Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.mft
File: vQQTxuRIJSdlFDEhETiDjhM4VN4.mft (raw, json)
Hash identifier: iX1FVqA3rdfF4eXqvd9Wb7gZj0Qb6GdCxGy0rpxx+3Q=
Subject key identifier: BD:2C:01:24:B3:BF:5F:19:47:FD:A4:38:7F:A9:89:3A:56:AA:6F:29
Authority key identifier: BD:04:13:C6:E4:48:25:27:65:14:31:21:11:38:83:8E:13:38:54:DE
Certificate issuer: /CN=bd0413c6e4482527651431211138838e133854de
Certificate serial: 019D39AF122E2E4427726727D66F8E924642
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vQQTxuRIJSdlFDEhETiDjhM4VN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.mft
Manifest number: 10
Signing time: Sun 29 Mar 2026 13:01:07 +0000
Manifest this update: Sun 29 Mar 2026 13:01:07 +0000
Manifest next update: Mon 30 Mar 2026 13:01:07 +0000
Files and hashes: 1: vQQTxuRIJSdlFDEhETiDjhM4VN4.crl (hash: budM1kpDNL5l4HPjR3BE0iZKgvxUS//XknWfiY2mCmk=)
2: zbcDrEFB5wBi_ddz2KxQe0VMusU.roa (hash: /++Th/g/81+d4+jJNs1r5coQiatlN8LfLSJyk0Z2+kQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/vQQTxuRIJSdlFDEhETiDjhM4VN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:12:2e:2e:44:27:72:67:27:d6:6f:8e:92:46:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd0413c6e4482527651431211138838e133854de
Validity
Not Before: Mar 29 13:01:07 2026 GMT
Not After : Mar 30 13:01:07 2026 GMT
Subject: CN=bd2c0124b3bf5f1947fda4387fa9893a56aa6f29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:9e:ca:37:98:92:be:19:d5:29:6c:41:0a:d6:
47:fb:9b:0e:e6:d6:4d:77:be:59:64:bf:9f:dd:34:
dc:1d:96:3f:8f:af:41:d2:c4:3d:ec:2a:b7:9b:ee:
ec:69:3d:d5:aa:bd:e8:1b:68:49:95:f6:d2:f4:02:
6e:50:6b:f5:31:60:58:c7:81:3e:73:58:39:be:d6:
8f:1c:4d:6d:f6:99:59:48:e5:19:ba:47:de:56:6e:
02:3e:45:49:49:bc:f6:d7:74:c2:4d:17:5d:b8:92:
49:20:54:b0:7c:6a:64:95:0e:de:e9:dc:f8:60:a0:
fd:61:e7:a2:ae:d8:4d:7d:30:a8:30:a1:e4:af:2a:
b9:87:79:64:e1:0c:04:80:21:3e:5a:a2:3a:16:fe:
a5:30:24:70:e6:9a:33:45:89:22:c3:a3:69:90:1d:
a1:4a:78:f1:81:ac:cb:4a:a8:c7:9d:78:45:ba:e2:
17:56:0d:26:c6:4d:57:96:09:c3:0b:75:3d:8c:2f:
cc:4f:fb:9e:df:87:a0:d1:78:80:16:21:e6:3e:d8:
e1:4e:c4:a3:b3:9e:96:26:9f:62:92:61:d9:41:d2:
22:55:7a:48:e1:26:fc:c4:d1:f3:70:73:39:76:dd:
d7:21:c6:2b:9f:0d:07:96:ef:40:5d:7d:21:49:df:
3b:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:2C:01:24:B3:BF:5F:19:47:FD:A4:38:7F:A9:89:3A:56:AA:6F:29
X509v3 Authority Key Identifier:
keyid:BD:04:13:C6:E4:48:25:27:65:14:31:21:11:38:83:8E:13:38:54:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vQQTxuRIJSdlFDEhETiDjhM4VN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:4b:57:b8:5e:4c:62:72:6f:50:84:3d:7c:f8:63:6b:85:78:
b1:3b:1c:aa:ce:06:33:e7:5c:e7:3d:58:43:99:00:56:16:b8:
88:b2:fd:93:22:05:8d:bc:29:1e:21:22:44:22:b9:5d:4c:e0:
38:75:dd:d9:f4:43:c8:7b:9c:89:69:5a:3d:f8:46:e1:d1:ce:
1b:bf:e9:4e:be:2d:fc:a7:62:47:f8:d4:ac:56:59:49:81:d2:
19:bc:ae:fa:8d:7e:f2:a1:eb:93:78:f0:65:1c:e0:36:4e:1c:
35:07:be:1a:39:0f:85:a7:30:23:45:2c:9b:c2:e3:3c:3f:de:
a9:c9:e1:ae:a1:95:b2:65:f3:bc:69:38:b3:51:ad:7b:91:16:
99:c7:34:49:75:7f:46:3d:52:c2:c5:b5:23:3d:19:58:89:e4:
4a:ca:92:1d:b6:90:8f:15:e7:27:c4:89:6a:9b:5c:34:cc:b4:
37:55:00:34:b4:79:49:0c:4b:c0:16:c1:91:11:24:db:34:72:
20:9a:02:a0:8e:06:aa:44:04:27:2e:e4:9c:5d:e6:c2:c5:b1:
89:de:e4:e1:b8:b0:bd:35:1a:03:4d:55:e3:86:c6:ef:f3:4f:
87:27:02:ab:5a:be:9f:f6:3a:f3:6c:bd:37:9a:82:4c:d9:0a:
70:48:71:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:11:46 2026 by rpki-client