Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: IVMWSBIj/aNQl6oOjctmI/LQLcGeDUPgJlLcSAcrP6s=
Subject key identifier: E5:18:9A:88:28:75:42:7F:52:71:0A:16:79:92:E3:FA:C3:37:9C:EE
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 019EC14942AEA4A3500390064E1705657DD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 0559
Signing time: Sat 13 Jun 2026 14:01:04 +0000
Manifest this update: Sat 13 Jun 2026 14:01:04 +0000
Manifest next update: Sun 14 Jun 2026 14:01:04 +0000
Files and hashes: 1: IYMOXUXHdfqpKjykzQdeAdWLcJ4.asa (hash: FWNvBvGyrYr6QBDwf802RjeZhTSFfzKtYKuXY8CgspM=)
2: PGvLDQOEl1eDAyZzLgaLVXSVE_M.roa (hash: 84nzVcTSlRfWBNj/SgSbr5SPyeZcNdC5TuBdV+hRaRc=)
3: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: YXXkdG/dMSFtEut4D9OFppUY8P063nNsb7jKcxfKitc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:49:42:ae:a4:a3:50:03:90:06:4e:17:05:65:7d:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: Jun 13 14:01:04 2026 GMT
Not After : Jun 14 14:01:04 2026 GMT
Subject: CN=e5189a882875427f52710a167992e3fac3379cee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:ac:69:82:e3:05:1b:1a:97:76:da:13:09:e2:
92:09:e3:47:7e:82:3e:b4:9c:7d:20:f0:cd:15:5b:
62:8a:37:8b:3b:cb:9d:4d:63:7a:ac:c8:5f:62:97:
7e:7b:f7:43:21:86:85:1d:86:9b:17:72:45:b8:2b:
2a:8e:95:54:b6:b4:48:60:8d:0e:64:d4:39:6d:73:
83:ac:bf:58:36:e9:83:36:05:7b:0d:28:50:d0:5d:
e5:6b:1c:13:6f:33:ab:9f:f1:aa:9c:82:75:3b:91:
58:c3:e7:4a:13:ef:85:ac:12:95:65:0d:31:5e:1e:
ec:bc:8a:a1:83:5b:84:e7:cf:1d:9b:e1:ff:5a:5e:
1e:67:0c:e0:0e:9d:49:c1:90:6f:0f:aa:1a:4c:aa:
bb:d2:9e:39:1c:8f:ad:95:50:28:ed:2e:a1:a4:c1:
24:f3:88:fb:1b:b9:97:77:ce:5a:eb:81:fc:16:3e:
69:36:6d:6a:57:ae:b0:74:1a:57:8c:a1:38:38:07:
62:e6:d1:62:8b:5b:7c:6f:93:b2:19:15:53:2d:2e:
30:67:44:27:75:34:fd:9b:45:54:62:85:ff:de:30:
98:ef:84:24:9c:e5:76:0c:36:f6:ca:0c:7c:20:35:
6e:1a:8d:24:c6:f3:2d:f0:95:09:e7:ff:27:9b:9e:
9e:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:18:9A:88:28:75:42:7F:52:71:0A:16:79:92:E3:FA:C3:37:9C:EE
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:df:63:39:bf:fd:f5:fe:07:a1:2c:53:92:7b:16:ab:39:1c:
e5:3f:91:8b:76:84:c9:dc:13:8a:e1:3f:e1:27:d4:26:36:71:
ee:2e:a8:15:c5:5a:52:90:45:ed:48:6f:1d:77:bf:d1:56:78:
df:cb:79:c0:7c:3c:7a:38:3e:08:ac:86:be:91:94:6b:81:e2:
91:f4:5b:6c:c1:bd:35:d6:31:86:cf:c1:42:9b:f6:4a:df:59:
38:de:d0:11:51:b8:7a:ac:02:33:b8:cf:49:31:14:00:e3:a6:
cd:ca:ff:91:1c:b7:13:d8:7b:6b:df:18:1d:82:2d:a1:57:8b:
5f:90:63:be:91:f8:04:7d:7c:29:38:57:20:4a:9d:1c:47:ef:
4c:3f:16:ed:75:6d:33:17:e7:d4:de:f5:3c:59:7c:29:df:e4:
55:4e:c7:11:4e:69:9d:42:79:57:f0:d7:86:62:a1:d6:fd:21:
fd:76:3c:44:dd:a8:b8:0b:8e:26:67:33:16:6e:68:5c:52:07:
31:19:92:6c:e9:ce:6b:11:25:1d:2a:6f:b5:a6:9a:3b:95:9e:
50:70:d1:ef:c9:e5:8f:94:47:3b:df:fd:80:0b:7c:6a:d2:ca:
fb:e6:23:64:59:69:79:79:35:e7:94:32:14:0e:4a:6d:df:a1:
36:63:1d:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:57:28 2026 by rpki-client