Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
File: bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft (raw, json)
Hash identifier: UydLP99gDyUIvydN1pZPl6oFS/nLZbgfrRwQgeGQvok=
Subject key identifier: 90:01:8C:FB:F3:AD:B3:81:61:34:61:3B:29:8B:0E:CE:50:54:0C:F8
Authority key identifier: 6D:08:5D:17:7E:EB:0C:B9:1A:42:F4:3E:2D:4C:3C:80:8D:EC:57:08
Certificate issuer: /CN=6d085d177eeb0cb91a42f43e2d4c3c808dec5708
Certificate serial: 019CB023EA94BC602C1B1D4E7EF0D0ADF150
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
Manifest number: ED
Signing time: Mon 02 Mar 2026 20:01:09 +0000
Manifest this update: Mon 02 Mar 2026 20:01:09 +0000
Manifest next update: Tue 03 Mar 2026 20:01:09 +0000
Files and hashes: 1: 16nrOt17hZ1AZ2rbymVzCwBbT7s.roa (hash: g2WQdtjQynAE8UPOyiD7v/vN8Ha9qLkkkQyuaamGfmw=)
2: bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl (hash: pA8eeDBib9L/3HvApqTJVNXRm+AEmrTi4U01CUVIC9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b0:23:ea:94:bc:60:2c:1b:1d:4e:7e:f0:d0:ad:f1:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6d085d177eeb0cb91a42f43e2d4c3c808dec5708
Validity
Not Before: Mar 2 20:01:09 2026 GMT
Not After : Mar 3 20:01:09 2026 GMT
Subject: CN=90018cfbf3adb3816134613b298b0ece50540cf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:c9:0d:e7:5a:57:6f:33:74:d5:bc:07:67:c5:
e0:d8:eb:79:ea:9e:6c:1b:d3:c1:1f:66:5f:8b:50:
1c:e3:a7:4c:a7:59:5a:a1:90:30:83:27:93:6b:8e:
33:a4:b8:50:46:53:d9:ae:0a:02:33:e2:82:ee:8b:
e8:11:f7:17:da:db:4f:ed:21:12:a5:2e:5d:f0:b5:
a7:86:05:e3:52:28:4e:ac:df:15:22:cb:c4:f3:92:
7d:d3:5c:31:07:7c:69:69:7b:88:d1:38:b1:13:00:
93:0d:4f:52:8a:e5:99:bf:40:b3:ff:04:53:3e:13:
30:1b:db:cd:ba:40:d8:ae:20:dc:4b:db:e7:c0:51:
e1:47:e7:55:d5:45:b5:d0:ca:74:cf:c7:44:2d:88:
43:54:0a:b6:3c:c6:48:86:8e:59:52:1c:be:37:b9:
95:2b:6a:53:51:1d:64:f0:00:bd:35:77:c1:a9:8b:
c2:6f:17:9d:3c:96:bc:36:32:e6:d1:9b:b7:f0:5e:
a1:6b:45:77:11:64:6d:29:50:eb:0e:81:d1:a8:79:
78:06:a5:cf:c6:2f:91:e8:04:07:4c:6e:1a:14:f1:
2b:b5:ae:99:b0:38:64:ae:2d:bc:e6:a4:4d:0f:56:
d8:b8:a1:b9:cf:cf:12:0e:b6:49:69:16:64:e2:29:
5a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:01:8C:FB:F3:AD:B3:81:61:34:61:3B:29:8B:0E:CE:50:54:0C:F8
X509v3 Authority Key Identifier:
keyid:6D:08:5D:17:7E:EB:0C:B9:1A:42:F4:3E:2D:4C:3C:80:8D:EC:57:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQhdF37rDLkaQvQ-LUw8gI3sVwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/053892-73be-412e-9559-97d49348cc01/1/bQhdF37rDLkaQvQ-LUw8gI3sVwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:b1:5c:56:1d:e5:dc:7f:bb:48:02:53:f2:e5:84:d8:76:17:
