Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/2cc9f6-05f3-40d9-b6ae-07ffb66c54df/1/bnnOupU7B9qiKvPIqrKxzU4iSNA.mft
File: bnnOupU7B9qiKvPIqrKxzU4iSNA.mft (raw, json)
Hash identifier: AGl4mADSqWl266FchdGViMlDzAGYnptttOW2cLHdhoE=
Subject key identifier: A3:33:A7:F5:1D:84:B8:31:3E:81:EE:24:49:08:DC:22:CF:F6:5D:C1
Authority key identifier: 6E:79:CE:BA:95:3B:07:DA:A2:2A:F3:C8:AA:B2:B1:CD:4E:22:48:D0
Certificate issuer: /CN=6e79ceba953b07daa22af3c8aab2b1cd4e2248d0
Certificate serial: 019D98F4A4B770B55BF99E154E6984DDA54A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bnnOupU7B9qiKvPIqrKxzU4iSNA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/2cc9f6-05f3-40d9-b6ae-07ffb66c54df/1/bnnOupU7B9qiKvPIqrKxzU4iSNA.mft
Manifest number: 0943
Signing time: Fri 17 Apr 2026 01:01:02 +0000
Manifest this update: Fri 17 Apr 2026 01:01:02 +0000
Manifest next update: Sat 18 Apr 2026 01:01:02 +0000
Files and hashes: 1: bnnOupU7B9qiKvPIqrKxzU4iSNA.crl (hash: cugmwPlz2nVLqj16ttW0wD/TsJjffuPzD5GND685w7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/2cc9f6-05f3-40d9-b6ae-07ffb66c54df/1/bnnOupU7B9qiKvPIqrKxzU4iSNA.crl
rsync://rpki.ripe.net/repository/DEFAULT/20/2cc9f6-05f3-40d9-b6ae-07ffb66c54df/1/bnnOupU7B9qiKvPIqrKxzU4iSNA.mft
rsync://rpki.ripe.net/repository/DEFAULT/bnnOupU7B9qiKvPIqrKxzU4iSNA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:a4:b7:70:b5:5b:f9:9e:15:4e:69:84:dd:a5:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6e79ceba953b07daa22af3c8aab2b1cd4e2248d0
Validity
Not Before: Apr 17 01:01:02 2026 GMT
Not After : Apr 18 01:01:02 2026 GMT
Subject: CN=a333a7f51d84b8313e81ee244908dc22cff65dc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:43:fd:be:ae:01:16:fd:fe:0f:c2:c7:cf:1f:
c7:d2:2a:5c:ab:55:ed:55:9f:3d:ed:e3:2b:0c:0c:
cb:0b:f4:8f:f8:71:ee:c9:5b:85:c7:78:fc:d8:c2:
78:c8:27:26:cd:94:5f:f1:c2:b9:bd:f8:52:61:69:
8e:07:83:db:2d:6c:39:36:fe:52:94:a8:d4:05:89:
76:9e:3a:4c:d0:b0:d1:0e:44:2e:34:1f:a4:41:92:
16:a1:b5:67:65:71:58:17:04:6a:92:29:4a:a3:ab:
bf:7d:f6:92:c7:f2:43:38:9b:26:a4:18:00:50:c1:
67:8d:64:16:dc:0c:83:88:05:58:f5:82:4d:9d:4b:
07:66:be:8e:d3:85:3d:39:7b:09:3b:1d:ab:0a:dc:
08:d9:fa:98:62:ab:a0:f5:a3:08:06:49:3a:a3:eb:
72:03:71:26:71:25:b7:da:bb:89:2a:0a:cf:57:f8:
93:8e:61:f2:29:8a:fe:f0:60:87:e8:71:96:25:73:
98:e0:d3:6f:b8:1f:9d:33:8d:ec:6e:5b:c3:55:18:
87:11:b6:1d:84:f6:fe:20:d2:18:0d:a0:91:c8:e6:
a0:a5:b4:f1:5d:3e:ff:6d:dc:38:d2:c7:a7:f5:ac:
5d:e9:84:02:68:aa:0e:13:37:5b:33:c0:03:4b:5e:
b0:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:33:A7:F5:1D:84:B8:31:3E:81:EE:24:49:08:DC:22:CF:F6:5D:C1
X509v3 Authority Key Identifier:
