Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json)
Hash identifier: cLPVMtUWsi+RlRgnP6o8fe/N59/8uaWOcnUSFJeCDZk=
Subject key identifier: AF:DC:F2:D8:08:8C:E6:E2:F6:3A:83:D1:E2:3A:04:1B:EA:A9:9C:7C
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 019E295DA91F3DEB648EE5F7D023534D3A3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
Manifest number: 190F
Signing time: Fri 15 May 2026 02:01:04 +0000
Manifest this update: Fri 15 May 2026 02:01:04 +0000
Manifest next update: Sat 16 May 2026 02:01:04 +0000
Files and hashes: 1: RP8MgkKEHlqeBOnUZe0z_Y0SQKk.roa (hash: Ptm5tesi9injee8NYFqMkun/MxMMcArohdb5avPOa5I=)
2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: lfr5F8zngQr1KWQFHXumBiqUnu9XdhJazV1WEZHvxDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:5d:a9:1f:3d:eb:64:8e:e5:f7:d0:23:53:4d:3a:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: May 15 02:01:04 2026 GMT
Not After : May 16 02:01:04 2026 GMT
Subject: CN=afdcf2d8088ce6e2f63a83d1e23a041beaa99c7c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:bd:8d:d8:45:df:b4:4a:fe:ed:c7:db:a1:52:
dd:d8:20:03:a1:05:01:e8:da:84:05:4f:9c:e6:e3:
ce:89:28:b6:59:8a:17:b9:44:68:cd:cc:1a:e1:07:
89:85:af:07:60:31:fd:72:80:17:5e:d7:91:3a:29:
cc:0e:7b:f6:c8:e4:15:25:48:d8:88:31:05:44:1c:
23:bd:50:25:1b:49:1f:d9:fa:bf:8d:23:ae:cc:f5:
3c:05:3e:57:fc:85:18:e2:a6:62:82:0e:2a:99:61:
a7:2f:e3:6c:15:fb:53:ac:97:3b:00:a1:8d:ba:d8:
f3:78:8b:32:7d:4b:fc:79:e5:1d:85:e7:b3:be:ad:
b1:08:f2:f7:0e:b4:58:e2:0e:8b:57:09:44:8c:64:
7c:69:68:a3:b4:d2:7d:24:c2:0f:f8:24:9e:ad:08:
64:a9:d1:f0:f3:96:73:c1:50:07:ea:03:28:bd:f7:
6b:6f:8f:e9:64:a2:7a:45:f4:8b:a4:11:7f:e3:33:
91:5e:ae:f3:2d:20:37:50:38:7d:9a:ac:12:2c:d5:
c1:f2:e7:19:ab:a3:35:49:97:57:05:9e:33:89:d9:
fd:a6:a6:e5:96:cb:93:44:c9:3a:f0:3c:85:2a:49:
93:44:2b:d4:9c:0b:24:40:d6:d5:23:e1:0f:1f:a7:
1a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DC:F2:D8:08:8C:E6:E2:F6:3A:83:D1:E2:3A:04:1B:EA:A9:9C:7C
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:f4:c1:9b:6c:81:99:7f:1a:8e:56:7c:71:67:1b:49:7f:52:
d9:93:53:1f:fd:0e:66:3f:c8:67:9f:67:9c:0e:77:0f:bf:d1:
a4:a5:42:88:fd:a1:9f:00:d9:90:a3:ab:5b:4d:b9:7a:f0:09:
c0:2c:96:a2:7d:e4:67:b1:33:4c:24:31:58:f3:c0:1f:b0:fb:
92:56:b5:21:ad:21:bc:7b:b6:d3:40:3f:49:e2:3a:84:dd:94:
77:9e:4d:0b:48:87:89:4a:2c:98:d0:c3:87:12:97:36:81:17:
ae:c0:97:51:5a:47:27:e4:6f:ce:0d:3a:79:43:2e:f7:53:3a:
4c:b8:7b:9d:ad:23:0f:13:fc:4e:19:5f:28:1a:9e:28:6c:c7:
ce:74:77:ac:a7:5e:50:c7:b0:91:7b:d6:c2:56:30:0b:0c:49:
8d:bb:5b:fc:67:6b:7b:09:bc:ec:ae:ec:a1:4b:37:04:1d:4f:
7f:db:5a:60:0b:21:df:9f:6c:98:ca:e8:af:58:ef:2e:53:1a:
97:92:c7:90:43:db:3c:fc:11:b9:84:69:84:05:78:3e:ea:d7:
27:16:5f:24:56:d6:aa:aa:a5:53:27:04:e3:c7:86:4f:fd:27:
72:65:ef:c9:7b:e5:c7:72:9f:59:65:03:ab:a9:e8:ad:54:c8:
22:df:b6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 07:01:45 2026 by rpki-client