Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
File: Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft (raw, json)
Hash identifier: qcSzPJv/6UUaeW99cElqCW0irlOdy9OZGiQ+E7Zl2HM=
Subject key identifier: 20:BB:0C:01:7B:E2:33:FE:D8:CD:5E:4B:C9:E4:A9:54:22:AC:6D:9B
Authority key identifier: 06:CE:5B:28:46:6B:92:74:25:26:03:13:92:D9:4B:F1:A5:58:E8:44
Certificate issuer: /CN=06ce5b28466b92742526031392d94bf1a558e844
Certificate serial: 019CAC7E5813BD483F9B55725B5590D2D5D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bs5bKEZrknQlJgMTktlL8aVY6EQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
Manifest number: 158A
Signing time: Mon 02 Mar 2026 03:01:26 +0000
Manifest this update: Mon 02 Mar 2026 03:01:26 +0000
Manifest next update: Tue 03 Mar 2026 03:01:26 +0000
Files and hashes: 1: Bs5bKEZrknQlJgMTktlL8aVY6EQ.crl (hash: cUsMVnHLj70/isn2n4yg+TdvCruSC9uAKLQWbWZEYPc=)
2: sQyne1zxQXu_zdF8YvRFUzS8ZEg.roa (hash: KddIGoSYVIL2Nj4926PBtsXbFubGN3uCRL3ozwJnP+8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Bs5bKEZrknQlJgMTktlL8aVY6EQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 03:01:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7e:58:13:bd:48:3f:9b:55:72:5b:55:90:d2:d5:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06ce5b28466b92742526031392d94bf1a558e844
Validity
Not Before: Mar 2 03:01:26 2026 GMT
Not After : Mar 3 03:01:26 2026 GMT
Subject: CN=20bb0c017be233fed8cd5e4bc9e4a95422ac6d9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:dc:f6:13:c3:59:1f:9d:e2:08:15:9d:07:01:
8b:f5:24:ac:47:07:33:55:cc:72:6e:bc:53:7c:07:
f3:58:b9:c1:5e:1d:b9:2f:a2:e1:31:67:ba:84:5c:
fe:5f:d6:e9:33:a1:7a:42:c0:5a:6d:49:37:4c:7e:
fa:79:54:cf:22:ab:65:3a:15:21:66:e1:14:29:45:
41:75:da:13:30:0c:8c:b0:da:3c:de:d6:de:f5:2d:
d2:c9:1f:55:8a:27:64:dd:ec:ad:e3:a9:66:75:70:
b4:33:be:a8:8f:47:75:c0:49:57:06:1a:25:1e:f8:
cf:5e:20:53:2b:6e:85:85:b6:7c:c1:cc:b1:d6:6f:
8d:18:0d:3c:52:cb:bc:aa:07:64:0e:cf:29:8a:d8:
d5:34:0e:5c:77:f6:df:69:fd:65:d2:04:9a:42:cf:
5f:9b:98:32:ac:d2:75:8a:f7:45:a0:bc:1b:bc:53:
ea:df:4f:43:b2:70:a3:81:13:d1:f4:08:09:76:f7:
62:51:ea:2e:62:23:b0:a3:db:7e:f9:30:ee:dd:8e:
2c:52:84:e3:0d:5b:f5:ce:e6:c6:5c:b9:b4:c1:86:
fb:63:c0:b8:82:89:d1:a5:15:af:0a:da:76:11:5b:
d2:70:c8:79:75:0f:e5:dc:9f:63:b7:d4:49:d4:7b:
d4:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:BB:0C:01:7B:E2:33:FE:D8:CD:5E:4B:C9:E4:A9:54:22:AC:6D:9B
X509v3 Authority Key Identifier:
keyid:06:CE:5B:28:46:6B:92:74:25:26:03:13:92:D9:4B:F1:A5:58:E8:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bs5bKEZrknQlJgMTktlL8aVY6EQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/45cf37-afa5-4994-aedb-485b20952d93/1/Bs5bKEZrknQlJgMTktlL8aVY6EQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:4b:07:c2:d0:4e:c2:c3:76:60:0f:92:cc:3d:07:b4:ec:ee:
0b:de:24:4a:dc:41:07:bc:f1:f3:ab:85:c3:a5:d8:18:1a:ca:
30:0d:3c:81:5d:03:48:8b:3b:30:85:d6:e9:e5:a2:2f:e2:30:
19:3c:1d:85:9d:5c:10:ea:8c:bf:3e:06:ec:81:96:6b:a4:f0:
45:46:b9:d9:65:e3:85:b7:77:87:8f:68:fc:4e:e3:9f:b8:3f:
6d:6c:63:b6:cc:54:9d:b9:d1:7a:8f:eb:d6:d7:f9:25:63:53:
ea:98:62:2d:35:23:2c:91:4a:64:ab:e2:28:cf:ef:b9:d7:b8:
47:9a:cc:9e:e0:61:02:f0:cf:fc:57:9b:61:4f:4d:83:8f:ab:
6c:8f:a2:ce:1c:2a:6d:93:99:e4:7d:be:ae:d2:5d:ff:cc:53:
73:7b:a1:fc:18:3f:44:e5:e5:a8:74:61:78:4b:7f:e3:f7:0e:
1b:58:2b:3a:d6:22:41:99:b6:0b:d3:04:63:0a:f9:df:4a:e3:
b2:a5:63:64:2e:2a:7d:03:e4:6b:17:27:3b:1f:13:91:26:38:
34:9e:a1:ed:a5:9d:ff:b8:df:d1:dd:3d:9e:6d:e1:88:aa:21:
c5:d4:40:71:ed:b6:17:dc:b6:7f:a9:d6:0c:27:00:c9:71:b1:
fb:b9:12:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:22:45 2026 by rpki-client