Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json)
Hash identifier: 1388UH3OHE+2j1Du+FYLbkZrqxskowoY0lddLgZPtLw=
Subject key identifier: 2D:57:EC:86:5C:D0:31:2C:81:AE:50:C9:F9:98:D5:33:93:EE:7B:C1
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 019EBFFF8544DFC057B354DC7D26E56306DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
Manifest number: 195D
Signing time: Sat 13 Jun 2026 08:00:54 +0000
Manifest this update: Sat 13 Jun 2026 08:00:54 +0000
Manifest next update: Sun 14 Jun 2026 08:00:54 +0000
Files and hashes: 1: RP8MgkKEHlqeBOnUZe0z_Y0SQKk.roa (hash: Ptm5tesi9injee8NYFqMkun/MxMMcArohdb5avPOa5I=)
2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: U/ZYPzi/TZsgX2jqeqj8JgBFMS+INrPaO6FmQSeeCMM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:ff:85:44:df:c0:57:b3:54:dc:7d:26:e5:63:06:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: Jun 13 08:00:54 2026 GMT
Not After : Jun 14 08:00:54 2026 GMT
Subject: CN=2d57ec865cd0312c81ae50c9f998d53393ee7bc1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:96:9d:c6:fb:c5:05:19:b8:c6:55:b4:ae:a8:
55:27:8b:d6:a4:0f:4c:1a:8a:b4:3a:c1:46:63:86:
68:6b:e2:9f:e6:cb:41:8c:99:eb:f2:4f:8a:8e:a2:
28:47:44:0c:11:c8:3d:f5:87:be:b1:d8:dc:6a:96:
66:2f:fd:fb:14:4b:34:b2:e1:e6:b5:f3:6f:2d:c4:
a7:a4:32:2e:52:8a:4b:1c:b3:c4:6b:4e:1e:af:28:
f9:06:76:5d:21:5c:a5:54:46:37:cd:b2:8a:16:42:
ef:89:95:43:df:bc:62:32:39:65:34:84:f4:5d:90:
c3:6c:6d:b2:c6:84:bd:09:84:61:af:48:62:0c:7e:
aa:0d:3f:a1:5c:9e:eb:79:47:13:b4:35:f2:e0:18:
bf:58:ba:33:c6:8c:52:96:65:b2:11:fd:f3:d2:f1:
7c:bb:f6:a7:68:bc:c0:84:03:7d:8b:dd:c0:3c:ba:
10:7c:7e:1b:7e:39:de:70:12:32:e8:c0:ea:a1:96:
61:d3:35:37:60:cc:bf:4e:81:3d:a3:fa:21:41:fb:
22:b3:82:9d:c1:c8:00:c9:31:72:d6:a4:ee:3f:47:
3d:c9:95:57:00:d1:21:64:08:15:1a:af:69:11:07:
d6:66:71:dc:25:28:bf:63:84:33:cd:a6:6a:4c:6d:
57:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:57:EC:86:5C:D0:31:2C:81:AE:50:C9:F9:98:D5:33:93:EE:7B:C1
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:31:f9:10:b4:13:a8:e3:3a:27:52:b9:0c:08:92:72:e4:e7:
76:a8:7d:9b:6e:d7:86:4e:3f:03:0f:4d:5c:90:d5:08:c2:fa:
94:80:3b:8d:2c:11:c7:72:94:2c:d4:c5:9a:db:9f:1c:67:07:
c9:51:ba:36:81:5e:ca:c1:d3:c4:a3:49:22:83:0d:75:3d:5f:
33:fb:18:ab:41:55:83:3d:e9:b0:44:52:fd:63:89:04:7a:4f:
f2:e1:95:79:38:ac:8b:b7:a8:23:5c:18:7c:33:62:82:32:7c:
be:27:c0:68:5e:ac:a1:07:c0:5b:09:d8:d8:15:37:52:db:23:
be:ae:2d:35:9e:fe:8b:99:ed:4f:ad:90:1c:b0:11:3a:14:13:
91:cb:5d:07:fe:4d:ba:3a:d1:37:2f:78:11:d7:0e:cc:41:5f:
25:99:df:ce:91:dc:f4:62:40:48:95:ff:d0:61:2e:e1:d6:c6:
9e:fc:c7:3c:83:ab:a8:0c:bc:7b:1e:a2:57:71:4e:15:bb:1a:
b8:6f:1d:e7:4b:f3:89:ae:8d:0f:df:d9:1a:47:e1:20:73:59:
b3:d4:c9:f0:08:64:9f:3d:ee:a9:fa:54:bd:1e:40:02:c0:3c:
40:f3:aa:26:1b:13:8c:55:ff:96:82:9d:e1:87:af:ce:87:c7:
21:61:fe:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:29:51 2026 by rpki-client