Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
File: BGelYhGyHprHzcj7Y58xCpLCEEw.mft (raw, json)
Hash identifier: 19wzIjCTmR3gjR9P1uVO70DTNDC3p+He4TwvQpD0aMk=
Subject key identifier: 75:EE:BB:62:2F:6F:E0:10:EA:79:58:76:E1:AC:9C:1E:A0:45:EC:8F
Authority key identifier: 04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
Certificate issuer: /CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Certificate serial: 019CA9B3F727E99A27C8D2C895680017E101
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
Manifest number: 0F27
Signing time: Sun 01 Mar 2026 14:01:09 +0000
Manifest this update: Sun 01 Mar 2026 14:01:09 +0000
Manifest next update: Mon 02 Mar 2026 14:01:09 +0000
Files and hashes: 1: 1-WmJXUzndEvurHNC9z-EdX-GqLg.roa (hash: k4/qUPEWtP0yhAjTXryxItYMnfRgWY9Qd/ypPo+vPZA=)
2: BGelYhGyHprHzcj7Y58xCpLCEEw.crl (hash: UHH7tv5zugpXtN8wmbHDALlUIQdyU2jpM/dMyVpG0Ks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 14:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:b3:f7:27:e9:9a:27:c8:d2:c8:95:68:00:17:e1:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0467a56211b21e9ac7cdc8fb639f310a92c2104c
Validity
Not Before: Mar 1 14:01:09 2026 GMT
Not After : Mar 2 14:01:09 2026 GMT
Subject: CN=75eebb622f6fe010ea795876e1ac9c1ea045ec8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b0:88:a0:80:07:92:79:e7:6e:43:63:3a:11:
5d:5e:c6:1c:ba:b9:c3:02:0f:68:f2:ac:db:2e:71:
4b:08:b4:1b:63:79:e5:b1:3c:8f:bd:fa:3b:51:6b:
f4:a0:7d:27:b0:38:2a:a3:c5:5c:3b:fd:59:96:dc:
63:1c:47:9f:b5:2f:0d:87:9c:c5:42:c9:77:47:f2:
54:88:ca:d5:37:6e:3d:b7:ff:c6:58:3b:60:3e:4e:
39:b6:1e:d7:c3:82:e6:21:a9:8b:2b:cc:22:b6:1a:
4f:13:fb:6d:02:37:4d:9e:ea:ad:bd:bd:e3:ab:ed:
a8:45:2e:e2:fb:53:ec:5a:02:ca:9e:d0:8b:15:a7:
4b:a8:8e:eb:54:2b:4f:24:da:63:4f:8f:d7:05:8e:
35:f7:2d:cf:ed:5b:9a:6c:c5:a9:95:68:1d:27:79:
01:d9:c8:49:cd:7a:3b:c7:b4:4f:6e:08:93:73:6b:
2a:f4:38:bf:27:e5:1a:4e:91:38:fe:08:66:a3:50:
19:db:5f:e4:21:8f:0b:91:2b:00:d4:cb:e0:f8:27:
6c:83:ea:ed:95:dd:eb:25:f4:e8:2b:2a:a9:3f:ef:
27:0e:89:e2:18:c0:da:51:c5:8d:c6:cb:90:14:a0:
fa:44:31:81:15:5f:6b:a9:47:2b:46:e9:df:c3:a7:
93:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:EE:BB:62:2F:6F:E0:10:EA:79:58:76:E1:AC:9C:1E:A0:45:EC:8F
X509v3 Authority Key Identifier:
keyid:04:67:A5:62:11:B2:1E:9A:C7:CD:C8:FB:63:9F:31:0A:92:C2:10:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BGelYhGyHprHzcj7Y58xCpLCEEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/045c4b-c0d7-4778-9f44-823ad2c2f5f1/1/BGelYhGyHprHzcj7Y58xCpLCEEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:cf:fc:0f:9c:aa:3d:cc:e9:ff:b5:1c:b6:0d:94:e5:2a:60:
