Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: twPRQQ1ozsg2he2GIYp2fztVPcHppnev40XLjpqnKG8=
Subject key identifier: 94:65:E0:43:66:2C:86:2A:41:86:64:EB:04:62:6D:F0:E3:BD:A4:11
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 019D25F124A1A73B3DEB263BCF24E728A1E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 0484
Signing time: Wed 25 Mar 2026 17:00:53 +0000
Manifest this update: Wed 25 Mar 2026 17:00:53 +0000
Manifest next update: Thu 26 Mar 2026 17:00:53 +0000
Files and hashes: 1: IYMOXUXHdfqpKjykzQdeAdWLcJ4.asa (hash: FWNvBvGyrYr6QBDwf802RjeZhTSFfzKtYKuXY8CgspM=)
2: PGvLDQOEl1eDAyZzLgaLVXSVE_M.roa (hash: 84nzVcTSlRfWBNj/SgSbr5SPyeZcNdC5TuBdV+hRaRc=)
3: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: pgz37rRnCmbHrB2YPghuxjet315nhTpn6f5VovYDkPQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:24:a1:a7:3b:3d:eb:26:3b:cf:24:e7:28:a1:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: Mar 25 17:00:53 2026 GMT
Not After : Mar 26 17:00:53 2026 GMT
Subject: CN=9465e043662c862a418664eb04626df0e3bda411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:aa:1f:52:cf:0a:f2:e3:76:0f:a7:aa:e8:1a:
70:10:3e:c0:92:a1:1f:26:b5:43:f7:d8:4a:a6:43:
4f:de:c3:6c:e2:23:27:d0:44:bd:ae:6f:64:df:c2:
d9:c4:d1:ec:a1:06:e2:ea:8a:5a:ec:7f:dc:a8:b5:
bc:ca:a4:ec:39:a5:60:2a:ad:b0:41:6d:93:d9:a8:
58:eb:53:ed:11:35:6f:ed:47:8f:1c:44:2b:24:bb:
d4:18:c2:c6:05:dd:83:32:dc:db:63:ec:1b:77:12:
10:92:21:06:19:a9:08:b5:37:78:54:09:3d:92:a2:
82:24:2e:d5:e4:c3:9f:d0:c7:96:3b:ba:55:5a:5d:
5d:2c:91:f4:5c:ac:fe:10:ea:b9:d9:b7:0c:31:bb:
ec:8a:ea:d6:48:be:cd:c4:8d:b9:a6:74:4c:dd:06:
b4:ed:39:63:81:25:45:e8:d6:5a:a5:29:0e:02:cd:
17:4f:b3:fa:37:4f:17:79:05:49:fb:fa:35:7f:84:
8b:91:70:97:e7:ad:be:25:12:32:c0:f0:be:5c:63:
8b:e5:00:35:62:d4:28:22:22:4b:eb:3f:d5:bb:d7:
22:c1:b1:a6:98:f8:5f:fa:41:d2:9b:25:dc:1c:d7:
ae:47:2e:ec:48:e7:b2:1e:23:5c:b1:de:0b:e6:16:
f6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:65:E0:43:66:2C:86:2A:41:86:64:EB:04:62:6D:F0:E3:BD:A4:11
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:86:fd:ed:72:b8:36:0d:d6:56:bc:fa:31:a9:c7:9f:d4:77:
43:f3:af:2e:cc:03:b2:89:6e:0e:84:1e:1f:06:53:0e:31:47:
27:ad:b5:fc:d0:3d:48:4f:f0:5e:64:76:a9:1c:be:55:d5:af:
ae:57:a0:20:53:0b:dd:cc:79:9a:41:ba:12:b5:12:0e:40:8f:
4a:fd:7f:e9:27:3c:29:83:4c:41:17:c5:29:63:7c:52:73:21:
e2:00:3e:16:ae:81:8d:a9:f6:d7:7e:56:26:72:23:15:6f:cf:
3e:45:cd:d1:9a:d8:d4:03:c0:26:6b:5a:18:0c:71:2c:5b:aa:
37:46:5c:18:38:08:cb:c0:b1:62:c9:31:7c:db:5f:dc:46:40:
18:a0:2c:25:7d:49:20:f4:76:bd:ef:7f:94:4e:69:e7:8c:63:
cb:8f:db:37:36:46:f1:ae:85:c2:3f:8c:95:ca:70:b4:ef:4f:
17:9a:6d:86:cf:0f:9d:8c:87:da:bb:c8:81:0e:ab:70:58:a2:
a4:ff:f3:c9:40:1b:00:a9:44:a3:e4:1d:dd:25:1e:f9:d7:17:
54:08:19:8a:3d:ec:1a:97:2c:57:4f:9a:fc:d5:b2:39:1a:f6:
54:be:4e:ab:bc:11:f2:a0:a0:1b:55:b5:1f:83:c3:c7:d3:1e:
66:f5:dd:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 21:25:39 2026 by rpki-client