84:46:e8:2f:b6:59:cd:e9:de:4d:83:a8:f2:76:38:e1:91:da:
e7:50:77:2f:f8:91:ad:91:b6:f4:bf:a3:14:fc:48:8a:f2:19:
a3:19:ac:a7:e4:35:51:44:c0:02:b4:f9:96:ad:89:bb:a6:21:
35:3f:69:9c:0d:30:52:a2:e3:65:ce:3b:2b:f4:75:bc:af:f8:
b4:bf:29:fe:e3:19:3e:b1:c1:ac:bb:e9:ca:9d:4b:1d:cc:fb:
e4:ea:07:09:dd:eb:3a:5d:72:14:c7:96:1b:eb:55:ae:1f:74:
b4:a9:fe:86:5d:e1:96:ad:d9:9b:df:fe:84:45:5f:2f:79:86:
b9:56:2d:bf:d5:90:92:93:31:a3:fe:5f:40:02:55:90:bd:f9:
9f:c6:98:36:59:e4:c3:65:4b:b7:a5:51:43:9c:ad:d6:15:bb:
6a:45:f3:af:0a:06:c0:c9:3e:0b:82:97:40:10:61:af:f6:25:
33:a5:6e:29:df:9d:9b:32:d1:95:ea:cc:c2:bd:d3:ac:f1:dc:
f3:a0:65:6b:05:9f:40:03:f7:a2:5c:e9:9d:97:3e:5c:f4:f7:
cc:c9:60:ea:8a:53:a4:a4:37:f7:c2:6f:ac:10:05:be:dc:0c:
03:7e:e1:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZywI+qUvGAsGx1OfvDQrfFQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkMDg1ZDE3N2VlYjBjYjkxYTQyZjQzZTJkNGMzYzgwOGRl
YzU3MDgwHhcNMjYwMzAyMjAwMTA5WhcNMjYwMzAzMjAwMTA5WjAzMTEwLwYDVQQD
Eyg5MDAxOGNmYmYzYWRiMzgxNjEzNDYxM2IyOThiMGVjZTUwNTQwY2Y4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8ckN51pXbzN01bwHZ8Xg2Ot56p5s
G9PBH2Zfi1Ac46dMp1laoZAwgyeTa44zpLhQRlPZrgoCM+KC7ovoEfcX2ttP7SES
pS5d8LWnhgXjUihOrN8VIsvE85J901wxB3xpaXuI0TixEwCTDU9SiuWZv0Cz/wRT
PhMwG9vNukDYriDcS9vnwFHhR+dV1UW10Mp0z8dELYhDVAq2PMZIho5ZUhy+N7mV
K2pTUR1k8AC9NXfBqYvCbxedPJa8NjLm0Zu38F6ha0V3EWRtKVDrDoHRqHl4BqXP
xi+R6AQHTG4aFPErta6ZsDhkri285qRND1bYuKG5z88SDrZJaRZk4ilaswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJABjPvzrbOBYTRhOymLDs5QVAz4MB8GA1UdIwQY
MBaAFG0IXRd+6wy5GkL0Pi1MPICN7FcIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYlFoZEYzN3JETGthUXZRLUxVdzhnSTNzVndnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy8wNTM4OTItNzNiZS00MTJlLTk1NTkt
OTdkNDkzNDhjYzAxLzEvYlFoZEYzN3JETGthUXZRLUxVdzhnSTNzVndnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYy8wNTM4OTItNzNiZS00MTJlLTk1NTktOTdkNDkzNDhjYzAx
LzEvYlFoZEYzN3JETGthUXZRLUxVdzhnSTNzVndnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATrFcVh3l
3H+7SAJT8uWE2HYXhEboL7ZZzeneTYOo8nY44ZHa51B3L/iRrZG29L+jFPxIivIZ
oxmsp+Q1UUTAArT5lq2Ju6YhNT9pnA0wUqLjZc47K/R1vK/4tL8p/uMZPrHBrLvp
yp1LHcz75OoHCd3rOl1yFMeWG+tVrh90tKn+hl3hlq3Zm9/+hEVfL3mGuVYtv9WQ
kpMxo/5fQAJVkL35n8aYNlnkw2VLt6VRQ5yt1hW7akXzrwoGwMk+C4KXQBBhr/Yl
M6VuKd+dmzLRlerMwr3TrPHc86BlawWfQAP3olzpnZc+XPT3zMlg6opTpKQ398Jv
rBAFvtwMA37hlA==
-----END CERTIFICATE-----
Generated at Tue Mar 3 00:06:11 2026 by rpki-client