Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json)
Hash identifier: x8mFdHuQ+1FmRbcYIIdnD1Ji9mh2KnMneHe0fSIK73E=
Subject key identifier: C0:31:1E:CC:D3:20:A8:65:F7:21:1F:05:C4:75:8F:40:31:3B:05:39
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 019D360929FD78AED640E85EAF1FADF3F5BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
Manifest number: 1891
Signing time: Sat 28 Mar 2026 20:01:03 +0000
Manifest this update: Sat 28 Mar 2026 20:01:03 +0000
Manifest next update: Sun 29 Mar 2026 20:01:03 +0000
Files and hashes: 1: RP8MgkKEHlqeBOnUZe0z_Y0SQKk.roa (hash: Ptm5tesi9injee8NYFqMkun/MxMMcArohdb5avPOa5I=)
2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: wUEIFGakihj54XMlMHuMd4HXruMz5xV8uqmcS2avK+o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 20:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:36:09:29:fd:78:ae:d6:40:e8:5e:af:1f:ad:f3:f5:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: Mar 28 20:01:03 2026 GMT
Not After : Mar 29 20:01:03 2026 GMT
Subject: CN=c0311eccd320a865f7211f05c4758f40313b0539
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:e8:56:72:db:af:47:88:86:19:e1:8c:73:2b:
04:56:53:1a:c1:44:e4:c4:53:e2:ae:22:8d:4c:8d:
78:b6:a8:35:49:a0:ed:30:f5:4d:6d:ae:56:17:e4:
be:4f:f1:0f:61:6a:a5:7b:e8:03:44:2d:16:36:42:
f2:1d:0b:d4:94:ed:9a:fc:32:84:a8:04:fb:4a:61:
5a:28:19:ca:c1:cb:79:17:c0:86:4a:9a:3c:d8:42:
3c:f8:23:a7:ec:89:82:03:24:ac:0b:a3:e8:0e:9b:
8d:0d:82:b7:45:66:1b:e8:da:23:4e:cc:ff:65:59:
4c:db:2e:0a:60:6c:88:51:f9:bf:19:76:1f:82:46:
ed:6a:7a:17:0b:0d:d9:67:31:5d:51:a9:af:a2:be:
b4:e0:94:24:ff:2f:11:be:a9:70:de:0e:9f:8b:54:
bf:42:7a:e7:6f:84:88:69:06:5f:95:8b:54:28:b1:
ee:7b:1d:09:a0:e7:3e:b8:76:2e:c4:e4:d9:aa:25:
c1:b9:15:dc:c5:c9:28:0a:e0:27:bd:c3:30:df:7f:
39:bf:cf:55:d8:cf:0b:02:08:26:f0:c7:66:36:ed:
72:23:52:b9:a9:50:f8:4d:24:8e:f5:cc:30:b7:d9:
f6:16:2b:dc:b9:32:bf:21:d4:56:c3:37:c0:56:dd:
fb:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:31:1E:CC:D3:20:A8:65:F7:21:1F:05:C4:75:8F:40:31:3B:05:39
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:85:44:a4:10:9a:d9:2e:c2:e8:9d:d0:99:ab:c9:b2:3f:e5:
c8:33:40:dd:2c:2b:eb:44:72:45:8b:61:db:0b:3d:f6:05:15:
89:35:7f:6e:27:c2:ca:78:db:fb:e5:91:cd:74:36:3b:ee:f2:
c9:82:c2:28:73:09:a6:7e:e2:50:8f:d0:b2:d6:5d:24:70:ba:
0f:14:2d:c3:a9:59:d9:da:13:59:2d:8f:94:7e:0f:6f:7a:3e:
f6:e4:5b:68:54:fd:2f:0e:9e:57:13:b2:a6:8f:25:6d:24:8e:
e1:98:f6:2a:d5:5d:e1:49:45:63:6f:6e:d5:e8:53:60:22:35:
c9:fd:da:da:59:78:48:87:66:69:ab:76:04:b5:76:fa:1a:02:
10:af:25:1b:ae:5e:da:be:ae:91:93:65:ce:08:54:6b:0c:b8:
f3:67:9e:fd:83:51:a9:62:4f:3b:3b:bb:02:97:38:c7:fb:99:
93:f1:5b:c2:5b:e6:ff:1e:82:ab:23:b3:ce:75:63:f1:8f:83:
50:42:22:6f:f9:e9:96:42:33:8b:bd:31:bf:db:2d:8f:c7:c4:
0d:75:1a:95:c2:de:b8:32:a6:b5:00:c5:b4:3e:f7:04:e0:32:
8d:2e:8f:68:cd:dd:c4:c0:6b:a6:82:89:1a:70:e2:01:84:ce:
99:af:29:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 03:23:26 2026 by rpki-client