Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
File: VvciqIWr65qv-zLadk7wkbWyA0A.mft (raw, json)
Hash identifier: mJxIjL/Aeb8pnjf1b3R4uUiP4OVtWh5Pn4eLH9i/SNc=
Subject key identifier: 48:5F:82:89:75:C5:03:A8:E9:DE:E5:F8:04:66:DB:BC:17:15:A3:CE
Authority key identifier: 56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
Certificate issuer: /CN=56f722a885abeb9aaffb32da764ef091b5b20340
Certificate serial: 019D389BAE314AF68986231FC9F7BD75662A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
Manifest number: 0BB1
Signing time: Sun 29 Mar 2026 08:00:19 +0000
Manifest this update: Sun 29 Mar 2026 08:00:19 +0000
Manifest next update: Mon 30 Mar 2026 08:00:19 +0000
Files and hashes: 1: GIndhU8ELmsNHmG9wjRWuLwz2bs.roa (hash: PQMP13AMPNG5zd/gezY6JmA04bcuMNJCFye1nndg+RI=)
2: VvciqIWr65qv-zLadk7wkbWyA0A.crl (hash: VZeVTywyXhvnT5ArLwAn1fuV4RvMWlUVTtAHVcIMGXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:ae:31:4a:f6:89:86:23:1f:c9:f7:bd:75:66:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56f722a885abeb9aaffb32da764ef091b5b20340
Validity
Not Before: Mar 29 08:00:19 2026 GMT
Not After : Mar 30 08:00:19 2026 GMT
Subject: CN=485f828975c503a8e9dee5f80466dbbc1715a3ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:3d:5d:49:c5:0e:68:64:61:27:7b:da:64:2b:
d0:0e:0b:56:b4:fe:7a:bc:33:38:b6:d4:a6:56:a8:
ee:c1:90:f5:de:9d:44:dc:48:ce:2c:73:03:b6:5c:
08:30:d7:a5:8c:78:e8:18:27:4a:18:db:b1:66:9b:
8c:d3:11:64:81:71:42:6f:bc:5a:38:01:68:85:1d:
d4:41:2a:e4:6d:0a:65:56:25:96:da:cd:26:dc:f0:
af:fa:88:ed:88:4e:05:fc:0d:bc:37:8a:89:91:e7:
ae:45:cc:16:c7:b5:74:ce:6d:aa:46:34:a6:dc:f8:
e7:26:c1:49:fb:92:29:c8:49:03:3b:a2:f2:15:d3:
1a:73:15:53:4d:e6:d5:a4:e4:51:00:40:f7:26:2f:
fa:e8:81:55:57:e9:4c:96:35:ed:c7:64:9d:94:42:
e8:6e:7a:5a:a4:2b:26:aa:3d:52:d7:e8:99:0b:23:
60:51:2a:2a:ba:a8:d8:f2:d8:e8:58:63:d0:b0:43:
e2:ba:70:c3:61:aa:f7:aa:3b:e2:09:5e:b8:30:01:
84:70:30:82:1d:7e:bd:81:1d:52:3a:1b:a6:d4:03:
48:ca:76:cf:54:fa:56:e8:5d:f3:d4:ce:c5:82:ba:
c9:f8:6b:0f:84:41:a7:b6:cb:2a:da:f2:1d:49:7d:
36:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:5F:82:89:75:C5:03:A8:E9:DE:E5:F8:04:66:DB:BC:17:15:A3:CE
X509v3 Authority Key Identifier:
keyid:56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:b2:5f:5e:8b:b3:53:01:c8:17:0d:41:f5:ed:33:b5:e1:67:
71:2c:f0:39:d5:d4:a5:28:00:b0:53:9e:52:01:2d:7a:b9:07:
