Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
File: bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft (raw, json)
Hash identifier: M6+1P5YxAh9S2KYAju/ipsbOfDuCNESNXuYIo7Ah5ZY=
Subject key identifier: 69:82:F4:22:E9:CF:B9:B7:92:B0:B5:2F:5B:E2:92:CC:F3:31:A1:49
Authority key identifier: 6D:08:5D:17:7E:EB:0C:B9:1A:42:F4:3E:2D:4C:3C:80:8D:EC:57:08
Certificate issuer: /CN=6d085d177eeb0cb91a42f43e2d4c3c808dec5708
Certificate serial: 019D9DACEBEDCC15010F1DFBA1468A9CBD20
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
Manifest number: 0168
Signing time: Fri 17 Apr 2026 23:00:48 +0000
Manifest this update: Fri 17 Apr 2026 23:00:48 +0000
Manifest next update: Sat 18 Apr 2026 23:00:48 +0000
Files and hashes: 1: 16nrOt17hZ1AZ2rbymVzCwBbT7s.roa (hash: g2WQdtjQynAE8UPOyiD7v/vN8Ha9qLkkkQyuaamGfmw=)
2: bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl (hash: CbqRYjo8X6i0dXj3mx0sJQ2jWDnTNGvHU0VFuyq/Pik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:ac:eb:ed:cc:15:01:0f:1d:fb:a1:46:8a:9c:bd:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d085d177eeb0cb91a42f43e2d4c3c808dec5708
Validity
Not Before: Apr 17 23:00:48 2026 GMT
Not After : Apr 18 23:00:48 2026 GMT
Subject: CN=6982f422e9cfb9b792b0b52f5be292ccf331a149
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a4:9a:45:b6:c0:98:74:ce:ec:dc:25:4b:ad:
72:23:bf:98:26:3f:53:81:1d:83:00:b1:5b:90:d6:
28:7a:98:d4:5e:13:89:85:86:39:b9:05:45:d4:7a:
ac:a1:94:4e:d4:dd:32:8e:9e:95:a0:8c:f2:47:b7:
c4:eb:06:97:35:fc:7c:85:ad:c2:e8:89:9f:e0:74:
aa:6e:bc:8d:8d:ad:18:8b:2e:9b:77:79:1c:54:a0:
ea:8f:91:2f:15:9c:47:ae:5d:5a:64:3f:49:5b:44:
c4:ac:70:a5:b3:7b:29:db:37:ca:98:b2:ba:84:29:
45:24:6e:7b:4e:0a:4c:f6:4c:2e:7c:9b:12:22:d7:
6d:29:1d:6e:65:8e:38:d9:34:35:c2:32:d4:55:e9:
12:c5:e5:70:1c:fa:6a:02:be:36:38:f2:1b:e3:15:
ca:98:f7:9c:92:6c:78:03:db:b0:40:93:80:f3:35:
08:db:fa:be:77:56:21:91:22:bb:17:f4:79:be:da:
7f:65:b2:81:80:5e:33:39:27:6a:7b:e7:05:02:ef:
9b:56:b4:20:5f:4a:53:75:dc:01:aa:46:f0:9e:ce:
f5:db:d9:3e:36:dc:17:95:bb:b9:28:a0:2e:79:5a:
05:95:46:23:7e:34:ff:fc:8b:d1:5a:7b:63:c4:73:
05:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:82:F4:22:E9:CF:B9:B7:92:B0:B5:2F:5B:E2:92:CC:F3:31:A1:49
X509v3 Authority Key Identifier:
keyid:6D:08:5D:17:7E:EB:0C:B9:1A:42:F4:3E:2D:4C:3C:80:8D:EC:57:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:5f:78:74:e7:e9:00:1b:dd:96:5a:65:70:19:79:1a:f9:fc:
