Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
File: vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft (raw, json)
Hash identifier: S4jdCjbHFGNB8qtCzLAZlv2/RayPRERaGGWf4acGc5I=
Subject key identifier: BE:C1:A1:C0:0D:28:10:B7:E1:43:9D:10:79:3C:59:F7:9C:CC:BA:C5
Authority key identifier: BD:68:C1:DA:D9:1A:41:01:C7:15:3C:0F:6D:01:56:23:8A:D7:46:BB
Certificate issuer: /CN=bd68c1dad91a4101c7153c0f6d0156238ad746bb
Certificate serial: 019DA4C15973F3692D43B5D90F1694A66CAA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
Manifest number: 1858
Signing time: Sun 19 Apr 2026 08:00:27 +0000
Manifest this update: Sun 19 Apr 2026 08:00:27 +0000
Manifest next update: Mon 20 Apr 2026 08:00:27 +0000
Files and hashes: 1: 5DvFWn8hN7piazN1T8HIXkNFc8w.roa (hash: XsihtnWpKZygkLBke+BN9JF5neJLF/Mp9MsWC2DKCb8=)
2: vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl (hash: Hf4QgNpr7sY+cX2tPjO4/VyIMGv0mr3q6sDHa9aPGnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:c1:59:73:f3:69:2d:43:b5:d9:0f:16:94:a6:6c:aa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd68c1dad91a4101c7153c0f6d0156238ad746bb
Validity
Not Before: Apr 19 08:00:27 2026 GMT
Not After : Apr 20 08:00:27 2026 GMT
Subject: CN=bec1a1c00d2810b7e1439d10793c59f79cccbac5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:92:f8:02:eb:e5:ae:ec:43:d1:98:4a:4a:d6:
30:7f:34:24:84:e0:26:8c:5c:43:60:cc:6f:73:12:
62:65:f4:a6:6e:94:d7:df:c6:0e:f5:a4:73:b1:05:
91:27:5d:8f:a8:66:9f:71:d8:0d:3d:97:13:5c:27:
2b:a0:5a:8a:3c:e6:e0:ee:96:53:eb:5a:18:8e:42:
b7:39:1b:8e:32:0c:22:be:09:93:ab:a1:16:bc:a0:
38:41:0c:64:4b:0b:4d:f6:b0:c2:7a:75:21:ec:07:
80:04:e5:96:c4:28:49:64:af:e3:2b:db:3c:48:82:
52:b0:e5:22:bb:70:2e:94:0c:7e:89:8d:a2:1d:a9:
3c:4c:31:3f:00:8e:01:e8:d0:b5:d1:80:48:2d:92:
fb:fc:33:6d:5e:98:0a:82:fb:4b:5d:a5:57:b8:fd:
c9:fe:94:1c:e3:1c:0a:a4:a6:7e:ad:7d:b8:70:e0:
3a:0c:5b:b8:03:4c:9c:a0:aa:e1:70:59:88:31:f0:
79:5d:bd:31:94:5e:0e:08:cf:dd:84:a7:aa:ee:38:
bd:41:88:46:8e:49:6a:2c:8e:75:f0:f3:c8:4e:a9:
3f:b6:8d:2e:5a:61:0f:6a:a6:89:23:08:ad:51:9e:
0f:0c:21:fb:68:09:ce:0b:e8:88:92:f6:12:b4:ea:
bf:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:C1:A1:C0:0D:28:10:B7:E1:43:9D:10:79:3C:59:F7:9C:CC:BA:C5
X509v3 Authority Key Identifier:
keyid:BD:68:C1:DA:D9:1A:41:01:C7:15:3C:0F:6D:01:56:23:8A:D7:46:BB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vWjB2tkaQQHHFTwPbQFWI4rXRrs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/4f4eff-af54-4db0-91cd-1369cef7a4ca/1/vWjB2tkaQQHHFTwPbQFWI4rXRrs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:2e:3e:06:74:55:59:94:fe:e2:bb:42:28:78:7b:67:d3:c8:
e8:5f:81:69:78:93:c3:0c:f3:69:63:37:e8:29:e6:6d:a6:d4:
a2:19:fe:9c:4c:cf:1a:c7:1b:0f:8d:32:76:52:c8:d9:0d:11:
45:d1:ca:6d:49:a7:e0:f8:2a:2d:84:6a:40:3b:5e:81:d7:da:
2d:40:f9:19:c3:43:9d:63:22:88:3d:10:ff:00:a5:ee:e8:6b:
13:1d:d6:38:ec:6d:c5:10:1f:cf:47:71:95:63:7a:b7:5e:de:
a7:64:b6:5c:5e:42:1f:6f:40:d7:13:87:13:fb:38:25:78:1e:
46:e0:29:98:59:f8:ca:42:73:d3:d6:63:d3:90:18:00:5b:ab:
25:f9:e9:51:b7:e0:ee:bb:20:f7:7e:6e:48:a1:02:62:6f:c7:
90:0a:1c:e8:7d:e1:9f:3c:5e:13:c2:18:f8:f3:65:84:58:7f:
0b:3f:2d:2c:f9:05:ec:55:33:1f:03:82:da:fd:c8:36:f2:44:
2c:9b:fa:6b:47:7c:d5:21:16:7c:03:8e:13:4a:e8:a6:6e:38:
7f:cd:fa:a7:1c:fb:47:4a:9d:32:10:5c:cd:a9:46:47:22:4e:
b5:7f:71:50:a3:37:f8:53:ea:ec:d3:5b:68:33:e6:00:34:e3:
d8:4d:a6:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 12:58:42 2026 by rpki-client