9a:24:95:34:61:68:e4:1b:40:5a:4b:4c:96:ee:b3:5d:1b:09:
5b:fb:b6:3a:05:ba:26:0c:2d:85:3e:86:d2:f9:e8:35:30:32:
ec:62:af:3c:e6:72:32:d5:d7:42:5c:1d:98:0c:5a:f2:9c:ea:
c9:aa:6c:92:44:e2:9c:67:df:8c:84:5e:4d:29:e2:55:19:52:
7f:af:de:7b:54:a3:ca:13:b0:22:b3:06:84:e1:1f:31:c1:fd:
e3:a1:90:33:8b:98:17:91:ec:d5:59:a8:a7:7d:47:53:2e:99:
71:4c:44:13:6c:03:c8:7d:7f:bf:fa:27:d0:7b:9a:a4:88:ac:
34:d1:0b:49:f8:05:32:84:5d:89:fe:e4:f0:9f:17:2f:a4:af:
99:ab:f7:bb:8e:9d:1b:b7:f5:4f:cb:db:c9:96:ef:db:79:a2:
2b:ad:ea:31:1d:4f:7a:f8:ff:0c:fc:4e:c3:30:33:67:22:a4:
71:e5:42:cc:32:a6:12:d4:8f:f3:9a:4a:02:27:28:f0:f5:94:
68:96:a0:39:44:3e:a3:ba:3c:73:79:fb:9f:04:ed:b9:17:f7:
51:07:06:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04m64xSvaJhiMfyfe9dWYqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2ZjcyMmE4ODVhYmViOWFhZmZiMzJkYTc2NGVmMDkxYjVi
MjAzNDAwHhcNMjYwMzI5MDgwMDE5WhcNMjYwMzMwMDgwMDE5WjAzMTEwLwYDVQQD
Eyg0ODVmODI4OTc1YzUwM2E4ZTlkZWU1ZjgwNDY2ZGJiYzE3MTVhM2NlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4D1dScUOaGRhJ3vaZCvQDgtWtP56
vDM4ttSmVqjuwZD13p1E3EjOLHMDtlwIMNeljHjoGCdKGNuxZpuM0xFkgXFCb7xa
OAFohR3UQSrkbQplViWW2s0m3PCv+ojtiE4F/A28N4qJkeeuRcwWx7V0zm2qRjSm
3PjnJsFJ+5IpyEkDO6LyFdMacxVTTebVpORRAED3Ji/66IFVV+lMljXtx2SdlELo
bnpapCsmqj1S1+iZCyNgUSoquqjY8tjoWGPQsEPiunDDYar3qjviCV64MAGEcDCC
HX69gR1SOhum1ANIynbPVPpW6F3z1M7FgrrJ+GsPhEGntssq2vIdSX02RQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEhfgol1xQOo6d7l+ARm27wXFaPOMB8GA1UdIwQY
MBaAFFb3IqiFq+uar/sy2nZO8JG1sgNAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVnZjaXFJV3I2NXF2LXpMYWRrN3drYld5QTBBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni84OTkyYjEtMTYwMC00YjkyLTk5YTUt
ODE0MGMxMTZmMGM4LzEvVnZjaXFJV3I2NXF2LXpMYWRrN3drYld5QTBBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni84OTkyYjEtMTYwMC00YjkyLTk5YTUtODE0MGMxMTZmMGM4
LzEvVnZjaXFJV3I2NXF2LXpMYWRrN3drYld5QTBBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAs7JfXouz
UwHIFw1B9e0zteFncSzwOdXUpSgAsFOeUgEterkHmiSVNGFo5BtAWktMlu6zXRsJ
W/u2OgW6JgwthT6G0vnoNTAy7GKvPOZyMtXXQlwdmAxa8pzqyapskkTinGffjIRe
TSniVRlSf6/ee1SjyhOwIrMGhOEfMcH946GQM4uYF5Hs1Vmop31HUy6ZcUxEE2wD
yH1/v/on0HuapIisNNELSfgFMoRdif7k8J8XL6Svmav3u46dG7f1T8vbyZbv23mi
K63qMR1Pevj/DPxOwzAzZyKkceVCzDKmEtSP85pKAico8PWUaJagOUQ+o7o8c3n7
nwTtuRf3UQcG4g==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:13:24 2026 by rpki-client