1e:5d:e6:b0:07:3f:0a:8f:05:8a:bc:52:18:09:b1:72:42:47:
88:36:59:c5:91:1e:f6:ab:0d:48:dc:9e:14:5b:1f:28:e6:29:
70:1e:50:1e:aa:f4:0c:34:d7:a1:51:14:b8:08:ad:b5:51:6c:
00:17:b9:ff:83:ff:cd:b8:d6:11:8d:d8:c1:1a:12:02:00:d3:
6a:fa:3d:f4:28:9b:53:9d:1c:95:13:39:db:30:8d:00:80:e9:
f0:e2:05:c4:24:fe:98:11:7c:cf:f9:ac:12:23:dc:69:78:ea:
8c:f6:8b:ca:bc:49:3d:3e:d4:70:38:a2:c7:62:8d:95:77:2a:
95:6a:80:59:73:3c:50:08:b5:3a:49:6a:ac:b7:3d:bc:da:f8:
fa:d7:da:d7:96:31:fe:c0:e9:53:32:0a:f1:e7:55:b1:87:18:
8a:3f:db:8f:12:d9:13:0b:bb:40:b3:98:e4:ed:0b:5a:01:f9:
f5:91:21:b1:16:97:8e:17:a7:b5:05:6e:cb:48:0a:b2:b9:be:
28:4d:4e:82:2e:d4:78:47:67:ed:4e:ac:c2:17:ca:65:10:85:
a4:17:c9:d7:f5:74:53:2b:b5:ad:29:54:07:78:47:bb:f0:1b:
29:fb:35:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2drOvtzBUBDx37oUaKnL0gMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMDg1ZDE3N2VlYjBjYjkxYTQyZjQzZTJkNGMzYzgwOGRl
YzU3MDgwHhcNMjYwNDE3MjMwMDQ4WhcNMjYwNDE4MjMwMDQ4WjAzMTEwLwYDVQQD
Eyg2OTgyZjQyMmU5Y2ZiOWI3OTJiMGI1MmY1YmUyOTJjY2YzMzFhMTQ5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwaSaRbbAmHTO7NwlS61yI7+YJj9T
gR2DALFbkNYoepjUXhOJhYY5uQVF1HqsoZRO1N0yjp6VoIzyR7fE6waXNfx8ha3C
6Imf4HSqbryNja0Yiy6bd3kcVKDqj5EvFZxHrl1aZD9JW0TErHCls3sp2zfKmLK6
hClFJG57TgpM9kwufJsSItdtKR1uZY442TQ1wjLUVekSxeVwHPpqAr42OPIb4xXK
mPeckmx4A9uwQJOA8zUI2/q+d1YhkSK7F/R5vtp/ZbKBgF4zOSdqe+cFAu+bVrQg
X0pTddwBqkbwns7129k+NtwXlbu5KKAueVoFlUYjfjT//IvRWntjxHMFRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGmC9CLpz7m3krC1L1vikszzMaFJMB8GA1UdIwQY
MBaAFG0IXRd+6wy5GkL0Pi1MPICN7FcIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlFoZEYzN3JETGthUXZRLUxVdzhnSTNzVndnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8wNTM4OTItNzNiZS00MTJlLTk1NTkt
OTdkNDkzNDhjYzAxLzEvYlFoZEYzN3JETGthUXZRLUxVdzhnSTNzVndnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy8wNTM4OTItNzNiZS00MTJlLTk1NTktOTdkNDkzNDhjYzAx
LzEvYlFoZEYzN3JETGthUXZRLUxVdzhnSTNzVndnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN194dOfp
ABvdllplcBl5Gvn8Hl3msAc/Co8FirxSGAmxckJHiDZZxZEe9qsNSNyeFFsfKOYp
cB5QHqr0DDTXoVEUuAittVFsABe5/4P/zbjWEY3YwRoSAgDTavo99CibU50clRM5
2zCNAIDp8OIFxCT+mBF8z/msEiPcaXjqjPaLyrxJPT7UcDiix2KNlXcqlWqAWXM8
UAi1OklqrLc9vNr4+tfa15Yx/sDpUzIK8edVsYcYij/bjxLZEwu7QLOY5O0LWgH5
9ZEhsRaXjhentQVuy0gKsrm+KE1Ogi7UeEdn7U6swhfKZRCFpBfJ1/V0Uyu1rSlU
B3hHu/AbKfs14g==
-----END CERTIFICATE-----
Generated at Sat Apr 18 02:47:10 2026 by rpki-client