Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json)
Hash identifier: O16L0hUoP8re1wkyisMhfCRuc1f5jfkiMHMZq1HH+Kk=
Subject key identifier: 35:D6:F5:24:D5:4B:9F:FF:6B:A2:1A:BB:26:95:3E:D3:4C:9D:5C:A3
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 019DA41D1F841D42A7BA3EF843D29A91F6D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
Manifest number: 18CA
Signing time: Sun 19 Apr 2026 05:01:05 +0000
Manifest this update: Sun 19 Apr 2026 05:01:05 +0000
Manifest next update: Mon 20 Apr 2026 05:01:05 +0000
Files and hashes: 1: RP8MgkKEHlqeBOnUZe0z_Y0SQKk.roa (hash: Ptm5tesi9injee8NYFqMkun/MxMMcArohdb5avPOa5I=)
2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: yUL8Q3mJwRx411yn6s16a8Mi5GJRlHjdBZAT6fKJv2M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:1d:1f:84:1d:42:a7:ba:3e:f8:43:d2:9a:91:f6:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: Apr 19 05:01:05 2026 GMT
Not After : Apr 20 05:01:05 2026 GMT
Subject: CN=35d6f524d54b9fff6ba21abb26953ed34c9d5ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:64:23:0e:35:d5:4a:44:66:70:71:d8:45:a1:
9a:64:8c:79:cd:4e:78:5d:ed:8d:e3:b9:74:02:b9:
61:0d:12:10:04:7c:c9:7b:d0:6f:e3:37:44:19:32:
34:d6:8d:37:16:f2:d3:09:11:f2:94:3b:f1:e0:f4:
d1:5b:67:6d:e8:7e:3b:f4:18:3f:4b:e9:77:8a:8d:
f7:89:92:8f:15:23:64:75:4e:4f:13:be:03:0a:37:
30:64:05:7a:35:1e:08:6a:c1:17:c9:9e:04:ff:99:
90:5f:6d:5a:fa:95:18:b7:a8:20:61:30:80:6d:c0:
f5:39:77:22:37:41:aa:b0:e6:5f:83:9b:3d:86:1d:
30:71:4b:da:89:b7:52:7d:55:1b:08:e1:ea:83:22:
40:f7:87:d4:ab:d7:74:0b:3f:2f:2b:48:75:e1:d2:
5c:bd:d2:dd:86:f5:b6:d8:f6:13:e9:01:70:75:76:
2f:12:7d:61:76:b5:7e:91:6c:f9:47:b7:41:26:99:
4d:3c:76:09:55:11:38:bb:ae:95:25:53:21:a2:1c:
01:f2:88:d8:26:23:25:b3:08:58:99:c7:96:05:91:
c6:67:03:e8:a4:ef:a4:09:01:cc:09:22:94:a0:7f:
55:db:a2:87:c7:f0:dc:72:13:3a:94:c1:a2:07:11:
5e:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D6:F5:24:D5:4B:9F:FF:6B:A2:1A:BB:26:95:3E:D3:4C:9D:5C:A3
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:33:28:4d:7f:47:7d:7b:5a:5c:77:75:04:a6:4d:fa:31:e4:
eb:ff:50:a3:37:75:da:81:ce:72:04:13:b5:13:f0:3c:60:61:
ce:9b:97:ac:6c:5c:b1:7d:cc:c8:fd:9a:db:e9:7e:f6:c8:60:
c8:d3:58:2f:61:8e:12:54:20:64:d1:4f:57:31:02:b8:4d:09:
60:eb:83:04:48:49:b2:46:1e:2b:c5:25:ec:80:fd:a0:be:07:
2c:20:6c:63:7f:21:5b:5b:68:cd:ea:ae:65:72:87:e8:17:7b:
67:a9:37:99:7d:ab:eb:a7:aa:a4:0b:70:18:f5:21:f0:35:2f:
05:e6:b0:31:45:51:a8:9e:31:8d:71:2d:eb:9f:10:c9:d7:83:
d6:58:98:44:b0:43:71:c2:d0:9d:64:10:fe:58:66:d8:db:63:
db:ef:10:f1:9b:2c:8c:92:67:5a:00:53:5f:a2:29:4e:90:37:
05:9d:d9:c1:65:17:e3:df:63:f0:b5:50:5c:32:af:93:df:82:
92:1e:eb:99:8b:0d:e4:e0:3f:83:63:e6:1e:19:f7:32:7a:7c:
f8:d6:2f:3e:6a:45:92:eb:d8:60:60:4f:64:98:53:0a:38:65:
00:00:d6:b6:fc:73:18:a7:d9:43:b5:97:cc:f7:b9:78:74:d5:
f6:b5:bd:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:47:53 2026 by rpki-client