Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
File: BkwamGxZM6O5EIToo_8IBm05jhk.mft (raw, json)
Hash identifier: 3oPYUIhtdtqJriTWJLKmmQ+m9h3oinccI39cDibx3JU=
Subject key identifier: 34:85:75:C4:69:BA:1B:7A:16:5A:44:A0:0E:81:DE:00:7C:9C:29:9A
Authority key identifier: 06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
Certificate issuer: /CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Certificate serial: 019EC06D74CB149886893E0A64598CD9A86C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
Manifest number: 0D6A
Signing time: Sat 13 Jun 2026 10:00:59 +0000
Manifest this update: Sat 13 Jun 2026 10:00:59 +0000
Manifest next update: Sun 14 Jun 2026 10:00:59 +0000
Files and hashes: 1: BkwamGxZM6O5EIToo_8IBm05jhk.crl (hash: 8Cy0aSTJmNBSm3lHs7tDSLAE/juXpN5zCtDamBzfbQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:74:cb:14:98:86:89:3e:0a:64:59:8c:d9:a8:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=064c1a986c5933a3b91084e8a3ff08066d398e19
Validity
Not Before: Jun 13 10:00:59 2026 GMT
Not After : Jun 14 10:00:59 2026 GMT
Subject: CN=348575c469ba1b7a165a44a00e81de007c9c299a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:af:4f:57:35:e4:1f:75:5c:60:81:0a:96:b5:
58:61:20:52:af:5b:23:9a:b2:da:25:49:e3:50:b6:
93:4c:bf:63:ec:72:e1:5c:f4:16:f6:c3:c1:67:92:
14:d1:ac:79:1e:2b:3f:cf:df:e9:58:dd:1c:20:c0:
ce:1c:98:30:85:08:18:70:d8:88:ce:7e:62:39:fd:
44:7a:cc:12:11:e9:ab:20:fe:56:b4:26:d5:a7:a3:
bc:f7:1d:04:a8:dd:2f:f7:24:cc:aa:b9:5f:62:37:
4a:9f:a9:15:f5:49:61:62:ef:58:30:2a:e7:49:99:
ca:5c:c0:f0:eb:dc:1b:ac:98:62:44:1b:86:6f:00:
5e:36:de:e2:f7:31:3e:80:ab:86:84:53:f6:49:fc:
5a:4e:18:20:c9:93:51:d2:e3:cf:14:c8:78:98:88:
75:c5:5f:42:64:e1:cc:cc:a4:cb:2c:b9:15:8b:4d:
61:31:15:67:b4:42:7f:db:1b:a4:e0:c5:f2:7d:5f:
f5:50:e5:bc:89:0c:90:d9:90:16:4b:67:27:79:ef:
b3:6c:20:28:86:e7:be:f9:91:46:56:b9:3c:e5:c9:
28:2f:d8:dc:27:86:5d:ca:ba:64:c3:57:11:59:89:
6d:0f:5f:4e:86:0b:6a:65:23:aa:42:d1:63:9f:40:
3d:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:85:75:C4:69:BA:1B:7A:16:5A:44:A0:0E:81:DE:00:7C:9C:29:9A
X509v3 Authority Key Identifier:
keyid:06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:75:52:7f:2c:49:6a:20:75:a1:ef:5c:08:ea:a2:cb:e6:af:
78:0c:82:93:17:c0:19:61:32:5e:49:bb:21:19:38:82:2b:89:
8f:d2:21:d5:6f:6c:8b:93:48:31:9f:33:48:78:f6:d8:31:d1:
af:09:26:48:3e:48:36:6f:33:77:0f:09:ce:68:65:92:88:6f:
d1:5c:cb:7d:a2:6e:7c:03:ff:e2:8d:be:d6:c1:4d:d2:12:a4:
e7:09:62:a6:c4:d2:ac:5c:67:60:91:fc:3b:26:a0:45:cd:3a:
6a:4a:e8:04:f1:90:5f:e0:63:3d:a9:e3:ac:2d:f8:23:46:0d:
12:cc:9f:99:ba:4f:0e:67:51:78:e5:d7:28:88:48:9c:98:73:
cf:f5:60:7b:36:8e:21:ef:f9:8e:9d:cc:7c:a0:9a:c7:44:25:
8d:e2:2f:74:83:9a:4a:c2:02:b0:62:de:4b:cc:c0:e1:24:0a:
c4:59:41:f5:8c:09:3f:e1:d5:0a:dd:e3:aa:38:b3:3b:7f:40:
fb:bc:c8:fa:4c:66:75:2d:fc:b5:4f:1c:37:e1:f6:26:b4:09:
8a:4d:7c:07:37:42:6f:9c:93:c1:67:12:49:89:82:d0:d8:b6:
76:aa:73:d1:80:94:ff:c7:f7:2f:67:c4:17:a6:54:25:88:60:
33:f1:62:b1
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7AbXTLFJiGiT4KZFmM2ahsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDA2NGMxYTk4NmM1OTMzYTNiOTEwODRlOGEzZmYwODA2NmQz
OThlMTkwHhcNMjYwNjEzMTAwMDU5WhcNMjYwNjE0MTAwMDU5WjAzMTEwLwYDVQQD
EygzNDg1NzVjNDY5YmExYjdhMTY1YTQ0YTAwZTgxZGUwMDdjOWMyOTlhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArq9PVzXkH3VcYIEKlrVYYSBSr1sj
mrLaJUnjULaTTL9j7HLhXPQW9sPBZ5IU0ax5His/z9/pWN0cIMDOHJgwhQgYcNiI
zn5iOf1EeswSEemrIP5WtCbVp6O89x0EqN0v9yTMqrlfYjdKn6kV9UlhYu9YMCrn
SZnKXMDw69wbrJhiRBuGbwBeNt7i9zE+gKuGhFP2SfxaThggyZNR0uPPFMh4mIh1
xV9CZOHMzKTLLLkVi01hMRVntEJ/2xuk4MXyfV/1UOW8iQyQ2ZAWS2cnee+zbCAo
hue++ZFGVrk85ckoL9jcJ4Zdyrpkw1cRWYltD19OhgtqZSOqQtFjn0A9oQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDSFdcRpuht6FlpEoA6B3gB8nCmaMB8GA1UdIwQY
MBaAFAZMGphsWTOjuRCE6KP/CAZtOY4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9mNjI1NTItMTRmMS00OTljLWFmNzgt
N2Y2YTY1NWZkNzg4LzEvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9mNjI1NTItMTRmMS00OTljLWFmNzgtN2Y2YTY1NWZkNzg4
LzEvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdXVSfyxJ
aiB1oe9cCOqiy+aveAyCkxfAGWEyXkm7IRk4giuJj9Ih1W9si5NIMZ8zSHj22DHR
rwkmSD5INm8zdw8Jzmhlkohv0VzLfaJufAP/4o2+1sFN0hKk5wlipsTSrFxnYJH8
OyagRc06akroBPGQX+BjPanjrC34I0YNEsyfmbpPDmdReOXXKIhInJhzz/VgezaO
Ie/5jp3MfKCax0QljeIvdIOaSsICsGLeS8zA4SQKxFlB9YwJP+HVCt3jqjizO39A
+7zI+kxmdS38tU8cN+H2JrQJik18BzdCb5yTwWcSSYmC0Ni2dqpz0YCU/8f3L2fE
F6ZUJYhgM/FisQ==
-----END CERTIFICATE-----
Generated at Sat Jun 13 20:21:16 2026 by rpki-client