Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: pnfL2oKcZcdDohuhC3jp0Kd1wqC6y28oP+iaBbVbTJg=
Subject key identifier: 76:4B:A6:19:F7:B7:A5:64:AE:D9:59:D7:40:8A:BD:E7:9F:C2:54:C1
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 019CE636720708E15510FB2C81BF403A0EA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0B8F
Signing time: Fri 13 Mar 2026 08:00:53 +0000
Manifest this update: Fri 13 Mar 2026 08:00:53 +0000
Manifest next update: Sat 14 Mar 2026 08:00:53 +0000
Files and hashes: 1: 5TQ-JqFgF-IFdipnnBO-T6tTIiI.roa (hash: jvG5fPveO3vEmUkVM2g5EIXNmfe8tIUO+ydnKHanIQ8=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: YKrEAnj8394fKf/h+bbL2K9G4z8qBauEs2jV5OraX0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 08:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:36:72:07:08:e1:55:10:fb:2c:81:bf:40:3a:0e:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Mar 13 08:00:53 2026 GMT
Not After : Mar 14 08:00:53 2026 GMT
Subject: CN=764ba619f7b7a564aed959d7408abde79fc254c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:db:a7:6e:7d:b5:d2:32:0a:9e:fc:6a:f0:e8:
1c:84:84:0e:63:10:3e:b8:c5:3c:82:ea:aa:6b:cc:
e9:70:4c:c6:87:66:07:cd:5c:8d:4a:52:a4:fc:e2:
b2:b8:c0:80:c5:c4:cf:7a:02:d4:37:6f:f0:54:44:
bf:52:7e:91:8e:60:98:a9:42:b3:91:3b:42:c9:58:
f5:c9:a9:ac:2e:bc:bd:d8:a6:f8:02:52:be:17:87:
a1:02:34:08:0e:2c:27:15:80:9c:cf:f8:99:6e:fe:
ae:42:60:92:55:9d:2e:7b:c6:d0:8e:c9:b7:16:37:
73:05:29:26:3e:10:e5:e5:ed:ef:9c:76:34:e4:06:
1f:c4:f3:c7:6f:38:6d:bb:bd:c4:92:cd:9f:93:36:
78:62:83:84:eb:f8:a0:dc:0d:b7:a6:6d:d3:43:51:
4c:4d:82:91:a7:d9:62:fe:09:a1:c5:23:fd:a3:a1:
d4:c0:a3:24:3e:b3:a6:39:6c:c4:b7:a9:60:2e:40:
9e:d8:28:6e:e5:bb:47:e7:2e:3f:65:0e:8d:6a:05:
cc:a2:82:da:38:24:42:9f:32:98:25:3b:ab:2b:4a:
c9:2f:17:f7:f7:92:63:89:d5:a3:66:19:f4:59:94:
ad:5d:e9:45:f1:c4:20:e2:38:ee:31:7c:69:66:4f:
fe:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:4B:A6:19:F7:B7:A5:64:AE:D9:59:D7:40:8A:BD:E7:9F:C2:54:C1
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:1c:4e:6c:c1:91:08:67:62:72:b2:76:3c:8a:a3:44:4a:db:
87:c2:53:b2:67:49:fa:46:95:31:e7:ed:6c:69:6c:10:9c:81:
4f:c5:47:38:cf:d4:25:7c:bf:50:c9:53:00:fc:13:11:76:bb:
68:f3:c8:18:b3:77:d3:c7:8e:e5:7b:45:0d:e1:ce:2f:e7:e2:
e6:13:35:c5:19:0a:fa:97:ae:80:b6:d4:dd:c5:75:59:c8:ef:
b9:83:2b:34:a4:12:d3:c9:49:6b:44:11:18:18:c0:67:3d:92:
7d:b0:08:04:b9:ee:ad:64:3c:87:a0:f3:5e:56:53:80:32:85:
34:c2:58:01:71:6a:d2:17:57:dc:6c:59:17:94:b9:02:cc:73:
38:32:b5:ba:f1:85:f6:f3:92:3d:6d:92:ea:f4:b4:56:84:c5:
d8:61:10:a6:33:7a:47:30:eb:a6:7a:83:44:6a:b0:0e:5e:3f:
b3:bf:48:24:a4:33:9d:1a:1d:08:6c:fe:bb:0d:65:3b:0a:fd:
3a:b6:75:16:67:72:0a:c3:a7:a5:2b:76:dc:42:52:40:67:f8:
26:c0:26:e3:4a:de:f8:53:1d:4f:51:ef:a1:07:e2:bc:89:10:
6a:08:f1:51:5e:52:6c:33:7b:ce:6f:08:42:cb:11:0f:c5:f1:
07:9f:a8:42
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzmNnIHCOFVEPssgb9AOg6hMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkODUyNzJhNDA4MDkwNGY3NWUyMzVhNDdhZjBiNDEyNjZl
MmE2MDMwHhcNMjYwMzEzMDgwMDUzWhcNMjYwMzE0MDgwMDUzWjAzMTEwLwYDVQQD
Eyg3NjRiYTYxOWY3YjdhNTY0YWVkOTU5ZDc0MDhhYmRlNzlmYzI1NGMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsdunbn210jIKnvxq8OgchIQOYxA+
uMU8guqqa8zpcEzGh2YHzVyNSlKk/OKyuMCAxcTPegLUN2/wVES/Un6RjmCYqUKz
kTtCyVj1yamsLry92Kb4AlK+F4ehAjQIDiwnFYCcz/iZbv6uQmCSVZ0ue8bQjsm3
FjdzBSkmPhDl5e3vnHY05AYfxPPHbzhtu73Eks2fkzZ4YoOE6/ig3A23pm3TQ1FM
TYKRp9li/gmhxSP9o6HUwKMkPrOmOWzEt6lgLkCe2Chu5btH5y4/ZQ6NagXMooLa
OCRCnzKYJTurK0rJLxf395JjidWjZhn0WZStXelF8cQg4jjuMXxpZk/+DQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHZLphn3t6VkrtlZ10CKveefwlTBMB8GA1UdIwQY
MBaAFL2FJypAgJBPdeI1pHrwtBJm4qYDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMt
MjRmMjBmOTY3NWVjLzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNC8yODJjYjAtOTFiZS00MjJhLTk1ZDMtMjRmMjBmOTY3NWVj
LzEvdllVbktrQ0FrRTkxNGpXa2V2QzBFbWJpcGdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEhxObMGR
CGdicrJ2PIqjRErbh8JTsmdJ+kaVMeftbGlsEJyBT8VHOM/UJXy/UMlTAPwTEXa7
aPPIGLN308eO5XtFDeHOL+fi5hM1xRkK+peugLbU3cV1WcjvuYMrNKQS08lJa0QR
GBjAZz2SfbAIBLnurWQ8h6DzXlZTgDKFNMJYAXFq0hdX3GxZF5S5AsxzODK1uvGF
9vOSPW2S6vS0VoTF2GEQpjN6RzDrpnqDRGqwDl4/s79IJKQznRodCGz+uw1lOwr9
OrZ1FmdyCsOnpSt23EJSQGf4JsAm40re+FMdT1HvoQfivIkQagjxUV5SbDN7zm8I
QssRD8XxB5+oQg==
-----END CERTIFICATE-----
Generated at Fri Mar 13 11:57:29 2026 by rpki-client