6c:28:75:30:d0:29:90:cb:75:26:4a:d6:dc:0a:e5:c2:2a:b7:
f1:ec:ca:95:67:ef:af:aa:0b:44:b5:c6:dc:71:29:92:b4:0e:
ff:7a:d9:de:4e:7c:9f:79:e3:24:5d:11:3f:a1:be:12:72:91:
60:9b:c2:a9:8a:2e:a9:43:c4:d7:7b:7a:0e:29:04:53:32:b8:
61:2d:4c:98:39:44:2b:f6:e7:23:29:1f:89:3e:f6:5f:77:8d:
b4:57:b1:a6:2a:59:b9:ff:14:9a:9b:de:48:40:7f:11:9c:27:
23:6d:0a:2c:98:99:fe:75:f3:f9:33:de:be:46:54:ea:bd:31:
0b:2b:a7:0f:62:81:d8:76:4e:50:73:c2:df:b7:39:04:c9:5e:
13:1d:cb:dd:21:85:ce:9c:f8:4f:6f:6d:b4:f2:a1:61:bf:3d:
6f:42:3f:f7:fc:6b:a6:0a:d3:65:65:12:0a:e7:1a:60:f3:66:
1c:75:44:6f:5b:c2:36:71:1e:61:3d:18:4c:55:e2:31:ce:62:
f1:8d:aa:b0:35:44:64:5f:dc:86:7b:df:2d:ff:6f:bb:59:57:
17:3b:07:69:e2:4b:45:ef:a6:69:ea:fe:b9:8e:a8:85:5a:f8:
18:9c:78:d2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyps/cn6ZonyNLIlWgAF+EBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA0NjdhNTYyMTFiMjFlOWFjN2NkYzhmYjYzOWYzMTBhOTJj
MjEwNGMwHhcNMjYwMzAxMTQwMTA5WhcNMjYwMzAyMTQwMTA5WjAzMTEwLwYDVQQD
Eyg3NWVlYmI2MjJmNmZlMDEwZWE3OTU4NzZlMWFjOWMxZWEwNDVlYzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv7CIoIAHknnnbkNjOhFdXsYcurnD
Ag9o8qzbLnFLCLQbY3nlsTyPvfo7UWv0oH0nsDgqo8VcO/1ZltxjHEeftS8Nh5zF
Qsl3R/JUiMrVN249t//GWDtgPk45th7Xw4LmIamLK8withpPE/ttAjdNnuqtvb3j
q+2oRS7i+1PsWgLKntCLFadLqI7rVCtPJNpjT4/XBY419y3P7VuabMWplWgdJ3kB
2chJzXo7x7RPbgiTc2sq9Di/J+UaTpE4/ghmo1AZ21/kIY8LkSsA1Mvg+Cdsg+rt
ld3rJfToKyqpP+8nDoniGMDaUcWNxsuQFKD6RDGBFV9rqUcrRunfw6eTmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHXuu2Ivb+AQ6nlYduGsnB6gReyPMB8GA1UdIwQY
MBaAFARnpWIRsh6ax83I+2OfMQqSwhBMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQt
ODIzYWQyYzJmNWYxLzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zZC8wNDVjNGItYzBkNy00Nzc4LTlmNDQtODIzYWQyYzJmNWYx
LzEvQkdlbFloR3lIcHJIemNqN1k1OHhDcExDRUV3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb8/8D5yq
Pczp/7Uctg2U5SpgbCh1MNApkMt1JkrW3Arlwiq38ezKlWfvr6oLRLXG3HEpkrQO
/3rZ3k58n3njJF0RP6G+EnKRYJvCqYouqUPE13t6DikEUzK4YS1MmDlEK/bnIykf
iT72X3eNtFexpipZuf8UmpveSEB/EZwnI20KLJiZ/nXz+TPevkZU6r0xCyunD2KB
2HZOUHPC37c5BMleEx3L3SGFzpz4T29ttPKhYb89b0I/9/xrpgrTZWUSCucaYPNm
HHVEb1vCNnEeYT0YTFXiMc5i8Y2qsDVEZF/chnvfLf9vu1lXFzsHaeJLRe+maer+
uY6ohVr4GJx40g==
-----END CERTIFICATE-----
Generated at Sun Mar 1 23:43:41 2026 by rpki-client