Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
File: vygFmS5lMdPaMe4a9rzVwG0Ctso.mft (raw, json)
Hash identifier: PWn0D8/2bzbtHpEqlOTvichw7ZWKbQXyZVBPlEMCfM0=
Subject key identifier: 57:0D:EB:C4:1B:F7:11:25:60:D1:E3:31:BE:CC:53:29:E5:C3:FD:E1
Authority key identifier: BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA
Certificate issuer: /CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca
Certificate serial: 019EC3A541D6F17160C4E5F0D1932E66A1DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
Manifest number: 195C
Signing time: Sun 14 Jun 2026 01:00:47 +0000
Manifest this update: Sun 14 Jun 2026 01:00:47 +0000
Manifest next update: Mon 15 Jun 2026 01:00:47 +0000
Files and hashes: 1: 1-cSechBeG_43VlV3W2mEZPKzYGE.roa (hash: 9e/rHvRg0gRAUAYkVXIF5QXnGheb2t+lp0PsH5x3v20=)
2: M8hdjmtzd8hrW3Y8l4qmpPKkDK0.roa (hash: J/z8EzYcLAwxjC5JuidTonZF1YMKXrRg2Bt2mDC3F7U=)
3: vygFmS5lMdPaMe4a9rzVwG0Ctso.crl (hash: gJKYR5DgeonyKIonfHJP7auVXWVwepV0GOspdGZ70kc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:a5:41:d6:f1:71:60:c4:e5:f0:d1:93:2e:66:a1:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca
Validity
Not Before: Jun 14 01:00:47 2026 GMT
Not After : Jun 15 01:00:47 2026 GMT
Subject: CN=570debc41bf7112560d1e331becc5329e5c3fde1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:c0:1e:d2:df:b5:c8:60:21:1f:3d:af:c4:d7:
e8:0d:f4:aa:af:4d:65:fc:f4:50:ff:a0:38:11:b4:
2b:23:d1:f0:0b:b8:c4:3e:cd:9e:3c:7a:d4:88:cd:
0b:80:f8:9f:93:06:c1:62:2a:43:17:f4:b1:93:d1:
51:23:df:b2:ed:13:58:9c:07:b0:80:b1:1a:a3:13:
cd:b5:75:c8:d1:5e:55:9b:2e:04:fa:17:67:1d:ec:
36:df:4c:7d:93:0d:fa:e6:ec:e8:61:28:2a:f4:06:
49:d6:c9:2a:8d:9e:30:fd:4c:b0:77:cf:04:2b:b6:
e2:31:0f:38:18:e1:43:da:03:49:e3:94:95:df:9c:
39:bd:e1:ef:78:95:d1:39:c1:77:69:83:c3:fa:1f:
61:0a:0d:ff:3f:8c:74:c7:6e:8e:82:29:33:e2:52:
70:c2:65:97:fe:15:6a:e6:ac:1d:8e:92:f5:56:ea:
2f:48:74:8f:77:42:8a:6c:8a:7e:dd:af:89:db:7a:
58:23:24:3c:b2:b9:f5:1a:4d:f2:9e:3c:14:62:ad:
5f:9c:3c:7d:df:60:65:f9:fe:8b:62:c8:d8:0d:e4:
08:58:17:22:2b:4f:cf:e7:d8:17:21:65:fa:40:6d:
ee:ec:97:ce:95:72:18:e6:38:02:c6:ba:fd:c5:bc:
73:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:0D:EB:C4:1B:F7:11:25:60:D1:E3:31:BE:CC:53:29:E5:C3:FD:E1
X509v3 Authority Key Identifier:
keyid:BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:bf:e7:ac:ad:a6:27:9d:8f:2b:08:86:43:5a:b7:e6:b0:b8:
3e:9a:18:fa:ff:1c:c7:0a:d9:fa:e7:92:b3:fb:91:06:6e:61:
9b:fd:b2:69:3c:e6:ab:71:8f:1f:4f:15:82:20:f9:90:6c:ad:
c9:dd:fb:a2:65:7d:59:de:36:c7:32:6c:71:ba:ff:38:d0:49:
b3:6c:a4:f9:2f:7c:a2:e8:de:35:12:a2:30:66:bc:65:ec:b5:
f2:6c:e0:42:a5:66:7f:ff:19:5a:a8:5a:ac:42:12:9a:39:91:
28:8e:f4:f7:a8:13:f5:50:3c:df:93:4b:65:d6:0e:90:24:7e:
97:8a:b8:95:e4:be:9f:0d:15:22:34:9d:df:40:63:e8:a4:58:
f4:9b:81:9b:aa:a1:4e:69:b2:52:1b:b1:df:6f:ad:2f:e2:c4:
78:a9:78:a9:25:d2:77:79:13:67:9c:04:67:66:73:2e:bb:ca:
00:64:7d:ba:30:7d:29:6d:a7:64:36:70:c4:62:01:2b:60:13:
3d:51:5c:d9:e3:97:f8:de:7c:12:12:e7:5f:b6:16:63:65:1b:
b7:fe:70:3e:6c:16:36:12:f1:6c:e6:cd:a7:52:18:fd:82:7c:
ce:c1:dc:0f:3f:e3:e0:98:2d:26:10:ce:b0:e2:4b:8e:7a:1c:
82:91:4a:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7DpUHW8XFgxOXw0ZMuZqHaMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmMjgwNTk5MmU2NTMxZDNkYTMxZWUxYWY2YmNkNWMwNmQw
MmI2Y2EwHhcNMjYwNjE0MDEwMDQ3WhcNMjYwNjE1MDEwMDQ3WjAzMTEwLwYDVQQD
Eyg1NzBkZWJjNDFiZjcxMTI1NjBkMWUzMzFiZWNjNTMyOWU1YzNmZGUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzsAe0t+1yGAhHz2vxNfoDfSqr01l
/PRQ/6A4EbQrI9HwC7jEPs2ePHrUiM0LgPifkwbBYipDF/Sxk9FRI9+y7RNYnAew
gLEaoxPNtXXI0V5Vmy4E+hdnHew230x9kw365uzoYSgq9AZJ1skqjZ4w/Uywd88E
K7biMQ84GOFD2gNJ45SV35w5veHveJXROcF3aYPD+h9hCg3/P4x0x26Ogikz4lJw
wmWX/hVq5qwdjpL1VuovSHSPd0KKbIp+3a+J23pYIyQ8srn1Gk3ynjwUYq1fnDx9
32Bl+f6LYsjYDeQIWBciK0/P59gXIWX6QG3u7JfOlXIY5jgCxrr9xbxzdwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFcN68Qb9xElYNHjMb7MUynlw/3hMB8GA1UdIwQY
MBaAFL8oBZkuZTHT2jHuGva81cBtArbKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi83NTg0NjctNjgxOC00ZTg0LTg3YmEt
NWQ4Mzg2NjhiZWJlLzEvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi83NTg0NjctNjgxOC00ZTg0LTg3YmEtNWQ4Mzg2NjhiZWJl
LzEvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAr/nrK2m
J52PKwiGQ1q35rC4PpoY+v8cxwrZ+ueSs/uRBm5hm/2yaTzmq3GPH08VgiD5kGyt
yd37omV9Wd42xzJscbr/ONBJs2yk+S98oujeNRKiMGa8Zey18mzgQqVmf/8ZWqha
rEISmjmRKI7096gT9VA835NLZdYOkCR+l4q4leS+nw0VIjSd30Bj6KRY9JuBm6qh
TmmyUhux32+tL+LEeKl4qSXSd3kTZ5wEZ2ZzLrvKAGR9ujB9KW2nZDZwxGIBK2AT
PVFc2eOX+N58EhLnX7YWY2Ubt/5wPmwWNhLxbObNp1IY/YJ8zsHcDz/j4JgtJhDO
sOJLjnocgpFKwA==
-----END CERTIFICATE-----
Generated at Sun Jun 14 04:15:50 2026 by rpki-client