Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: WezB4Oii/JefoLDaf/2uE0sXTXoxThlsKN6a4jWfLsg=
Subject key identifier: 73:E6:FE:82:EA:4F:6C:6B:DD:5A:47:84:63:5A:65:BC:18:50:6B:49
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 019E1D2331685AD40646F9C11D069FFF8290
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 0504
Signing time: Tue 12 May 2026 17:01:46 +0000
Manifest this update: Tue 12 May 2026 17:01:46 +0000
Manifest next update: Wed 13 May 2026 17:01:46 +0000
Files and hashes: 1: IYMOXUXHdfqpKjykzQdeAdWLcJ4.asa (hash: FWNvBvGyrYr6QBDwf802RjeZhTSFfzKtYKuXY8CgspM=)
2: PGvLDQOEl1eDAyZzLgaLVXSVE_M.roa (hash: 84nzVcTSlRfWBNj/SgSbr5SPyeZcNdC5TuBdV+hRaRc=)
3: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: 4xeO/et8+mxFDnd1Q9lnHSk9QVCxt+cCm4wLVhZaWH4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:23:31:68:5a:d4:06:46:f9:c1:1d:06:9f:ff:82:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: May 12 17:01:46 2026 GMT
Not After : May 13 17:01:46 2026 GMT
Subject: CN=73e6fe82ea4f6c6bdd5a4784635a65bc18506b49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:f2:4b:21:24:4e:a6:12:9c:05:ca:3d:69:c6:
06:b1:4e:1d:94:69:4e:f9:88:01:c2:d7:e5:bf:61:
f2:e6:b7:28:0b:7e:91:b2:1d:9f:ac:44:8c:4e:2e:
1a:e8:a5:41:2b:95:93:e7:12:e0:32:c7:3e:b6:77:
c6:3e:19:e3:e0:43:78:14:b6:1b:14:e3:19:df:26:
f0:cc:e1:b9:34:48:52:06:67:70:55:23:9f:8d:0e:
34:f2:5f:5a:46:d0:21:3a:5c:b6:64:63:44:75:7d:
64:a9:b8:d1:94:4a:8f:49:c7:8f:2c:d4:aa:75:9e:
21:c4:be:d4:30:c8:2f:4c:2c:22:f1:73:b2:df:a9:
1b:84:1d:55:dd:2c:76:d2:b7:93:a1:ca:1f:62:3b:
a9:6c:94:c0:40:d7:60:d8:b5:fe:25:df:e0:56:b6:
49:77:93:94:d3:1a:55:63:e6:c4:87:9e:f3:c5:e5:
c1:bf:99:4b:5a:25:9d:44:00:32:b0:b1:d2:df:7a:
60:92:66:9d:d6:94:5b:76:a7:ce:82:81:86:fd:62:
af:21:a3:25:95:68:96:e5:c1:92:bd:88:ef:7e:ca:
12:75:c5:ea:b2:6c:b0:07:07:cd:a5:33:d6:c8:7a:
6c:59:c8:d9:57:fb:55:36:07:0d:46:42:0f:14:b4:
f9:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:E6:FE:82:EA:4F:6C:6B:DD:5A:47:84:63:5A:65:BC:18:50:6B:49
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:96:fc:b6:b5:3e:22:1a:91:a8:22:bf:6b:5c:b7:3a:f3:db:
75:ad:35:c2:7a:4f:13:5c:6d:26:e2:c8:d3:7c:45:1f:df:8c:
a7:09:17:fc:7b:80:ed:f4:b3:09:4c:c5:b7:73:32:eb:4f:c0:
0d:9e:ee:e7:90:6b:18:ff:2a:be:d7:28:b5:70:a7:72:f9:3b:
3a:8d:e0:64:38:de:40:8e:29:93:de:35:64:35:df:e3:bd:77:
c0:df:a6:e4:f5:5b:9c:9a:4c:84:9c:50:bf:51:e5:db:01:2a:
1b:fb:36:f4:df:83:38:21:a3:fd:86:ba:2c:71:4e:89:e4:2a:
28:87:37:9e:2c:bd:7a:00:81:ad:9a:df:1d:16:40:66:cd:2c:
0e:e2:8e:31:39:f3:80:9b:80:d8:95:05:15:dc:14:bc:61:12:
2e:0a:51:c1:ac:63:ce:d9:98:9d:b4:d2:64:c6:65:8a:cb:69:
ff:e0:ce:2f:00:44:c0:8b:fd:a6:55:2c:dd:91:48:09:b7:ff:
61:af:02:03:66:9f:0e:a6:3b:00:37:08:a3:9c:cb:38:5f:a9:
5b:63:54:e1:9e:98:fa:87:f2:9e:4d:3c:10:f7:4a:b7:b7:3c:
2b:6a:e5:1c:46:70:f9:73:2a:ff:67:b1:d3:d7:5c:6d:0e:1e:
c3:23:c6:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:38:08 2026 by rpki-client