Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json)
Hash identifier: rB+Cw+I+FcV57i3mfH8QIEclGSy0m+yDOr6hRqHZbMs=
Subject key identifier: 80:8E:9C:A7:9D:E2:52:F6:96:DE:16:83:53:65:EE:8B:61:03:28:71
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 019F111C23375D99AE6C76C3315BA280429F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
Manifest number: 1987
Signing time: Mon 29 Jun 2026 02:01:24 +0000
Manifest this update: Mon 29 Jun 2026 02:01:24 +0000
Manifest next update: Tue 30 Jun 2026 02:01:24 +0000
Files and hashes: 1: RP8MgkKEHlqeBOnUZe0z_Y0SQKk.roa (hash: Ptm5tesi9injee8NYFqMkun/MxMMcArohdb5avPOa5I=)
2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: 4jtEIdhmULjBFiF6YHuzZsHBZ15/OWRPeTik0bwo2FQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:1c:23:37:5d:99:ae:6c:76:c3:31:5b:a2:80:42:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: Jun 29 02:01:24 2026 GMT
Not After : Jun 30 02:01:24 2026 GMT
Subject: CN=808e9ca79de252f696de16835365ee8b61032871
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:63:ad:9b:54:11:2c:45:b8:80:77:53:43:95:
4b:82:f2:5b:08:09:24:c1:8c:33:e4:19:5f:ac:d0:
2f:93:e2:cc:35:3d:d5:53:5b:82:0d:ac:4c:41:05:
0c:20:8a:d4:20:73:11:c7:1d:21:39:07:da:95:6b:
61:ba:09:4b:51:74:2a:18:30:dd:9c:e4:e1:95:d7:
27:e6:25:a7:7f:e4:33:bf:3b:6d:15:25:a9:3c:35:
31:e4:98:ab:22:3e:5a:74:0f:28:7e:05:49:ae:3d:
00:4b:a6:35:4e:cf:31:46:00:af:c2:3e:6c:17:9f:
42:53:99:2f:97:f0:8d:9c:e1:28:2b:2f:ec:16:5e:
fa:ed:72:6e:9e:fc:3d:45:ab:05:f2:cb:67:42:e2:
10:3a:31:d4:49:a7:a0:4e:bb:79:43:d6:91:29:0e:
1f:88:e5:66:f0:c3:94:e9:ea:ce:ce:ae:ea:70:3a:
18:16:87:54:9a:dc:a9:a8:80:99:24:47:ab:f8:2f:
fc:1c:a6:74:f3:9e:a7:f9:86:6b:e3:10:e5:8e:bf:
58:ab:99:b2:56:67:fa:80:65:4a:89:ee:ee:e9:82:
d6:50:d6:cb:d6:ed:3b:36:a1:9a:a4:5a:f2:66:c8:
fe:05:fb:67:17:24:e1:c5:ba:f6:53:ae:21:dd:1d:
ad:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:8E:9C:A7:9D:E2:52:F6:96:DE:16:83:53:65:EE:8B:61:03:28:71
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:70:57:96:8f:75:d9:ed:24:40:df:9d:b9:e1:4d:04:dc:fe:
7c:7b:31:9b:0d:0e:96:e6:e9:02:b3:c2:64:eb:82:3a:d5:ad:
58:98:da:1d:a9:41:c6:e9:10:e0:ca:f5:a2:0a:cc:86:21:20:
4d:1f:a9:af:bf:b2:19:56:57:fa:c1:77:f4:37:99:4e:13:6b:
99:eb:52:f3:5b:48:0c:bf:d5:cc:28:78:db:c3:35:58:2b:4a:
54:db:26:a4:8b:f8:ee:6e:d7:2f:c6:65:4a:05:ee:00:1f:9b:
74:9b:00:18:8b:29:99:4b:fb:8d:97:54:eb:b5:be:af:d3:f1:
05:1d:ca:3f:21:33:af:87:22:bc:29:10:2b:9f:21:a6:64:d4:
a6:23:f9:e0:af:9b:1e:03:40:4d:ff:2d:f7:2b:95:50:b4:9b:
0a:63:ce:99:98:28:76:68:82:f5:a9:5d:ab:85:98:da:56:61:
78:a8:ec:80:72:13:ab:ac:b6:bd:ee:7c:d6:ec:ac:32:af:da:
67:d3:66:ac:5b:36:f8:54:9f:ca:61:17:b9:17:22:35:57:e7:
98:e2:71:97:cd:3a:53:09:43:a9:6a:1e:69:33:45:98:e1:fc:
91:aa:c4:a0:a5:0a:df:bd:93:cb:35:5e:a9:02:17:7e:85:24:
41:6f:d9:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:35:17 2026 by rpki-client