Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
File: vttqTtOT2KO3UH-Wo4vuDEyLR38.mft (raw, json)
Hash identifier: j3bSKLnzN0VrUNgs4V3G2PLXWZ5k66Zyr66TpPmJvZE=
Subject key identifier: A6:0A:13:6B:F3:B9:3A:8E:73:98:2B:27:AF:43:7D:E3:D1:F8:90:A7
Authority key identifier: BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
Certificate issuer: /CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Certificate serial: 019D382DC98794D4AB8AA7F1D8865560E543
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 06:00:17 +0000
Manifest this update: Sun 29 Mar 2026 06:00:17 +0000
Manifest next update: Mon 30 Mar 2026 06:00:17 +0000
Files and hashes: 1: 2gOMElZpuYjYWwfxZPDkr57xubA.roa (hash: VyukPCJwz31E+u5Ce9cCzwq/Lsn1oqGSgyO+hsnU0ek=)
2: vttqTtOT2KO3UH-Wo4vuDEyLR38.crl (hash: uvsz7sgZjc/ez6YMbyYb4rZwnEnltQPotXP83K2uIig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:c9:87:94:d4:ab:8a:a7:f1:d8:86:55:60:e5:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Validity
Not Before: Mar 29 06:00:17 2026 GMT
Not After : Mar 30 06:00:17 2026 GMT
Subject: CN=a60a136bf3b93a8e73982b27af437de3d1f890a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:83:0c:e5:3f:f5:c3:57:b9:36:73:1c:81:d8:
53:ca:9e:09:f3:8e:49:42:46:6b:8b:64:42:00:b6:
56:7a:40:f4:64:ad:d6:9b:30:e4:4e:3b:e0:79:97:
8a:ff:91:f9:77:db:48:bd:e3:c5:69:31:0c:d8:ce:
b2:18:3c:63:cc:e2:3b:4c:57:cc:55:c8:8b:18:c6:
91:4a:ab:c1:72:73:32:54:4c:f9:72:46:aa:07:6b:
3d:44:d7:51:df:d9:37:35:38:9c:7e:96:69:89:7e:
43:69:ee:07:bc:7e:fc:6a:0c:05:53:c7:ef:f5:60:
74:81:47:66:37:e3:70:dd:6e:f4:35:8e:e0:b3:c3:
65:8e:77:82:78:8a:4c:85:22:51:1a:d8:da:40:02:
dd:d6:52:aa:df:79:4e:0b:46:9c:fb:36:bc:2d:ca:
73:2f:77:5d:32:94:98:26:c1:7e:67:db:e0:0b:9b:
a1:f5:7e:c7:48:bb:38:fb:9a:99:c9:07:95:d3:a7:
92:b8:76:ea:c9:60:b6:7a:14:d1:4e:9c:a9:c9:8e:
ff:60:bd:f6:2f:42:2d:be:2f:0b:99:44:42:ed:dc:
78:bf:04:cb:0c:5a:c5:36:69:5f:76:ce:7d:9f:5a:
47:3a:f6:ae:d3:5b:2c:4e:7d:67:7c:f6:0c:10:3c:
1d:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:0A:13:6B:F3:B9:3A:8E:73:98:2B:27:AF:43:7D:E3:D1:F8:90:A7
X509v3 Authority Key Identifier:
keyid:BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:2e:15:04:bc:1f:75:84:3d:89:58:c8:59:3c:55:be:39:19:
36:a0:26:ae:72:06:2b:c1:8f:df:fc:4f:54:ba:9a:37:7f:b5:
fd:37:27:cb:ac:06:c3:40:26:4d:c4:cd:6b:51:95:c6:1a:19:
eb:a4:4a:91:aa:4e:d9:20:4d:c7:8b:6c:d0:d7:bb:f6:d7:a1:
d4:d1:cc:19:a9:ca:39:e8:3b:16:43:3f:80:17:76:b3:a8:dd:
92:b4:1c:4d:54:97:4d:be:9c:c5:f4:7c:f2:ac:e4:7c:d2:a8:
f8:47:42:4b:ed:6e:f7:23:8b:d6:76:39:29:af:0a:8a:b3:6b:
ee:61:1c:fa:ff:be:f6:0a:c1:7f:ac:72:5c:3c:68:91:9c:5e:
60:e0:e2:2b:0b:e9:ef:89:55:b6:9f:27:0f:a8:5b:2d:f5:47:
ae:dc:fd:ae:2b:1e:ed:54:25:9b:2e:0d:6e:a9:94:79:a8:4b:
23:73:55:38:42:d5:99:c2:ca:b3:53:c3:c0:e7:d2:5c:0f:3b:
58:04:80:55:78:ef:2d:f7:53:ac:10:43:74:30:b6:eb:48:d6:
67:8f:3b:8b:ca:41:38:58:d0:4c:2e:37:9f:63:0a:2f:8d:91:
5d:24:1f:cd:81:6f:55:4b:a5:47:86:e1:8a:68:02:4a:71:49:
5f:f7:47:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:53 2026 by rpki-client