keyid:6E:79:CE:BA:95:3B:07:DA:A2:2A:F3:C8:AA:B2:B1:CD:4E:22:48:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bnnOupU7B9qiKvPIqrKxzU4iSNA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2cc9f6-05f3-40d9-b6ae-07ffb66c54df/1/bnnOupU7B9qiKvPIqrKxzU4iSNA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/20/2cc9f6-05f3-40d9-b6ae-07ffb66c54df/1/bnnOupU7B9qiKvPIqrKxzU4iSNA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:44:b7:e9:fb:60:52:e4:b1:73:6b:d4:e4:cc:62:ba:a3:39:
1f:10:87:f9:4b:37:10:9d:b2:91:fd:a1:75:97:8f:57:b7:a6:
ac:67:41:e4:68:28:91:60:09:f5:9f:42:ef:eb:f0:3b:c7:4d:
52:29:4c:12:27:ff:b9:ec:f5:2b:a1:52:c8:81:30:a9:ff:5c:
3b:5b:7a:6d:9a:7a:9d:dc:c1:90:9e:16:df:a6:86:78:2d:27:
06:d0:c1:d4:42:91:e4:b7:fc:91:04:12:f7:71:bd:ff:44:95:
1f:2b:5a:04:ed:1e:75:62:1f:bf:8d:86:83:e9:57:7a:8f:97:
cb:d2:50:78:65:b9:3e:49:3a:b7:30:80:b6:d4:b1:b1:00:a3:
41:4e:b4:fa:6d:14:62:b2:2e:ee:e5:de:26:16:ef:c0:e8:9c:
69:dd:6b:5f:57:1a:54:a8:15:9e:6b:37:10:99:ff:4f:b6:5b:
62:df:8c:8b:9d:5f:6b:3e:8d:f4:fa:ee:18:e6:47:c5:a5:26:
51:54:33:85:e7:83:cb:6d:f9:18:3a:7c:64:0f:27:df:59:f3:
fd:c3:a5:7e:5e:ae:dc:72:6a:a1:3f:5d:33:40:ec:e3:8b:79:
45:cc:ba:40:61:33:83:f4:30:54:8a:72:60:08:5e:eb:b1:ad:
8a:fa:c2:7c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Y9KS3cLVb+Z4VTmmE3aVKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZlNzljZWJhOTUzYjA3ZGFhMjJhZjNjOGFhYjJiMWNkNGUy
MjQ4ZDAwHhcNMjYwNDE3MDEwMTAyWhcNMjYwNDE4MDEwMTAyWjAzMTEwLwYDVQQD
EyhhMzMzYTdmNTFkODRiODMxM2U4MWVlMjQ0OTA4ZGMyMmNmZjY1ZGMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAukP9vq4BFv3+D8LHzx/H0ipcq1Xt
VZ897eMrDAzLC/SP+HHuyVuFx3j82MJ4yCcmzZRf8cK5vfhSYWmOB4PbLWw5Nv5S
lKjUBYl2njpM0LDRDkQuNB+kQZIWobVnZXFYFwRqkilKo6u/ffaSx/JDOJsmpBgA
UMFnjWQW3AyDiAVY9YJNnUsHZr6O04U9OXsJOx2rCtwI2fqYYqug9aMIBkk6o+ty
A3EmcSW32ruJKgrPV/iTjmHyKYr+8GCH6HGWJXOY4NNvuB+dM43sblvDVRiHEbYd
hPb+INIYDaCRyOagpbTxXT7/bdw40sen9axd6YQCaKoOEzdbM8ADS16wtwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKMzp/UdhLgxPoHuJEkI3CLP9l3BMB8GA1UdIwQY
MBaAFG55zrqVOwfaoirzyKqysc1OIkjQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYm5uT3VwVTdCOXFpS3ZQSXFyS3h6VTRpU05BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8yY2M5ZjYtMDVmMy00MGQ5LWI2YWUt
MDdmZmI2NmM1NGRmLzEvYm5uT3VwVTdCOXFpS3ZQSXFyS3h6VTRpU05BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMC8yY2M5ZjYtMDVmMy00MGQ5LWI2YWUtMDdmZmI2NmM1NGRm
LzEvYm5uT3VwVTdCOXFpS3ZQSXFyS3h6VTRpU05BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo0S36ftg
UuSxc2vU5MxiuqM5HxCH+Us3EJ2ykf2hdZePV7emrGdB5GgokWAJ9Z9C7+vwO8dN
UilMEif/uez1K6FSyIEwqf9cO1t6bZp6ndzBkJ4W36aGeC0nBtDB1EKR5Lf8kQQS
93G9/0SVHytaBO0edWIfv42Gg+lXeo+Xy9JQeGW5Pkk6tzCAttSxsQCjQU60+m0U
YrIu7uXeJhbvwOicad1rX1caVKgVnms3EJn/T7ZbYt+Mi51faz6N9PruGOZHxaUm
UVQzheeDy235GDp8ZA8n31nz/cOlfl6u3HJqoT9dM0Ds44t5Rcy6QGEzg/QwVIpy
YAhe67GtivrCfA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 10:47:51 2026 by rpki-client