Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
File: BsdGzX1N-VptA8qVVKdUdg1eTgY.mft (raw, json)
Hash identifier: pZaob1bn86gKdJPAEry7fsWEvVgVie4B31iRiK+WzOY=
Subject key identifier: 5C:BD:F5:38:EB:7C:20:FB:E4:CD:5B:C0:0F:E9:B6:FB:4C:28:17:DC
Authority key identifier: 06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
Certificate issuer: /CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Certificate serial: 019EBF919AFF305DE3E9D69336A268C35321
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
Manifest number: 09D1
Signing time: Sat 13 Jun 2026 06:00:50 +0000
Manifest this update: Sat 13 Jun 2026 06:00:50 +0000
Manifest next update: Sun 14 Jun 2026 06:00:50 +0000
Files and hashes: 1: BsdGzX1N-VptA8qVVKdUdg1eTgY.crl (hash: nLN3M6sF5wXAErDEWOA7Mb3eN+QulXWZ0CNFagRx8+c=)
2: NBGlz4BOwm_Rb4kwh-h4UA65oDk.roa (hash: Ugv5nwQuiMqwOwqv6jAyXgwzxe6xlFAAFYW63xYA81c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:9a:ff:30:5d:e3:e9:d6:93:36:a2:68:c3:53:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=06c746cd7d4df95a6d03ca9554a754760d5e4e06
Validity
Not Before: Jun 13 06:00:50 2026 GMT
Not After : Jun 14 06:00:50 2026 GMT
Subject: CN=5cbdf538eb7c20fbe4cd5bc00fe9b6fb4c2817dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:2c:22:de:49:db:37:09:21:07:15:b0:03:78:
6b:8e:ff:5a:f1:93:c8:c9:e1:be:01:33:63:14:d8:
07:13:fd:9e:b9:be:2c:b8:ff:d2:4d:d6:74:6a:a7:
01:61:00:c3:a2:5f:47:7c:00:5a:fa:67:f3:42:c2:
b9:0b:7e:68:b8:53:71:37:71:91:53:56:7c:e9:00:
93:cb:29:57:cb:91:93:2e:da:a9:18:cb:6e:94:56:
71:0b:46:2f:0c:22:25:d0:cb:19:75:86:63:84:98:
20:ce:43:8c:63:ef:4b:da:44:9d:8d:94:34:8a:20:
ef:60:ef:9e:6f:70:25:4d:9d:34:b8:67:4e:e3:ab:
d6:7a:96:60:36:22:69:8b:02:47:3d:7d:69:fc:10:
3f:14:4b:d7:31:56:05:2d:8e:9d:c8:76:b6:b6:b3:
a8:36:61:35:a3:09:2c:a4:ff:ca:81:99:c3:28:87:
c0:60:02:dd:c1:d8:5c:71:91:90:6f:fe:a7:53:ea:
c1:ed:3e:39:26:7f:26:ab:aa:2b:6a:70:7a:b0:41:
23:1b:ac:9f:af:18:54:64:8a:8e:d6:04:3c:c2:2c:
40:cd:29:78:25:b5:12:6d:e5:3d:34:ab:e5:69:b5:
3c:11:2c:34:f8:69:5f:05:d1:47:c0:34:18:39:4a:
29:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:BD:F5:38:EB:7C:20:FB:E4:CD:5B:C0:0F:E9:B6:FB:4C:28:17:DC
X509v3 Authority Key Identifier:
keyid:06:C7:46:CD:7D:4D:F9:5A:6D:03:CA:95:54:A7:54:76:0D:5E:4E:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsdGzX1N-VptA8qVVKdUdg1eTgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/952cd7-3297-4eaf-854f-b0afd45dcd78/1/BsdGzX1N-VptA8qVVKdUdg1eTgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:ab:19:11:76:60:9b:b5:ba:fe:5e:c9:4b:72:09:58:6d:d4:
fc:e5:f6:df:5d:06:13:dd:c9:3f:01:a0:7d:a1:16:82:71:7d:
1d:3f:65:32:df:03:b4:14:21:87:90:c9:6b:1e:0d:45:d5:cf:
1e:1d:a4:13:36:f4:ff:4d:f8:d6:8c:fa:65:fc:b2:f6:fb:f3:
23:6e:ad:29:05:23:0c:60:39:3a:86:fd:c5:33:19:15:ea:8b:
e8:86:ec:92:29:7e:7b:16:91:c0:22:26:69:39:85:3f:55:25:
e5:37:8e:ef:86:f3:30:c6:33:75:da:d0:9c:fb:fe:58:dd:77:
d5:fd:ca:1f:64:8f:89:74:a5:07:c3:14:4a:68:1e:89:7f:65:
61:e3:f0:79:44:87:e3:8c:3e:9d:53:9f:3f:50:97:a5:b5:cd:
4c:4c:b2:0a:8f:5d:23:ca:73:59:99:3c:72:03:2c:02:81:79:
6e:62:5d:bd:5a:d6:ad:f7:7f:53:0e:a8:c9:3a:7f:03:63:e4:
de:aa:49:ac:02:a4:16:34:2a:37:8e:75:78:a4:c5:77:7d:0c:
d4:1d:7d:ee:54:13:ca:77:2d:5a:6d:c3:4b:a9:46:d1:09:1e:
74:be:78:bc:33:ec:f3:36:7a:34:c6:5e:fc:f8:f9:75:cc:86:
c0:c2:c2:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:55:48 2026 by rpki-client