Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
File: Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft (raw, json)
Hash identifier: r9cyXhHQQl+fONXt8XIwa1Bk71KuTv7NuzfLeVXVOAA=
Subject key identifier: 81:7F:C7:E9:22:31:6B:BD:BB:5F:86:99:E7:8C:43:C4:A3:C8:44:17
Authority key identifier: 06:CE:5B:28:46:6B:92:74:25:26:03:13:92:D9:4B:F1:A5:58:E8:44
Certificate issuer: /CN=06ce5b28466b92742526031392d94bf1a558e844
Certificate serial: 019D9A06DF8EDD625F09FB648C69DA1184DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bs5bKEZrknQlJgMTktlL8aVY6EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
Manifest number: 1605
Signing time: Fri 17 Apr 2026 06:00:34 +0000
Manifest this update: Fri 17 Apr 2026 06:00:34 +0000
Manifest next update: Sat 18 Apr 2026 06:00:34 +0000
Files and hashes: 1: Bs5bKEZrknQlJgMTktlL8aVY6EQ.crl (hash: o6SwLRyrPgwtvXjERBNvSZ50IKO7smb2fLgVlRW5WY8=)
2: sQyne1zxQXu_zdF8YvRFUzS8ZEg.roa (hash: KddIGoSYVIL2Nj4926PBtsXbFubGN3uCRL3ozwJnP+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bs5bKEZrknQlJgMTktlL8aVY6EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:06:df:8e:dd:62:5f:09:fb:64:8c:69:da:11:84:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06ce5b28466b92742526031392d94bf1a558e844
Validity
Not Before: Apr 17 06:00:34 2026 GMT
Not After : Apr 18 06:00:34 2026 GMT
Subject: CN=817fc7e922316bbdbb5f8699e78c43c4a3c84417
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cb:c6:b7:de:55:33:28:56:bd:fe:d6:12:e7:
53:cb:b4:8c:a8:45:a2:3a:a6:9d:55:8c:a2:ad:d1:
9b:5c:b2:1a:05:f4:31:1b:10:f6:58:36:00:53:8d:
4a:9e:4a:46:ce:7d:3e:34:30:7c:e2:40:06:b7:7e:
49:c6:e0:9f:b1:ce:0c:1b:dd:86:ab:b6:c0:57:f3:
e0:ea:07:7c:e0:92:26:e9:d9:6f:5e:ad:ea:82:31:
9c:99:8a:ca:c5:9c:0f:c4:ab:e6:cb:7f:eb:53:53:
1a:5e:95:a7:c9:3b:04:70:9c:42:71:0f:81:eb:49:
d3:1c:3e:0a:70:5b:b3:2e:a5:03:b5:4f:81:de:46:
e2:2b:f1:79:91:7d:33:57:7c:82:19:ad:cd:96:ca:
9e:72:04:c2:80:42:6b:89:88:fb:36:b7:88:c8:fb:
52:fa:3d:07:17:0d:50:49:55:6a:d7:0d:3c:a7:6b:
26:94:c5:b4:a9:ff:97:b1:ce:ad:60:9b:59:ca:89:
68:a3:ec:9f:65:ad:29:aa:fd:c8:7d:e0:52:b4:03:
38:bd:8a:74:66:17:ca:0c:4b:8b:a5:9d:18:f3:b1:
01:82:c6:2f:f6:c1:e3:75:50:9e:5b:a7:07:97:c3:
60:db:be:fa:d2:7e:a3:21:77:57:e6:1c:3e:36:d7:
3f:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:7F:C7:E9:22:31:6B:BD:BB:5F:86:99:E7:8C:43:C4:A3:C8:44:17
X509v3 Authority Key Identifier:
keyid:06:CE:5B:28:46:6B:92:74:25:26:03:13:92:D9:4B:F1:A5:58:E8:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bs5bKEZrknQlJgMTktlL8aVY6EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:2b:b4:16:5e:40:96:3a:04:c6:1f:7c:ff:f6:db:71:28:3f:
