Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
File: vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft (raw, json)
Hash identifier: U76Mc02sowTjj2qQS0ODgyZ/kDaNWmP3ja1UO6EDu1s=
Subject key identifier: 14:9A:A8:A5:CE:E8:49:53:B7:A3:02:05:87:86:90:2F:7D:27:DC:E4
Authority key identifier: BD:68:C1:DA:D9:1A:41:01:C7:15:3C:0F:6D:01:56:23:8A:D7:46:BB
Certificate issuer: /CN=bd68c1dad91a4101c7153c0f6d0156238ad746bb
Certificate serial: 019CABA1F0A2D4F0C4D9FBC385E6D84A1221
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
Manifest number: 17D7
Signing time: Sun 01 Mar 2026 23:00:42 +0000
Manifest this update: Sun 01 Mar 2026 23:00:42 +0000
Manifest next update: Mon 02 Mar 2026 23:00:42 +0000
Files and hashes: 1: 5DvFWn8hN7piazN1T8HIXkNFc8w.roa (hash: XsihtnWpKZygkLBke+BN9JF5neJLF/Mp9MsWC2DKCb8=)
2: vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl (hash: +zUbr8S3aOBK9uNbX8GkLfw/DzYbdDxjLORpxNgsiTg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:f0:a2:d4:f0:c4:d9:fb:c3:85:e6:d8:4a:12:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd68c1dad91a4101c7153c0f6d0156238ad746bb
Validity
Not Before: Mar 1 23:00:42 2026 GMT
Not After : Mar 2 23:00:42 2026 GMT
Subject: CN=149aa8a5cee84953b7a302058786902f7d27dce4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:cf:64:db:74:24:15:6b:77:e3:75:f0:b3:f7:
bd:81:df:31:ce:4d:9a:74:09:81:8f:8d:c9:81:9f:
32:cb:ea:9a:d5:97:6d:d8:95:a5:db:04:9e:4d:8b:
b7:7f:5b:f2:fd:c3:27:21:4e:5f:b4:6f:3b:62:17:
ad:0a:b0:28:e2:f2:ce:cd:34:09:f3:14:0d:1b:bb:
ef:ee:08:49:7d:29:53:0a:f5:75:45:56:83:be:5b:
44:83:ac:f7:87:c3:96:9b:a2:c0:63:2e:35:b2:40:
49:15:32:9f:74:27:37:6c:ec:f9:6e:40:1d:51:7c:
05:ce:49:46:00:06:f0:b6:23:5f:63:f9:97:07:3b:
0d:4d:2c:fa:b4:a6:e4:95:a9:75:d9:18:76:ce:d6:
44:2b:f4:cf:9c:42:45:79:85:87:58:31:c7:29:23:
42:4b:8a:4a:b5:81:7f:99:fe:97:71:5c:3c:9e:f1:
bc:29:70:0a:73:be:bc:83:86:a0:36:8b:e1:3c:b6:
d9:aa:39:1e:e4:3d:c3:79:e6:ee:ca:6d:dc:ba:26:
de:68:10:71:3e:47:c7:9e:3d:01:bd:94:a1:6c:11:
43:67:4c:39:48:ed:c5:03:34:df:7f:d7:fa:dc:d4:
af:0a:01:c4:e9:cf:5a:ec:df:11:8a:10:91:04:5b:
23:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:9A:A8:A5:CE:E8:49:53:B7:A3:02:05:87:86:90:2F:7D:27:DC:E4
X509v3 Authority Key Identifier:
keyid:BD:68:C1:DA:D9:1A:41:01:C7:15:3C:0F:6D:01:56:23:8A:D7:46:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:e3:bf:37:c5:56:86:f3:7a:5c:ac:1d:e6:f2:8c:ca:0a:d4:
db:90:b4:5e:fa:a1:be:ad:33:11:68:c8:c5:7d:c3:a6:34:e1:
ba:46:11:33:2f:7b:b9:e8:72:f0:0e:c6:42:ca:28:3a:35:b2:
53:8c:30:8c:3c:5b:2f:2d:af:b5:9d:34:07:ed:b5:65:3d:dc:
26:bf:9c:eb:29:8f:04:28:8c:64:8b:38:7a:d1:ff:d0:a3:51:
ea:43:25:5b:41:f7:bc:f5:0e:31:f7:cf:00:a2:2d:02:ad:69:
64:1d:d5:5c:99:e5:13:a2:24:6b:07:b6:58:3c:4a:d2:c9:09:
8e:67:e0:2f:95:d5:e7:f7:9d:c8:0f:4c:0b:cc:f5:4c:5f:0d:
ad:1d:3e:c0:81:04:fe:9e:5c:0b:05:38:16:22:57:2a:1d:3e:
21:b0:ab:92:63:61:7c:0f:82:9b:a0:fc:e9:7e:df:ab:d8:02:
84:2b:97:18:37:65:50:bc:5e:9e:55:fc:d8:89:fc:6f:a2:1c:
1d:52:93:d9:ed:93:ca:79:69:3d:af:ae:bc:04:c5:0a:0a:a9:
bb:1b:14:f3:00:fe:c7:f9:94:b1:d8:a2:88:6d:5d:c8:6f:c1:
43:e6:fd:e6:60:fd:b8:cd:48:f8:75:23:1e:54:e7:ac:9e:27:
9a:fd:78:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:59:53 2026 by rpki-client