Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
File: vayPM9tKSgF12PjqfKdHUH5-geA.mft (raw, json)
Hash identifier: EvDXLPDXwnzOen9kPk7b47t2btFxQ+JlE29K5dQaNFQ=
Subject key identifier: 2B:58:F6:58:50:00:14:CC:8F:BC:6E:FD:3B:1E:A9:E6:E4:A1:17:B7
Authority key identifier: BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
Certificate issuer: /CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Certificate serial: 019F130A220991CF0172D7999D0327C3569D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
Manifest number: 0867
Signing time: Mon 29 Jun 2026 11:00:58 +0000
Manifest this update: Mon 29 Jun 2026 11:00:58 +0000
Manifest next update: Tue 30 Jun 2026 11:00:58 +0000
Files and hashes: 1: 7PbDe_nYhvXqWsMtgoEs1cO6pGs.roa (hash: WcP/5CSeIlCcfDT5pjIYJTPyHW6MDY4O9J5J3oJHDm0=)
2: rvT9ixLVhFvZilaGHVrnKnKLHi0.roa (hash: VJqU7a8hWI0u33FjmdulQyVd+Hd013Ix5KpxqBb6mxk=)
3: vayPM9tKSgF12PjqfKdHUH5-geA.crl (hash: XOJPWhTIqks0wk6EKXmZ3ZOhvxWL9mXkYQPX2LbMlic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 11:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:0a:22:09:91:cf:01:72:d7:99:9d:03:27:c3:56:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Validity
Not Before: Jun 29 11:00:58 2026 GMT
Not After : Jun 30 11:00:58 2026 GMT
Subject: CN=2b58f658500014cc8fbc6efd3b1ea9e6e4a117b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:1d:b0:9f:b8:80:0f:ad:cd:93:a8:dd:c5:7a:
55:3a:b7:9c:1d:e1:30:ff:c7:09:17:a5:25:c3:53:
81:a2:c2:78:67:30:1a:1c:10:d3:12:1b:5f:cd:bc:
92:0b:0d:ea:04:37:72:a2:ba:51:29:32:02:84:4e:
de:44:7a:14:4a:59:a4:6a:7e:d1:24:55:0c:03:7c:
56:f3:d0:e1:9a:48:db:c7:71:5f:c6:0d:22:80:4e:
ff:65:2c:5a:71:e2:06:a2:b2:e6:a8:3e:6e:35:7f:
f5:5d:c6:be:8a:ab:f1:ba:c2:23:d7:c1:34:77:47:
78:a3:c8:95:75:26:8b:8a:99:fb:4e:2b:f4:48:ab:
ce:6d:46:82:68:73:11:72:95:ae:28:69:b2:3f:1e:
72:68:54:ae:56:c7:bd:75:d4:bc:0b:07:17:91:41:
31:89:78:51:08:ea:72:02:5d:87:63:14:f9:54:1a:
88:c7:17:c6:a9:3b:59:8c:e1:45:56:64:de:06:00:
d5:bc:d9:0a:f2:d0:43:ac:ea:6a:11:84:17:ba:cf:
a0:18:cb:7d:5f:26:7d:ed:89:24:2c:d1:0e:2a:bf:
9e:5d:66:af:da:07:a4:4b:1f:ed:ca:df:a4:f6:d3:
25:da:d4:53:87:8e:7f:a7:1d:fc:be:d4:64:5a:23:
ae:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:58:F6:58:50:00:14:CC:8F:BC:6E:FD:3B:1E:A9:E6:E4:A1:17:B7
X509v3 Authority Key Identifier:
keyid:BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:02:a0:04:6c:73:fe:8b:7e:03:f3:08:2e:b3:dd:c8:f2:32:
85:eb:73:d7:95:ec:c5:ba:f9:77:cd:f7:42:9c:0d:c5:11:e7:
3a:d8:27:39:59:10:e7:05:72:a3:03:77:c2:8f:b4:24:a6:6a:
91:3c:43:bc:53:a3:31:c2:c7:27:db:6e:c0:87:79:99:53:05:
12:df:23:80:86:11:16:24:40:dd:64:df:b3:63:6d:fb:19:23:
c1:7e:df:a3:52:2e:33:f0:2d:f6:3d:dd:c9:9b:d3:53:19:9a:
08:99:f8:48:34:b6:3e:e2:36:d6:10:0e:19:bc:ca:07:76:83:
80:0e:ec:ea:c9:44:9a:a6:68:b4:22:9b:6c:0b:f7:e3:50:be:
e3:8f:d6:13:e1:23:53:2f:3e:45:7a:ed:93:c3:46:4e:76:67:
e1:92:96:d5:fc:6d:bf:d2:75:e9:8d:32:be:e1:48:0b:01:31:
a9:77:e9:5a:88:b8:94:53:66:e1:34:5b:68:8b:0a:15:32:b2:
70:16:fc:07:4d:c5:f8:ab:94:61:13:34:be:cf:89:7d:62:df:
e9:08:87:aa:e0:30:6a:b5:cd:2e:94:59:ba:89:df:bf:bd:fe:
da:89:3b:10:c0:27:b8:ef:24:a2:38:dc:24:f5:f6:b5:25:29:
ea:29:4c:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:43:15 2026 by rpki-client