Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
File: vayPM9tKSgF12PjqfKdHUH5-geA.mft (raw, json)
Hash identifier: huEsjV2j/V9UrFs/FjkFI6y5mBNsPJXJGhw4yO1bxSw=
Subject key identifier: A6:FC:D1:9C:7D:43:5F:66:2D:89:4E:A8:F1:B1:21:6F:70:D1:AA:E6
Authority key identifier: BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
Certificate issuer: /CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Certificate serial: 019E295E2102BBEDC532694CEE147F7F6DD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
Manifest number: 07EE
Signing time: Fri 15 May 2026 02:01:35 +0000
Manifest this update: Fri 15 May 2026 02:01:35 +0000
Manifest next update: Sat 16 May 2026 02:01:35 +0000
Files and hashes: 1: 7PbDe_nYhvXqWsMtgoEs1cO6pGs.roa (hash: WcP/5CSeIlCcfDT5pjIYJTPyHW6MDY4O9J5J3oJHDm0=)
2: rvT9ixLVhFvZilaGHVrnKnKLHi0.roa (hash: VJqU7a8hWI0u33FjmdulQyVd+Hd013Ix5KpxqBb6mxk=)
3: vayPM9tKSgF12PjqfKdHUH5-geA.crl (hash: xUolr1iLq9iWCHIWfADirislJ8DW6wxhEzzaYlEjqDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:5e:21:02:bb:ed:c5:32:69:4c:ee:14:7f:7f:6d:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Validity
Not Before: May 15 02:01:35 2026 GMT
Not After : May 16 02:01:35 2026 GMT
Subject: CN=a6fcd19c7d435f662d894ea8f1b1216f70d1aae6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:02:1f:50:d8:a1:08:f8:e8:ee:1c:2b:d2:07:
6a:b0:53:3f:d3:29:e1:d6:37:2f:f9:b0:f2:4f:34:
5a:83:96:9d:ba:b8:02:94:95:b8:7b:c6:b9:8d:f9:
2a:59:26:6b:f3:51:c5:4a:d1:f6:01:f3:d4:f5:25:
1c:0d:03:be:aa:46:db:10:3b:35:26:42:6e:fa:b8:
8d:1c:d7:80:8e:0f:56:1a:4a:b4:de:46:b6:e4:2b:
46:19:1d:d4:69:c1:d5:69:a0:be:84:7a:f3:11:d4:
9c:68:f1:c4:32:52:e4:2d:c5:2a:8e:cb:8a:e8:65:
f0:f0:87:b1:8f:da:f0:b2:1e:16:85:d7:e8:4f:a3:
53:cf:12:1d:ef:b9:02:75:1c:fd:11:a9:a9:b9:a3:
32:bb:ba:0c:45:bf:1d:92:6f:49:d6:b2:ee:cc:70:
41:00:c8:c1:35:5f:f2:1c:e9:0c:c6:85:7e:18:96:
f6:b0:60:72:e7:f5:1a:38:b5:2c:f7:a9:f7:99:39:
c7:ca:c5:a1:0e:4f:15:7d:00:2a:a2:9c:31:85:c9:
92:33:28:92:79:f6:9e:92:95:27:21:f8:c8:2a:29:
6e:99:a8:26:36:f8:78:32:74:b8:2d:23:2e:2e:70:
2d:2b:c4:eb:65:41:74:c2:1d:e4:8d:e9:8d:f0:59:
4d:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:FC:D1:9C:7D:43:5F:66:2D:89:4E:A8:F1:B1:21:6F:70:D1:AA:E6
X509v3 Authority Key Identifier:
keyid:BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:ae:16:47:cd:42:0b:8b:16:8a:4e:46:9f:52:3d:9f:0f:ad:
15:bd:24:bc:22:44:c4:fa:c5:89:6a:bc:11:02:11:4e:4a:eb:
45:fe:9b:d2:53:c9:a2:55:57:99:ce:d6:3b:50:66:d9:dc:c5:
4d:a8:74:94:a1:21:45:a7:2e:c4:a3:fa:e6:cd:da:8b:54:b7:
11:fe:76:24:85:5a:c2:95:9f:17:6f:ae:4d:01:4c:ec:60:7a:
cd:e6:f1:2a:7e:2e:0b:a3:71:f0:9d:3e:e7:45:98:1e:bd:fc:
fd:9c:d9:34:f5:e7:04:08:73:61:5f:25:39:dd:41:6b:c3:d7:
2a:b7:b0:47:32:0a:da:c8:6e:41:29:7a:76:cb:6b:96:b5:27:
b3:dc:b9:6c:24:4e:da:74:ae:cb:31:c3:ee:a1:e1:0f:41:f7:
89:95:e4:be:30:88:61:db:68:ed:38:a2:8e:61:57:67:6a:ac:
9f:91:f4:85:5e:bb:e7:41:a8:2c:42:81:90:77:1e:22:45:56:
fc:52:20:52:51:c2:e4:6c:c3:40:47:b6:62:45:9d:1b:4f:29:
56:e1:1f:de:e8:24:1d:aa:62:25:69:f2:6c:8e:85:10:e6:eb:
cc:14:5f:5d:84:fa:ae:92:3a:4b:6e:b3:8f:5a:b9:88:6b:11:
ff:b9:b0:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 11:18:24 2026 by rpki-client