Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
File: vSpaBrm0P86hiFQdMMbcNDCq85I.mft (raw, json)
Hash identifier: bkW52EfsBG28WMc9ZWhNCd+IedIZKt/ZNi2edj+oRRE=
Subject key identifier: 2C:27:8D:0B:21:D7:50:D0:A7:31:A1:7A:63:54:7D:43:AD:64:E6:87
Authority key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
Certificate issuer: /CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Certificate serial: 019D382E84032DB00984B4E96AA4B38AF4A9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
Manifest number: 1364
Signing time: Sun 29 Mar 2026 06:01:05 +0000
Manifest this update: Sun 29 Mar 2026 06:01:05 +0000
Manifest next update: Mon 30 Mar 2026 06:01:05 +0000
Files and hashes: 1: vSpaBrm0P86hiFQdMMbcNDCq85I.crl (hash: XuNmETBkiqrvAUMdPSkHSTD15AdIk5meM/ITLJ7HBQY=)
2: x8WGsbpBFb_K_stBpznpxseC6AA.roa (hash: G/WJvcDESUpg5wbrqINkweic0INsvffGZy1Iocg8/w0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:84:03:2d:b0:09:84:b4:e9:6a:a4:b3:8a:f4:a9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Validity
Not Before: Mar 29 06:01:05 2026 GMT
Not After : Mar 30 06:01:05 2026 GMT
Subject: CN=2c278d0b21d750d0a731a17a63547d43ad64e687
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:19:ab:4b:b6:b5:9f:b7:fa:aa:d3:18:82:9d:
c8:16:65:e8:52:c7:cc:3a:0d:af:05:d2:54:de:40:
3f:41:8f:31:bd:95:18:5f:62:54:1e:15:c4:53:40:
88:d4:cb:fd:0c:2e:d8:cc:cf:0e:02:ee:42:d0:04:
0b:34:e0:d7:c3:01:bc:a3:e3:65:50:67:c5:44:e5:
76:1a:bc:97:97:fc:0f:c7:1e:39:c1:bd:ba:ea:35:
d2:0f:c9:38:a9:2f:1f:e0:6f:0a:98:63:ec:f1:12:
03:39:f4:1c:97:9f:b6:5c:43:f0:60:14:77:7b:fb:
e1:92:6e:a9:f1:10:0a:25:bf:c5:f6:83:82:75:4e:
30:3c:08:4b:92:76:be:48:4b:e8:fb:52:64:55:3f:
d6:de:3a:80:18:01:51:c9:95:16:d6:12:d3:80:50:
1e:80:66:bb:0a:0a:c5:e9:df:b1:fc:f0:c4:6a:85:
fc:95:8b:4c:b2:68:05:8a:17:87:92:1c:a2:f4:f2:
f5:a5:81:dc:42:46:2e:3e:e5:71:48:f6:8e:ef:93:
9e:b3:b4:2c:ab:73:fe:87:cc:b3:d8:8c:16:dd:71:
98:f4:65:20:66:10:ee:e0:17:23:ae:7a:de:96:b1:
ae:b2:63:43:7f:da:85:50:f0:f7:98:22:74:d7:32:
ad:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:27:8D:0B:21:D7:50:D0:A7:31:A1:7A:63:54:7D:43:AD:64:E6:87
X509v3 Authority Key Identifier:
keyid:BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:88:79:e7:45:c3:99:31:ac:4f:21:28:35:4c:03:3a:14:3f:
aa:a2:80:21:08:3c:ff:74:35:ab:c4:41:35:3c:85:62:e4:94:
b1:c1:c6:98:3d:ee:03:65:7c:48:83:82:a5:f1:e0:51:f3:0b:
c8:44:e2:16:66:7b:a5:26:ab:9e:21:bb:c1:44:35:18:4a:66:
0b:2d:5a:f0:82:11:0a:21:a8:7c:4f:70:ee:c2:3c:f5:41:0d:
74:aa:e2:e1:db:51:91:7c:b7:67:8e:d3:0d:65:51:22:5e:4a:
5f:e6:8f:21:86:61:a0:a5:6b:f0:ec:de:1f:b2:0a:f7:7d:95:
4e:9f:cb:b9:49:8a:a4:32:81:5b:ce:e5:e2:22:df:df:ce:c2:
5d:2b:0c:2d:c0:1a:84:c5:48:f2:10:23:19:ef:9e:2d:82:6b:
55:e7:d9:47:a0:98:9b:03:b3:a9:65:22:f8:df:56:9d:60:f5:
b1:fe:40:dd:bd:f7:25:6d:aa:44:c4:a5:5e:8c:69:66:1d:a7:
62:c9:47:5a:14:6c:11:df:63:0a:0c:1a:66:41:75:bc:5c:e8:
6b:dc:47:cb:49:df:79:21:86:3b:ec:d7:63:aa:7c:20:d4:18:
b4:c1:a5:c4:cf:69:29:a9:fb:56:8b:ff:0a:ed:35:7e:ab:0b:
d8:3b:7f:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:28 2026 by rpki-client