Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
File: vayPM9tKSgF12PjqfKdHUH5-geA.mft (raw, json)
Hash identifier: uPhKiZcWuqj/mywpYUxdj32YZrO0pnmzMaOWH6JSflM=
Subject key identifier: 41:D2:40:4C:29:55:47:C3:2A:1C:55:9D:19:DE:D0:A9:43:D0:A8:E9
Authority key identifier: BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
Certificate issuer: /CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Certificate serial: 019D1AFF32FF2E82BA70C556797844AA63A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
Manifest number: 0762
Signing time: Mon 23 Mar 2026 14:00:25 +0000
Manifest this update: Mon 23 Mar 2026 14:00:25 +0000
Manifest next update: Tue 24 Mar 2026 14:00:25 +0000
Files and hashes: 1: 7PbDe_nYhvXqWsMtgoEs1cO6pGs.roa (hash: WcP/5CSeIlCcfDT5pjIYJTPyHW6MDY4O9J5J3oJHDm0=)
2: rvT9ixLVhFvZilaGHVrnKnKLHi0.roa (hash: VJqU7a8hWI0u33FjmdulQyVd+Hd013Ix5KpxqBb6mxk=)
3: vayPM9tKSgF12PjqfKdHUH5-geA.crl (hash: pb6jsV2NZQxjkP3d9jK+rL6QDKLZBTsOf/a/WbgDth4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 24 Mar 2026 14:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:1a:ff:32:ff:2e:82:ba:70:c5:56:79:78:44:aa:63:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Validity
Not Before: Mar 23 14:00:25 2026 GMT
Not After : Mar 24 14:00:25 2026 GMT
Subject: CN=41d2404c295547c32a1c559d19ded0a943d0a8e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:77:05:d7:9f:a0:2b:f0:57:09:85:78:f0:53:
99:a1:bb:08:a2:aa:14:66:7c:4b:d3:bf:a8:db:2c:
1b:18:04:ca:fb:21:cc:87:6b:f3:34:c7:9a:3f:ab:
71:bb:09:68:96:4d:12:dd:34:3f:0d:56:4b:eb:af:
fa:69:c7:59:bc:e8:6f:8c:90:46:f3:31:19:99:14:
a8:f4:fd:f3:85:29:89:d8:07:64:5b:4e:a3:ba:94:
ff:30:06:9d:e1:0c:70:b1:0c:ea:99:5d:ea:ba:a7:
cc:1a:16:9b:c9:70:d5:00:60:b8:c9:6b:66:12:3a:
6c:07:c4:99:e2:c8:b4:b8:68:dc:51:f7:6f:6f:79:
d1:f6:62:e2:ca:d0:99:c9:e2:6b:1e:6e:e6:75:aa:
0c:94:9d:9a:4c:d6:2b:9e:0d:4f:1d:f8:35:11:cd:
be:4c:f1:b8:e0:9d:a5:ce:55:ca:68:c3:0d:c1:21:
36:d4:c1:6f:92:c7:43:bb:48:7b:01:04:52:77:45:
b5:db:75:db:27:64:49:e3:30:08:d1:dc:57:ae:ee:
27:cb:c4:e4:f8:4d:a2:96:c8:be:13:64:54:76:28:
ef:b0:1f:ae:a3:c3:b7:32:c3:43:df:3c:c3:1c:eb:
f0:76:dd:00:a3:00:b3:1f:ca:9b:91:84:5d:51:2d:
6b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:D2:40:4C:29:55:47:C3:2A:1C:55:9D:19:DE:D0:A9:43:D0:A8:E9
X509v3 Authority Key Identifier:
keyid:BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:4b:93:27:43:4a:44:80:9f:7e:d9:06:5a:12:27:b8:74:ac:
75:38:d6:6b:7f:e9:10:1f:4c:91:4b:db:dd:c6:04:a7:45:a9:
ca:18:38:47:84:ce:c1:50:2a:12:e4:6d:19:b2:a5:28:f7:c6:
d2:06:24:68:de:dd:ea:42:31:7f:51:c0:5a:8c:e5:c1:75:a7:
97:ee:93:4f:3c:2e:30:71:c9:32:4d:16:c1:41:0e:28:56:53:
68:e1:8e:5f:0c:7b:d3:02:74:19:b9:51:81:c1:4d:dc:4d:24:
4d:a4:36:84:b1:85:e6:9e:a6:ab:19:b1:99:aa:e9:32:91:7d:
96:67:82:97:2d:96:85:8f:02:0f:f3:3a:b5:75:21:30:f9:34:
6d:97:cb:fe:8a:04:45:85:72:4b:cc:6c:11:5b:a9:5b:2b:d3:
f5:6d:07:6e:13:bb:2c:45:5e:01:25:74:d7:40:07:af:93:06:
74:4b:7c:11:75:51:c8:ea:0c:0a:df:82:d8:07:fb:f7:7f:fe:
ab:e5:ca:96:cc:c6:2e:71:14:5d:46:f7:2a:fd:4d:d6:6b:0c:
46:ae:6d:28:0f:1b:9d:37:86:7a:a4:90:5d:ac:57:d4:42:f1:
32:b3:0b:2c:b4:03:37:1c:9d:e3:55:1c:ef:fc:30:29:17:cc:
cc:ad:8a:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 23 16:41:53 2026 by rpki-client