Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
File: vB0gk2YmtVdDxllFEt5C75-OkF8.mft (raw, json)
Hash identifier: wNlvkk/whaatklIo/mvqbx+VQ8nnigrvfXN+9d2bFWQ=
Subject key identifier: B7:06:D3:A4:BC:0B:21:23:06:05:47:1B:D2:3C:90:50:29:83:39:6F
Authority key identifier: BC:1D:20:93:66:26:B5:57:43:C6:59:45:12:DE:42:EF:9F:8E:90:5F
Certificate issuer: /CN=bc1d20936626b55743c6594512de42ef9f8e905f
Certificate serial: 019D3940C5E3D69E50EFE98A226CAAD6B029
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 11:00:39 +0000
Manifest this update: Sun 29 Mar 2026 11:00:39 +0000
Manifest next update: Mon 30 Mar 2026 11:00:39 +0000
Files and hashes: 1: UQtxD39HgTwCJsw7WuZPliVb6kM.roa (hash: IcgnZ/5C7YQ9lKupVnJEvIWHWfxL8KqAvTe7EONdw78=)
2: vB0gk2YmtVdDxllFEt5C75-OkF8.crl (hash: 9f+InP8SHKm/5rMwqDydL+TtCGOjgc0P37Bw3WkT7l0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:c5:e3:d6:9e:50:ef:e9:8a:22:6c:aa:d6:b0:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc1d20936626b55743c6594512de42ef9f8e905f
Validity
Not Before: Mar 29 11:00:39 2026 GMT
Not After : Mar 30 11:00:39 2026 GMT
Subject: CN=b706d3a4bc0b21230605471bd23c90502983396f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:13:5d:c5:08:22:37:34:fc:a2:12:e9:f2:a1:
d8:fb:93:b7:89:98:e0:33:e6:f7:84:ca:c6:ed:a8:
40:fe:14:72:52:20:fe:31:6a:e3:86:cc:1d:49:74:
3d:a5:fa:65:7b:80:bd:84:81:df:5e:78:94:03:a5:
92:9b:9e:9b:65:00:dc:21:83:d8:db:a1:91:d1:fa:
9c:d8:1c:1a:51:67:c6:35:5d:a7:72:d3:b4:80:41:
aa:45:1c:81:a6:b7:d7:ae:31:3b:eb:29:90:42:43:
ad:e8:3f:c5:60:f4:b8:e7:02:4f:db:da:78:66:ef:
e7:c8:13:b6:d0:8f:ff:57:9f:aa:9d:5e:d4:e0:24:
0d:03:fe:ca:9e:26:99:86:1d:09:91:8f:3f:2b:9e:
0a:29:f6:70:93:87:35:28:37:17:f5:27:12:b5:a2:
3e:21:a3:75:1e:99:87:df:31:5d:23:35:64:ec:29:
ea:c7:6d:24:8f:4e:4c:13:07:d9:d4:cc:f6:77:2b:
64:c3:33:eb:fb:e0:ab:af:45:32:95:02:31:43:69:
02:aa:b2:5f:e1:7d:66:59:48:5b:e2:04:8d:b8:b3:
c8:a5:f8:4f:76:ea:2a:6d:ad:0d:09:18:73:17:da:
02:74:0b:be:82:46:48:1b:92:4a:f4:e7:27:80:76:
b2:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:06:D3:A4:BC:0B:21:23:06:05:47:1B:D2:3C:90:50:29:83:39:6F
X509v3 Authority Key Identifier:
keyid:BC:1D:20:93:66:26:B5:57:43:C6:59:45:12:DE:42:EF:9F:8E:90:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:17:44:c8:cc:82:94:36:0f:61:a6:0a:5e:6b:55:d5:1e:d8:
da:98:40:02:34:89:be:20:af:c3:93:60:f3:2e:82:08:91:29:
42:32:3c:36:ed:b0:79:8f:4e:ad:f3:86:25:f4:98:70:a8:69:
dc:cc:17:53:fa:99:bb:26:09:f7:d1:c4:1d:27:dc:8d:16:62:
71:a6:f3:55:17:e9:4b:7e:ea:94:b3:69:de:83:52:3a:38:f2:
01:24:79:9b:7c:08:ef:de:03:81:a4:3a:9c:c7:ef:d6:a2:ea:
0c:10:b8:8f:97:3d:09:e0:eb:a8:ff:c9:91:f6:f4:25:47:38:
d6:17:0b:bd:1c:85:57:16:4a:fb:be:6f:dd:50:eb:2f:ef:1d:
76:a7:fd:bf:ba:47:13:54:3c:1b:1f:db:ab:83:16:48:08:f2:
ae:44:2d:c9:e2:45:f6:96:a9:23:9a:82:03:fd:6c:89:38:ed:
44:c0:06:a4:b9:82:fa:76:ae:99:34:81:b5:19:4b:c0:db:52:
88:6f:33:20:43:3d:97:a2:27:97:a8:4d:84:07:6e:27:2b:b2:
90:21:de:2d:93:02:16:85:28:8c:cd:a3:2c:ae:9c:86:f3:26:
a8:6c:dd:aa:ca:17:33:93:e6:02:75:ed:71:d3:2a:d2:e0:d8:
56:6b:52:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:03 2026 by rpki-client