e0:f9:69:5c:e2:0d:1b:d1:9f:c6:4f:85:6e:dc:5f:12:71:69:
cb:80:41:2f:53:bf:76:47:76:5f:b4:40:15:b1:57:6a:5f:c2:
1c:a6:5b:6f:45:00:ac:0e:51:8a:fa:c3:1c:fa:b7:0a:71:ac:
d0:d3:c4:4d:15:63:7e:9d:f5:95:22:58:5e:f6:c0:5d:18:57:
75:48:7e:ab:ba:ff:b2:0c:36:49:c2:7a:2e:2c:ce:10:da:0e:
d0:19:1f:b6:cc:ec:1b:9d:34:06:7d:3a:61:5f:2d:05:65:a3:
ae:f2:fe:b2:b9:be:94:5c:be:b4:c9:84:b4:ed:c4:cc:42:19:
6f:9f:1c:08:55:e7:27:ef:7a:d7:33:59:66:03:4f:4a:a7:ae:
2e:0e:b5:93:fb:53:e0:a6:3e:11:96:84:80:f6:31:90:74:8d:
bd:f6:6b:2e:49:4a:9d:e7:2e:dd:5f:a5:4d:c9:3b:6b:20:71:
cd:19:13:3f:a4:45:18:98:09:e1:d3:42:94:81:16:e6:38:e4:
b0:85:95:b8:f9:d9:4d:b4:6f:45:3d:0f:60:32:e1:0e:db:bb:
bc:24:cf:5b:dd:2f:6f:e4:d9:f5:bc:d4:20:13:a8:06:ea:72:
62:6d:74:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2aBt+O3WJfCftkjGnaEYTaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2Y2U1YjI4NDY2YjkyNzQyNTI2MDMxMzkyZDk0YmYxYTU1
OGU4NDQwHhcNMjYwNDE3MDYwMDM0WhcNMjYwNDE4MDYwMDM0WjAzMTEwLwYDVQQD
Eyg4MTdmYzdlOTIyMzE2YmJkYmI1Zjg2OTllNzhjNDNjNGEzYzg0NDE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqsvGt95VMyhWvf7WEudTy7SMqEWi
OqadVYyirdGbXLIaBfQxGxD2WDYAU41KnkpGzn0+NDB84kAGt35JxuCfsc4MG92G
q7bAV/Pg6gd84JIm6dlvXq3qgjGcmYrKxZwPxKvmy3/rU1MaXpWnyTsEcJxCcQ+B
60nTHD4KcFuzLqUDtU+B3kbiK/F5kX0zV3yCGa3NlsqecgTCgEJriYj7NreIyPtS
+j0HFw1QSVVq1w08p2smlMW0qf+Xsc6tYJtZyoloo+yfZa0pqv3IfeBStAM4vYp0
ZhfKDEuLpZ0Y87EBgsYv9sHjdVCeW6cHl8Ng27760n6jIXdX5hw+Ntc/ywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIF/x+kiMWu9u1+GmeeMQ8SjyEQXMB8GA1UdIwQY
MBaAFAbOWyhGa5J0JSYDE5LZS/GlWOhEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQnM1YktFWnJrblFsSmdNVGt0bEw4YVZZNkVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS80NWNmMzctYWZhNS00OTk0LWFlZGIt
NDg1YjIwOTUyZDkzLzEvQnM1YktFWnJrblFsSmdNVGt0bEw4YVZZNkVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS80NWNmMzctYWZhNS00OTk0LWFlZGItNDg1YjIwOTUyZDkz
LzEvQnM1YktFWnJrblFsSmdNVGt0bEw4YVZZNkVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPSu0Fl5A
ljoExh98//bbcSg/4PlpXOING9Gfxk+FbtxfEnFpy4BBL1O/dkd2X7RAFbFXal/C
HKZbb0UArA5RivrDHPq3CnGs0NPETRVjfp31lSJYXvbAXRhXdUh+q7r/sgw2ScJ6
LizOENoO0BkftszsG500Bn06YV8tBWWjrvL+srm+lFy+tMmEtO3EzEIZb58cCFXn
J+961zNZZgNPSqeuLg61k/tT4KY+EZaEgPYxkHSNvfZrLklKnecu3V+lTck7ayBx
zRkTP6RFGJgJ4dNClIEW5jjksIWVuPnZTbRvRT0PYDLhDtu7vCTPW90vb+TZ9bzU
IBOoBupyYm106w==
-----END CERTIFICATE-----
Generated at Fri Apr 17 16:46:31 2026 by rpki-client