Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
File: bdLO01LwH3613HYZ7XFMa2pceR4.mft (raw, json)
Hash identifier: om7Z+vlLomCMGhoWoZJILS7gAtr85ZIp4hMuvP0Pl18=
Subject key identifier: D4:5D:97:37:91:53:94:FA:DE:3D:95:D3:74:E2:B7:8D:2B:FD:BD:C1
Authority key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
Certificate issuer: /CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Certificate serial: 019CA8809D4CA20D202273AE94A4F2BDE7E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
Manifest number: 0443
Signing time: Sun 01 Mar 2026 08:25:26 +0000
Manifest this update: Sun 01 Mar 2026 08:25:26 +0000
Manifest next update: Mon 02 Mar 2026 08:25:26 +0000
Files and hashes: 1: IYMOXUXHdfqpKjykzQdeAdWLcJ4.asa (hash: FWNvBvGyrYr6QBDwf802RjeZhTSFfzKtYKuXY8CgspM=)
2: PGvLDQOEl1eDAyZzLgaLVXSVE_M.roa (hash: 84nzVcTSlRfWBNj/SgSbr5SPyeZcNdC5TuBdV+hRaRc=)
3: bdLO01LwH3613HYZ7XFMa2pceR4.crl (hash: jjsajRvSJ2I9R+hElcnyJb7qI13wHByHmkmFMirmxis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a8:80:9d:4c:a2:0d:20:22:73:ae:94:a4:f2:bd:e7:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e
Validity
Not Before: Mar 1 08:25:26 2026 GMT
Not After : Mar 2 08:25:26 2026 GMT
Subject: CN=d45d9737915394fade3d95d374e2b78d2bfdbdc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:83:04:81:0f:64:25:f7:f8:46:59:05:fa:1f:
79:d0:3f:08:f9:7e:8b:92:e6:d1:25:a6:8d:f7:6f:
60:63:8b:7b:3b:36:86:35:c9:76:50:28:29:0a:d2:
30:20:91:b9:2c:2e:05:24:6c:7a:99:bf:b7:88:38:
91:c9:c3:17:07:6f:29:9d:8e:7f:fa:50:09:fe:00:
13:75:58:6c:50:77:16:fb:62:85:ff:a0:ab:94:97:
42:6a:6e:3c:40:37:b1:6f:28:59:9c:c8:3e:16:4c:
12:f4:45:5e:0a:95:41:83:91:0c:b6:5b:cc:3a:04:
b2:6d:b4:8e:00:4e:52:da:df:6a:17:e8:fc:12:94:
de:13:c1:57:c3:cb:1a:e3:77:a1:df:b4:20:df:ca:
85:6e:06:82:f8:f9:9a:aa:59:64:b0:b5:e2:6b:cc:
e2:f1:27:81:3e:f6:8a:c8:8e:45:ff:aa:a6:bd:b2:
d7:1a:72:40:6d:4e:12:aa:dc:36:60:d4:0a:ea:dc:
17:b0:4d:ff:69:0f:ad:d9:4d:43:09:f2:98:bc:60:
33:d0:31:03:15:09:a0:aa:3b:cf:e3:fd:c4:37:b5:
14:b8:b7:26:70:50:10:90:25:e8:9c:20:78:8b:b2:
92:f1:1a:ce:8f:7b:a2:61:ac:57:11:a1:f9:9f:ff:
a3:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:5D:97:37:91:53:94:FA:DE:3D:95:D3:74:E2:B7:8D:2B:FD:BD:C1
X509v3 Authority Key Identifier:
keyid:6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:6a:6a:a0:a8:bf:99:0f:7f:17:da:21:6c:d4:3b:aa:d7:72:
