Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
File: vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json)
Hash identifier: 5FI1olER7b33NSNHmzCoJjkIHXW1V0ua1dtUwQahX4c=
Subject key identifier: 76:9B:15:B3:A0:34:0A:91:AE:9C:20:AA:7C:6E:D7:57:9A:9E:65:BF
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial: 019D3A8ADE29B5981430A0FAC086373DF26C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
Manifest number: 1769
Signing time: Sun 29 Mar 2026 17:01:12 +0000
Manifest this update: Sun 29 Mar 2026 17:01:12 +0000
Manifest next update: Mon 30 Mar 2026 17:01:12 +0000
Files and hashes: 1: FB6XhAljb_Cq4OzW1NxhRMI8uX8.roa (hash: oRoqHHkjJ5NsUTcwkAs7nSs4mia9Uv979j7dFZIGR9Y=)
2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: OdSdzOpXF4+0amksfjJ5KyBofJVNxbVUw/vmmECjEQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:8a:de:29:b5:98:14:30:a0:fa:c0:86:37:3d:f2:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Validity
Not Before: Mar 29 17:01:12 2026 GMT
Not After : Mar 30 17:01:12 2026 GMT
Subject: CN=769b15b3a0340a91ae9c20aa7c6ed7579a9e65bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:46:d6:2c:1d:b0:43:3a:19:24:43:7e:06:99:
1a:67:83:93:88:5f:a6:71:44:ba:e8:43:84:97:4b:
df:c6:f8:19:ad:a0:27:f3:f3:cb:6c:f1:9d:02:d0:
a2:95:6d:57:95:18:b7:c0:84:45:09:0d:9c:ff:54:
ed:43:0c:6e:fb:f9:05:9c:97:70:8e:1d:e9:4f:5d:
84:63:60:da:37:14:83:9b:8b:8a:dc:3b:42:2f:04:
75:81:8b:dc:a6:73:6b:88:c9:29:28:91:3e:8d:d6:
bf:40:46:c0:43:4d:39:79:f2:fb:92:e4:98:cc:79:
b5:88:2f:aa:f1:04:7e:9f:b4:ad:1e:28:57:10:58:
a8:cd:62:26:b3:c5:66:cd:2c:03:66:1c:dd:62:5f:
56:8c:c0:33:e0:ea:1c:45:9a:12:85:6c:22:8b:0f:
3b:97:94:d5:20:8c:df:61:fa:ef:dc:75:97:eb:a6:
98:69:19:6b:46:b0:90:02:b4:ee:b3:0b:85:76:07:
4e:b0:9c:ef:4e:b1:15:22:27:37:8a:d6:83:36:c3:
d3:e7:5a:5a:69:5e:cd:d3:f9:26:f4:c2:39:0e:01:
40:53:5d:e1:5a:52:b5:d1:ce:5a:b6:51:45:7f:bc:
3d:6b:86:e8:e7:6c:04:81:30:09:e8:b2:3c:37:33:
86:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:9B:15:B3:A0:34:0A:91:AE:9C:20:AA:7C:6E:D7:57:9A:9E:65:BF
X509v3 Authority Key Identifier:
keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:48:3c:36:1b:d9:83:9e:2a:57:24:fb:a9:9f:c6:0d:af:f2:
6f:b4:18:30:94:e2:7c:48:dc:73:c6:b0:c6:97:29:3b:7e:73:
f3:38:52:d8:d8:ce:f3:a8:0f:ae:63:da:c8:30:dc:2e:8e:c0:
51:9b:48:07:a0:8d:2c:f8:77:16:6d:f9:82:2f:13:c4:59:90:
b0:8a:91:32:31:11:a2:31:87:d2:9a:3e:a5:ac:13:ad:ab:35:
94:f7:ca:09:85:85:65:5e:94:c8:95:7b:f2:1f:43:0b:3c:b7:
68:f6:03:f9:2a:3e:43:f4:fb:65:60:c9:8c:b2:69:6b:08:be:
c1:8c:a5:31:f0:11:ad:e4:64:c5:ad:b4:4c:60:88:5f:08:45:
47:13:d8:38:25:15:0a:46:68:34:bd:14:50:c0:1d:18:af:64:
55:c5:19:b8:b4:95:df:a6:7e:58:88:74:13:8b:2d:7d:04:cc:
97:c5:f8:6b:c9:82:7e:df:d5:f0:cb:45:8e:18:f2:cd:51:47:
bd:68:96:c2:50:57:50:f9:5a:77:c4:83:fa:80:e6:af:c9:4f:
66:5d:27:30:02:97:4f:55:5c:b5:e5:13:bb:94:65:89:5f:d0:
a7:37:b5:72:81:4e:78:79:1e:b7:17:e7:06:d8:6e:04:e9:3e:
85:44:a9:66
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06it4ptZgUMKD6wIY3PfJsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkZjk2MGIwZWU2YmM1ZDBmNmEwYzY0YTY5ZjJmODYyNTlm
ZGNkNTgwHhcNMjYwMzI5MTcwMTEyWhcNMjYwMzMwMTcwMTEyWjAzMTEwLwYDVQQD
Eyg3NjliMTViM2EwMzQwYTkxYWU5YzIwYWE3YzZlZDc1NzlhOWU2NWJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwkbWLB2wQzoZJEN+BpkaZ4OTiF+m
cUS66EOEl0vfxvgZraAn8/PLbPGdAtCilW1XlRi3wIRFCQ2c/1TtQwxu+/kFnJdw
jh3pT12EY2DaNxSDm4uK3DtCLwR1gYvcpnNriMkpKJE+jda/QEbAQ005efL7kuSY
zHm1iC+q8QR+n7StHihXEFiozWIms8VmzSwDZhzdYl9WjMAz4OocRZoShWwiiw87
l5TVIIzfYfrv3HWX66aYaRlrRrCQArTuswuFdgdOsJzvTrEVIic3itaDNsPT51pa
aV7N0/km9MI5DgFAU13hWlK10c5atlFFf7w9a4bo52wEgTAJ6LI8NzOGfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHabFbOgNAqRrpwgqnxu11eanmW/MB8GA1UdIwQY
MBaAFL35YLDua8XQ9qDGSmny+GJZ/c1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8zMzY4NGEtMTJjMi00MjNhLWJkM2Et
M2RkZmZkZWI5MjA3LzEvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi8zMzY4NGEtMTJjMi00MjNhLWJkM2EtM2RkZmZkZWI5MjA3
LzEvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVkg8NhvZ
g54qVyT7qZ/GDa/yb7QYMJTifEjcc8awxpcpO35z8zhS2NjO86gPrmPayDDcLo7A
UZtIB6CNLPh3Fm35gi8TxFmQsIqRMjERojGH0po+pawTras1lPfKCYWFZV6UyJV7
8h9DCzy3aPYD+So+Q/T7ZWDJjLJpawi+wYylMfARreRkxa20TGCIXwhFRxPYOCUV
CkZoNL0UUMAdGK9kVcUZuLSV36Z+WIh0E4stfQTMl8X4a8mCft/V8MtFjhjyzVFH
vWiWwlBXUPlad8SD+oDmr8lPZl0nMAKXT1VcteUTu5RliV/Qpze1coFOeHketxfn
BthuBOk+hUSpZg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 21:19:45 2026 by rpki-client