Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
File: vygFmS5lMdPaMe4a9rzVwG0Ctso.mft (raw, json)
Hash identifier: 9cpyIGBB3hTTSdtPwhUjsAbsmGgEggjXfYjMIt4RfiY=
Subject key identifier: 53:02:00:73:5A:10:C3:26:02:DA:1D:A0:D7:E4:8B:E4:47:55:4D:33
Authority key identifier: BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA
Certificate issuer: /CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca
Certificate serial: 019CAAC6EBD565BBCAB62E077B251472FD6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 19:01:28 +0000
Manifest this update: Sun 01 Mar 2026 19:01:28 +0000
Manifest next update: Mon 02 Mar 2026 19:01:28 +0000
Files and hashes: 1: 1-cSechBeG_43VlV3W2mEZPKzYGE.roa (hash: 9e/rHvRg0gRAUAYkVXIF5QXnGheb2t+lp0PsH5x3v20=)
2: M8hdjmtzd8hrW3Y8l4qmpPKkDK0.roa (hash: J/z8EzYcLAwxjC5JuidTonZF1YMKXrRg2Bt2mDC3F7U=)
3: vygFmS5lMdPaMe4a9rzVwG0Ctso.crl (hash: eTENLjJ85H60tahgxT61ucZS9ErP67165RfvPXikNtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:eb:d5:65:bb:ca:b6:2e:07:7b:25:14:72:fd:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca
Validity
Not Before: Mar 1 19:01:28 2026 GMT
Not After : Mar 2 19:01:28 2026 GMT
Subject: CN=530200735a10c32602da1da0d7e48be447554d33
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:36:6a:74:76:cd:ae:e3:62:80:0c:1b:ed:19:
e9:83:5f:f5:c4:3d:39:9b:07:ec:4a:8c:40:b3:4d:
4a:ff:f1:30:cc:0f:20:13:e5:11:19:87:ad:d1:b8:
c2:7c:98:ba:91:80:0f:69:e7:ea:f8:60:26:b9:a4:
f0:89:a8:74:27:1c:dd:76:fb:3a:a5:f8:34:c8:0c:
96:72:e7:94:a9:01:94:c7:6e:85:f4:60:77:6a:fe:
a2:03:67:1a:ab:51:d2:30:b1:dc:13:40:ee:c0:03:
88:00:8f:a6:3d:02:bd:5f:d6:0e:ca:9f:38:4d:4b:
15:4b:64:30:4b:f8:09:a2:b8:42:cf:c1:1c:d8:56:
32:b1:2c:3f:d5:ba:08:20:8f:dc:f4:8e:a5:52:f4:
10:ff:d5:14:34:a6:cc:02:c3:4c:25:3a:9f:1b:a0:
31:18:93:8b:f4:f0:21:bd:2a:95:bf:99:9b:9e:ca:
b9:01:1e:a5:6e:43:63:99:35:46:3a:8a:ca:eb:35:
2d:d5:6d:ad:01:97:be:3a:71:8e:79:ed:c4:6b:8e:
52:04:c4:14:97:b9:47:58:42:d2:f3:f7:fb:11:d1:
1f:f6:38:a4:63:53:a7:78:58:23:59:41:0c:cd:f8:
40:ec:74:09:f1:f5:73:3a:3d:53:6b:97:9b:2d:d9:
03:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:02:00:73:5A:10:C3:26:02:DA:1D:A0:D7:E4:8B:E4:47:55:4D:33
X509v3 Authority Key Identifier:
keyid:BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:ce:2d:80:1c:4b:fa:e3:e9:90:7f:3e:69:b4:10:bc:6e:78:
10:ae:ce:ea:1b:d8:12:5f:61:08:1c:f2:33:34:d1:7e:d8:40:
23:d3:66:16:1b:52:0d:2d:dd:d6:91:00:69:84:77:8c:8d:a8:
82:00:9e:6f:f3:58:b8:17:a8:27:8e:0e:ef:79:5b:f5:f2:8c:
95:34:bb:b2:c2:09:fc:32:b3:7b:a1:76:49:07:1e:84:1f:b4:
19:f3:e9:c1:67:cd:17:f1:91:d6:9c:e4:6d:19:a2:ab:de:dd:
6e:49:f2:56:35:29:31:5a:59:8a:a3:e1:88:49:59:85:2b:61:
5f:9f:80:e0:ff:06:4c:58:28:fd:97:d4:66:f7:4a:42:e7:24:
78:6c:7c:78:fb:d9:55:e6:3c:36:61:49:08:a7:7a:aa:11:21:
22:93:29:21:a0:b9:50:48:3d:5e:50:2e:a5:92:7e:8c:a9:52:
de:d9:8b:07:d1:46:93:13:3f:0a:cf:57:10:a1:8a:f7:92:5b:
19:b7:95:d5:97:09:b1:9c:7e:e8:7f:74:76:b5:9a:73:a3:7e:
74:d5:4e:75:22:a4:d6:e4:b0:7d:d3:06:0a:f7:b6:29:d6:bd:
c9:3d:b0:cf:d9:e6:8e:7b:c8:ac:95:92:44:ce:0a:e5:b4:9b:
5a:ae:b3:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqxuvVZbvKti4HeyUUcv1tMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmMjgwNTk5MmU2NTMxZDNkYTMxZWUxYWY2YmNkNWMwNmQw
MmI2Y2EwHhcNMjYwMzAxMTkwMTI4WhcNMjYwMzAyMTkwMTI4WjAzMTEwLwYDVQQD
Eyg1MzAyMDA3MzVhMTBjMzI2MDJkYTFkYTBkN2U0OGJlNDQ3NTU0ZDMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAozZqdHbNruNigAwb7Rnpg1/1xD05
mwfsSoxAs01K//EwzA8gE+URGYet0bjCfJi6kYAPaefq+GAmuaTwiah0Jxzddvs6
pfg0yAyWcueUqQGUx26F9GB3av6iA2caq1HSMLHcE0DuwAOIAI+mPQK9X9YOyp84
TUsVS2QwS/gJorhCz8Ec2FYysSw/1boIII/c9I6lUvQQ/9UUNKbMAsNMJTqfG6Ax
GJOL9PAhvSqVv5mbnsq5AR6lbkNjmTVGOorK6zUt1W2tAZe+OnGOee3Ea45SBMQU
l7lHWELS8/f7EdEf9jikY1OneFgjWUEMzfhA7HQJ8fVzOj1Ta5ebLdkDpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFMCAHNaEMMmAtodoNfki+RHVU0zMB8GA1UdIwQY
MBaAFL8oBZkuZTHT2jHuGva81cBtArbKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi83NTg0NjctNjgxOC00ZTg0LTg3YmEt
NWQ4Mzg2NjhiZWJlLzEvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi83NTg0NjctNjgxOC00ZTg0LTg3YmEtNWQ4Mzg2NjhiZWJl
LzEvdnlnRm1TNWxNZFBhTWU0YTlyelZ3RzBDdHNvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMs4tgBxL
+uPpkH8+abQQvG54EK7O6hvYEl9hCBzyMzTRfthAI9NmFhtSDS3d1pEAaYR3jI2o
ggCeb/NYuBeoJ44O73lb9fKMlTS7ssIJ/DKze6F2SQcehB+0GfPpwWfNF/GR1pzk
bRmiq97dbknyVjUpMVpZiqPhiElZhSthX5+A4P8GTFgo/ZfUZvdKQuckeGx8ePvZ
VeY8NmFJCKd6qhEhIpMpIaC5UEg9XlAupZJ+jKlS3tmLB9FGkxM/Cs9XEKGK95Jb
GbeV1ZcJsZx+6H90drWac6N+dNVOdSKk1uSwfdMGCve2Kda9yT2wz9nmjnvIrJWS
RM4K5bSbWq6zUQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 02:26:32 2026 by rpki-client