Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
File: BDqcNdnhovTTSnVPom0gNleEchg.mft (raw, json)
Hash identifier: xHrjRqFiwTMfaw0D/iTIhS/NZ+cK8Xu1uoGgSYR6KNY=
Subject key identifier: 57:90:02:CB:DB:94:65:6D:4F:5B:8C:20:83:58:C7:28:1D:D6:89:BD
Authority key identifier: 04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18
Certificate issuer: /CN=043a9c35d9e1a2f4d34a754fa26d203657847218
Certificate serial: 019E1C0FD5123FFD44534E40E566388549AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
Manifest number: 173E
Signing time: Tue 12 May 2026 12:01:00 +0000
Manifest this update: Tue 12 May 2026 12:01:00 +0000
Manifest next update: Wed 13 May 2026 12:01:00 +0000
Files and hashes: 1: BDqcNdnhovTTSnVPom0gNleEchg.crl (hash: 3Ske5INvpZsqJ8IbopJ3b6EBujON99+gyoCrSblyDTQ=)
2: lTfd7GgHfFfG-NrFVv4P-oURL84.roa (hash: flnE10R0DAa5/66iQpSm47J0K/6sHRptDOR5dGtHv+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 12:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:0f:d5:12:3f:fd:44:53:4e:40:e5:66:38:85:49:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=043a9c35d9e1a2f4d34a754fa26d203657847218
Validity
Not Before: May 12 12:01:00 2026 GMT
Not After : May 13 12:01:00 2026 GMT
Subject: CN=579002cbdb94656d4f5b8c208358c7281dd689bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:e3:16:a9:56:cf:ab:53:39:09:e6:31:97:0b:
7b:44:be:33:00:bf:51:da:23:3f:2a:5e:64:96:3c:
65:80:6a:f4:95:18:90:3b:42:f8:33:29:5a:d5:ec:
e4:c8:be:56:bd:94:3b:8f:97:7e:dc:de:ac:bf:6c:
b5:03:cf:ed:9b:58:fa:c9:2f:f5:92:21:da:ab:41:
09:6a:b1:ec:5e:71:58:df:20:84:f4:97:fa:1c:0d:
e7:4a:3a:c3:01:8c:70:da:55:74:b1:44:ff:d0:e1:
0b:ec:85:a8:72:95:f9:77:fa:6d:47:8c:30:f0:cd:
a2:de:8d:73:2b:6c:67:a8:3f:7f:db:66:bc:2e:02:
44:78:1d:e0:6b:a0:28:30:d9:48:40:fb:5d:f5:1b:
3f:27:79:e5:b7:46:19:eb:fc:48:83:18:c7:4a:38:
35:13:e0:f8:87:af:52:ae:b3:65:8a:ef:9b:5d:13:
02:b3:d8:f9:90:61:b5:26:8e:c5:18:18:23:ed:51:
5b:7c:00:16:79:2e:8b:d6:6e:cf:27:e4:ef:d9:8c:
79:c2:ea:3b:60:13:af:0d:62:eb:78:ea:6a:50:fd:
fc:f3:b3:5b:d4:7e:6c:be:90:6a:b6:16:ee:ee:f6:
d8:60:6c:d7:63:d8:fe:04:ba:41:32:4a:36:f4:9e:
d6:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:90:02:CB:DB:94:65:6D:4F:5B:8C:20:83:58:C7:28:1D:D6:89:BD
X509v3 Authority Key Identifier:
keyid:04:3A:9C:35:D9:E1:A2:F4:D3:4A:75:4F:A2:6D:20:36:57:84:72:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BDqcNdnhovTTSnVPom0gNleEchg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/3b104a-c039-42c2-9ff1-85cbd2068e8f/1/BDqcNdnhovTTSnVPom0gNleEchg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:bc:17:d3:53:e1:8c:dc:83:51:99:23:10:be:b9:74:ed:a6:
f9:56:12:2a:d8:5e:1d:61:97:fc:ad:ff:2a:7f:d0:08:fb:25:
4c:09:24:99:e1:8e:93:94:d7:da:8c:9b:ee:59:0f:21:ad:55:
28:63:07:66:78:1b:e6:54:ab:5a:7e:97:8b:2f:82:91:21:fc:
07:26:41:20:f9:bd:03:ec:c9:b6:08:c7:e5:a9:ab:7d:70:47:
d0:2d:74:02:85:db:a2:fe:b8:de:bb:df:98:0c:be:4b:36:f1:
12:9f:d9:0b:5b:a2:5a:b0:4a:0e:af:9d:6d:f1:79:a9:13:6a:
5b:75:ec:14:8c:97:0c:41:7a:d1:6b:36:87:cd:7b:4b:ee:e0:
a7:14:47:65:bd:67:f5:44:55:31:f9:f6:69:c4:f4:7d:eb:df:
cf:54:18:af:57:c0:4f:32:58:7d:fb:f3:ca:4c:d5:41:69:40:
7e:58:73:e3:8f:df:e4:e4:7d:6f:1d:f7:e5:47:11:b1:60:3c:
cf:7d:94:af:75:af:30:f5:94:47:2c:88:8d:97:ed:a5:ce:53:
0e:b7:81:0d:f3:86:5d:11:60:39:ae:8f:b3:df:c0:57:22:e3:
ce:b5:27:48:d7:dc:a4:e5:2c:f1:86:ed:b2:e8:fe:94:fe:63:
ea:e9:8b:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:29:35 2026 by rpki-client