Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
File: vPnwsJRzjFKC-_SzBnDsX9y1id8.mft (raw, json)
Hash identifier: hpU37fRmeGCz0EmZWA02+JBd5PItq/K22sHO9cOcisg=
Subject key identifier: B8:A3:1F:28:8C:36:E3:ED:34:BE:22:05:40:86:AC:EF:80:55:DF:5E
Authority key identifier: BC:F9:F0:B0:94:73:8C:52:82:FB:F4:B3:06:70:EC:5F:DC:B5:89:DF
Certificate issuer: /CN=bcf9f0b094738c5282fbf4b30670ec5fdcb589df
Certificate serial: 019D9AAB9096FDB3C79A404F2853080C586D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 09:00:28 +0000
Manifest this update: Fri 17 Apr 2026 09:00:28 +0000
Manifest next update: Sat 18 Apr 2026 09:00:28 +0000
Files and hashes: 1: 6ly5xS7Crn95qS-sabxmTiXk0Gw.roa (hash: orel+0qepeeJDJ5TDLnEm1CeQiuPhxAXOKIcf81qcUQ=)
2: vPnwsJRzjFKC-_SzBnDsX9y1id8.crl (hash: PLW9aPrZ+KUJkx/xrABDmUpyWhQOmVOlXqlFSpH0kYQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 09:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:90:96:fd:b3:c7:9a:40:4f:28:53:08:0c:58:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcf9f0b094738c5282fbf4b30670ec5fdcb589df
Validity
Not Before: Apr 17 09:00:28 2026 GMT
Not After : Apr 18 09:00:28 2026 GMT
Subject: CN=b8a31f288c36e3ed34be22054086acef8055df5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:53:09:b0:15:11:54:40:ce:f1:57:a0:18:96:
10:6a:ca:1e:2a:68:ef:24:58:26:2f:73:a6:ed:27:
8f:73:49:ed:f6:2f:0e:c5:66:4c:5e:c0:d8:9c:ed:
da:3e:31:b4:c7:3a:9f:e1:ca:ac:74:72:0e:10:a7:
35:3c:41:d5:7c:f6:09:61:cf:8d:1e:23:c9:f5:ad:
67:52:b3:43:c1:ff:87:f0:a9:ab:7d:36:af:fe:d1:
d0:93:c5:a0:29:44:8f:a8:69:54:cf:41:bf:0f:93:
ce:16:6c:4e:96:1d:8f:68:bc:6d:91:3b:30:35:ba:
7c:de:c1:66:61:f3:d4:13:4b:90:2d:14:a5:d3:1f:
90:a2:26:5c:03:ca:4e:ab:4c:3c:05:25:c6:50:64:
02:97:35:d3:be:5a:f3:60:d9:da:f1:aa:9e:d4:75:
0a:d9:02:06:c6:4f:10:b4:84:79:c2:d1:75:39:8a:
85:d4:39:f9:03:3e:a8:50:92:f6:aa:5f:ca:81:fd:
e7:02:55:b5:90:83:0e:86:15:c0:28:c5:21:e6:17:
a1:20:6f:46:92:2c:e3:54:2c:7c:e3:19:cd:4f:49:
f5:49:ed:7d:09:b4:7c:fc:a4:13:3b:2e:9e:1d:52:
26:ad:eb:98:3f:01:54:42:2f:3a:e7:df:66:16:75:
78:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:A3:1F:28:8C:36:E3:ED:34:BE:22:05:40:86:AC:EF:80:55:DF:5E
X509v3 Authority Key Identifier:
keyid:BC:F9:F0:B0:94:73:8C:52:82:FB:F4:B3:06:70:EC:5F:DC:B5:89:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:17:1c:91:d1:ce:71:34:2e:fc:f2:46:16:4c:8e:8e:eb:ad:
ee:8f:0e:e4:ca:4a:f2:1c:cd:bb:03:80:ee:eb:31:2c:bf:7b:
55:33:db:3e:5e:c2:dc:41:f4:8b:39:77:89:92:ca:7a:e4:db:
7f:a2:27:9e:e7:1b:78:73:a1:36:3f:51:a8:15:42:0c:a5:d7:
4b:67:20:27:73:70:4e:1f:a8:b3:19:12:25:4a:77:a2:50:c1:
c2:f0:07:84:a6:0b:4d:be:d6:0e:09:b3:e0:2b:65:2b:77:51:
62:dd:af:7a:4e:5f:5d:1a:5b:f0:67:3d:7f:2b:a0:81:63:5d:
d5:83:9a:28:be:ef:c0:73:04:73:48:d5:41:33:c7:7b:4f:81:
a4:99:ff:05:b5:1e:b1:d2:c8:ec:5f:c1:5f:6d:4d:4b:19:37:
8a:98:70:dc:0f:a4:fb:6a:e7:d6:a9:c8:d0:87:05:c9:e3:56:
fd:af:80:ad:f5:f5:0c:4e:25:13:43:21:5c:e9:2f:72:3f:02:
17:8f:78:17:2c:e3:24:76:16:87:4f:5a:ce:17:e0:eb:c7:70:
70:d1:d9:08:a8:d0:a0:e4:d0:fa:88:79:03:e0:64:ad:f1:e6:
92:de:3b:2b:65:2d:32:c9:be:21:8a:24:e4:57:b2:09:e4:ec:
f9:c4:c3:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:08:08 2026 by rpki-client