53:ac:
e1:7d:f1:6f:2c:44:bc:71:61:0c:c5:87:a8:a1:29:4a:4e:45:
29:52:a3:09:77:af:4f:49:9e:64:66:e7:29:5f:cc:b7:01:f9:
6e:8b:2b:18:77:07:44:2b:32:b5:6b:92:62:e7:52:8b:ad:1e:
f5:97:c4:40:75:de:5b:86:25:b6:73:5b:b5:1c:52:83:cd:6f:
5a:45:2b:7d:67:a0:cc:f5:db:9c:9f:4b:28:6e:c4:61:67:28:
cd:d6:bd:54:33:7b:54:8a:99:20:e6:2b:1c:aa:0b:32:e4:85:
3b:e9:8b:a0:4d:95:74:14:66:d2:0b:43:8e:39:a1:1e:10:04:
9b:3d:3f:8d:9f:22:de:8f:4c:1b:30:ca:74:23:9e:cd:11:f8:
d2:67:39:ee:c5:ec:44:68:0c:6f:07:7d:67:81:73:d5:04:25:
ec:11:31:26:9e:a0:00:38:dd:54:d2:48:02:55:66:2b:d0:f1:
4d:02:3c:8a:73:37:e8:16:82:83:56:00:ad:77:e3:2b:65:c2:
1e:a6:26:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2adSr1bVdEaLYF+2fEihnFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlYWU0YmIwNTEzOTgwYzg3ZjliYWM1OTI5NTJjMDk1Nzc3
YWMxMmUwHhcNMjYwNDE3MDgwMTAzWhcNMjYwNDE4MDgwMTAzWjAzMTEwLwYDVQQD
EyhiZmM1YTExZmYzM2JlMzJjZDBkY2E3OTM1ZGUxOTMyOTA4ZjRlYjY5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5PEtgsqgl2EoG5Nd9a0lbV7Itn2W
qZM0IzQu6mpPRKllR33cYnXWEB3ReswyA0ac9lgZg1IIdIar6F+CTWIDb7huQ3Wn
/1ru77xWiXPwS/WFyI924jZLKIS+BLEsUU/urmE5z6lZFBW00iWBVhseH9qIdySh
zhQQoA2s46Xzy3vqU3ooB+gWY4fVBiemmU8z4ofw+RSqmN94OGZb6S1HoXQMOjXC
r03YOd0LEjA/l+2zY7EGJUXWgbfCxeO3ekmw4++b4BQlgNblOPx353A/7H8lccTw
+q4QzjDrnDoCcMB8mfkAUcYkeeyz22GKCApAmOCSivLeYduw9vHGhzdvjwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFL/FoR/zO+Ms0Nynk13hkykI9OtpMB8GA1UdIwQY
MBaAFG6uS7BROYDIf5usWSlSwJV3esEuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYnE1THNGRTVnTWhfbTZ4WktWTEFsWGQ2d1M0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8zYTcyYmEtMWRjYS00MGQ5LWE4YWQt
NGNlNjIzMWYyYWQ5LzEvYnE1THNGRTVnTWhfbTZ4WktWTEFsWGQ2d1M0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8zYTcyYmEtMWRjYS00MGQ5LWE4YWQtNGNlNjIzMWYyYWQ5
LzEvYnE1THNGRTVnTWhfbTZ4WktWTEFsWGQ2d1M0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZU/pEBmr
MZ4K5HFMLn6exu9/EVEdBpc35t5aUGt51mhHmldhYe+PkEy81T3ijr9otBOwGFOs
4X3xbyxEvHFhDMWHqKEpSk5FKVKjCXevT0meZGbnKV/MtwH5bosrGHcHRCsytWuS
YudSi60e9ZfEQHXeW4YltnNbtRxSg81vWkUrfWegzPXbnJ9LKG7EYWcozda9VDN7
VIqZIOYrHKoLMuSFO+mLoE2VdBRm0gtDjjmhHhAEmz0/jZ8i3o9MGzDKdCOezRH4
0mc57sXsRGgMbwd9Z4Fz1QQl7BExJp6gADjdVNJIAlVmK9DxTQI8inM36BaCg1YA
rXfjK2XCHqYmGg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 11:00:36 2026 by rpki-client