Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: vgnwjIQo8y5uK7lw61TAGreW+1YO5SkCa/v1DbpS+hA=
Subject key identifier: B0:7D:C2:2E:5C:B3:C2:44:AF:8F:7A:2F:B8:E5:32:6F:6E:DF:2D:06
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 019D99D03F0867CE654F7DBDCF3A0F82EBF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 04C0
Signing time: Fri 17 Apr 2026 05:00:54 +0000
Manifest this update: Fri 17 Apr 2026 05:00:54 +0000
Manifest next update: Sat 18 Apr 2026 05:00:54 +0000
Files and hashes: 1: IYMOXUXHdfqpKjykzQdeAdWLcJ4.asa (hash: FWNvBvGyrYr6QBDwf802RjeZhTSFfzKtYKuXY8CgspM=)
2: PGvLDQOEl1eDAyZzLgaLVXSVE_M.roa (hash: 84nzVcTSlRfWBNj/SgSbr5SPyeZcNdC5TuBdV+hRaRc=)
3: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: Yu82nPgQWh1E3J/rPEZek4JS9M5dbMjtuYK+GzX627Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:3f:08:67:ce:65:4f:7d:bd:cf:3a:0f:82:eb:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: Apr 17 05:00:54 2026 GMT
Not After : Apr 18 05:00:54 2026 GMT
Subject: CN=b07dc22e5cb3c244af8f7a2fb8e5326f6edf2d06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:da:64:d7:2d:78:b2:71:84:0d:3f:5f:3e:f2:
8b:b7:02:3a:64:79:80:29:21:b0:33:e6:e6:b3:57:
81:9b:f2:fc:62:8a:4f:21:6b:35:29:14:cd:a8:e7:
b4:a4:eb:8b:9e:9e:ab:be:0c:72:06:71:b5:b9:9d:
d1:43:42:55:c7:3d:d7:df:cf:f9:b5:42:ce:31:fa:
a1:73:b7:cd:cb:25:00:26:a1:bf:82:bf:e6:d0:95:
26:03:5c:61:9b:10:ac:6d:be:39:00:98:b4:e5:af:
92:58:98:a0:e8:2e:b0:4e:3f:a2:98:5b:1b:ea:01:
40:fd:7a:de:30:1c:e7:0e:29:6f:08:1f:0e:f4:6a:
88:6d:f7:d1:73:95:85:08:c3:98:bf:b4:81:d3:67:
3e:ee:1e:8e:6d:ec:be:b6:91:30:f0:e2:71:9c:ea:
89:ba:00:e3:56:5d:b4:d0:3a:f5:cf:1e:fc:47:7d:
b2:80:2c:25:ab:a2:52:cf:27:ad:0b:3b:31:3a:12:
96:c4:1b:a7:78:e6:d3:a9:ea:70:87:e7:f3:26:d4:
cb:f9:d8:8a:95:89:b8:8a:ad:51:c5:5d:e2:a9:54:
77:c3:88:d9:17:c6:d0:c0:bd:26:d2:8e:e3:09:9d:
ac:8d:82:e3:37:64:53:31:34:c8:23:5b:64:80:d6:
89:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:7D:C2:2E:5C:B3:C2:44:AF:8F:7A:2F:B8:E5:32:6F:6E:DF:2D:06
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:35:48:2f:f0:fe:a9:e0:b7:d8:2b:0d:c1:01:d7:de:6d:f7:
f6:57:54:d3:36:21:11:e5:ed:77:6c:c1:e4:1e:cd:9c:f1:ea:
bc:e5:c6:94:94:9c:a9:ab:45:22:a3:61:5e:5c:3e:c2:d0:2d:
0d:66:5c:c8:73:f1:e2:b0:99:16:c2:5c:67:7e:2f:f4:36:fa:
e0:9a:8a:12:d2:e3:fc:76:22:38:ba:e8:ea:c9:02:f6:e7:3b:
28:5f:cb:76:ee:8d:58:7c:5f:d3:cd:77:2d:62:71:ae:a3:9e:
99:c0:49:05:1b:7f:66:99:9e:eb:c9:6f:a9:8a:d8:9b:41:82:
af:fb:2f:14:da:e5:dd:59:b1:98:98:f6:93:e1:ee:41:c7:96:
fb:79:b8:93:80:30:2b:cd:71:7b:ef:02:88:a6:3b:fd:0e:d1:
61:db:6c:dd:f9:7a:52:3c:a8:24:d9:aa:73:b9:e2:1d:84:55:
31:81:3b:26:1c:e5:1d:72:29:86:29:2b:0b:b0:fc:3b:c5:89:
9a:36:09:b7:b6:2e:5d:e4:67:e1:a8:ee:6c:87:f5:39:97:d4:
dc:1a:ac:7d:28:34:55:54:1f:96:c3:06:5f:da:83:89:5c:72:
0b:53:f8:51:58:55:fe:5d:94:39:6a:5c:aa:84:5d:6b:00:75:
a4:65:06:a6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Z0D8IZ85lT329zzoPguvxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZDJjZWQzNTJmMDFmN2ViNWRjNzYxOWVkNzE0YzZiNmE1
Yzc5MWUwHhcNMjYwNDE3MDUwMDU0WhcNMjYwNDE4MDUwMDU0WjAzMTEwLwYDVQQD
EyhiMDdkYzIyZTVjYjNjMjQ0YWY4ZjdhMmZiOGU1MzI2ZjZlZGYyZDA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAutpk1y14snGEDT9fPvKLtwI6ZHmA
KSGwM+bms1eBm/L8YopPIWs1KRTNqOe0pOuLnp6rvgxyBnG1uZ3RQ0JVxz3X38/5
tULOMfqhc7fNyyUAJqG/gr/m0JUmA1xhmxCsbb45AJi05a+SWJig6C6wTj+imFsb
6gFA/XreMBznDilvCB8O9GqIbffRc5WFCMOYv7SB02c+7h6Obey+tpEw8OJxnOqJ
ugDjVl200Dr1zx78R32ygCwlq6JSzyetCzsxOhKWxBuneObTqepwh+fzJtTL+diK
lYm4iq1RxV3iqVR3w4jZF8bQwL0m0o7jCZ2sjYLjN2RTMTTII1tkgNaJWQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLB9wi5cs8JEr496L7jlMm9u3y0GMB8GA1UdIwQY
MBaAFG3SztNS8B9+tdx2Ge1xTGtqXHkeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEt
OWRmNzI1MzBiNjY5LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEtOWRmNzI1MzBiNjY5
LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqDVIL/D+
qeC32CsNwQHX3m339ldU0zYhEeXtd2zB5B7NnPHqvOXGlJScqatFIqNhXlw+wtAt
DWZcyHPx4rCZFsJcZ34v9Db64JqKEtLj/HYiOLro6skC9uc7KF/Ldu6NWHxf0813
LWJxrqOemcBJBRt/Zpme68lvqYrYm0GCr/svFNrl3VmxmJj2k+HuQceW+3m4k4Aw
K81xe+8CiKY7/Q7RYdts3fl6UjyoJNmqc7niHYRVMYE7JhzlHXIphikrC7D8O8WJ
mjYJt7YuXeRn4ajubIf1OZfU3BqsfSg0VVQflsMGX9qDiVxyC1P4UVhV/l2UOWpc
qoRdawB1pGUGpg==
-----END CERTIFICATE-----
Generated at Fri Apr 17 07:25:20 2026 by rpki-client