8d:4c:a4:86:82:94:f6:41:09:57:5e:79:6d:3a:e4:07:07:49:
86:69:38:c3:a3:df:8d:ce:d3:f2:b6:a1:90:3c:dd:49:c4:4e:
25:af:ca:cd:cb:8d:69:11:f2:85:88:07:1f:62:ae:ee:4f:6d:
a8:3f:a9:e0:58:a5:ab:d4:f5:a3:a0:c9:37:32:47:c8:6c:89:
f7:95:27:36:ee:25:b0:37:3c:52:53:f7:26:b6:3e:ed:a7:e3:
06:2b:1e:f9:36:91:e4:a5:c9:ff:65:1c:7b:5f:c7:86:3d:44:
8a:0a:4b:a9:60:2a:dd:2c:12:5e:8d:78:3a:ff:ef:2f:22:81:
65:7d:c2:ff:16:f8:83:34:94:18:e2:b2:92:03:df:48:8b:63:
b9:19:3b:50:96:86:42:05:14:ae:04:3e:10:a3:eb:8f:0a:8c:
cf:b1:62:f3:62:0f:08:5c:1e:a3:a0:b0:8f:e3:7d:0b:a2:ae:
44:5d:6a:8d:8f:29:a0:a6:3e:14:eb:34:93:f3:71:76:2d:51:
25:bb:be:ef:11:ee:17:b5:29:f5:fa:bb:e5:3f:b2:00:b4:a0:
15:5f:2a:42:df:d6:53:8d:d2:27:c0:3a:b5:7a:e0:15:19:57:
f2:cf:7a:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyogJ1Mog0gInOulKTyvefmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDZkZDJjZWQzNTJmMDFmN2ViNWRjNzYxOWVkNzE0YzZiNmE1
Yzc5MWUwHhcNMjYwMzAxMDgyNTI2WhcNMjYwMzAyMDgyNTI2WjAzMTEwLwYDVQQD
EyhkNDVkOTczNzkxNTM5NGZhZGUzZDk1ZDM3NGUyYjc4ZDJiZmRiZGMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnIMEgQ9kJff4RlkF+h950D8I+X6L
kubRJaaN929gY4t7OzaGNcl2UCgpCtIwIJG5LC4FJGx6mb+3iDiRycMXB28pnY5/
+lAJ/gATdVhsUHcW+2KF/6CrlJdCam48QDexbyhZnMg+FkwS9EVeCpVBg5EMtlvM
OgSybbSOAE5S2t9qF+j8EpTeE8FXw8sa43eh37Qg38qFbgaC+PmaqllksLXia8zi
8SeBPvaKyI5F/6qmvbLXGnJAbU4Sqtw2YNQK6twXsE3/aQ+t2U1DCfKYvGAz0DED
FQmgqjvP4/3EN7UUuLcmcFAQkCXonCB4i7KS8RrOj3uiYaxXEaH5n/+j+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNRdlzeRU5T63j2V03Tit40r/b3BMB8GA1UdIwQY
MBaAFG3SztNS8B9+tdx2Ge1xTGtqXHkeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEt
OWRmNzI1MzBiNjY5LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNi8yNDVlMWEtMDYxMi00NTk2LWE5NWEtOWRmNzI1MzBiNjY5
LzEvYmRMTzAxTHdIMzYxM0hZWjdYRk1hMnBjZVI0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk2pqoKi/
mQ9/F9ohbNQ7qtdyjUykhoKU9kEJV155bTrkBwdJhmk4w6Pfjc7T8rahkDzdScRO
Ja/KzcuNaRHyhYgHH2Ku7k9tqD+p4Filq9T1o6DJNzJHyGyJ95UnNu4lsDc8UlP3
JrY+7afjBise+TaR5KXJ/2Uce1/Hhj1EigpLqWAq3SwSXo14Ov/vLyKBZX3C/xb4
gzSUGOKykgPfSItjuRk7UJaGQgUUrgQ+EKPrjwqMz7Fi82IPCFweo6Cwj+N9C6Ku
RF1qjY8poKY+FOs0k/Nxdi1RJbu+7xHuF7Up9fq75T+yALSgFV8qQt/WU43SJ8A6
tXrgFRlX8s96kA==
-----END CERTIFICATE-----
Generated at Sun Mar 1 16:28:34 2026 by rpki-client