Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
File: vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft (raw, json)
Hash identifier: XVds3sHCZjBaOJeKpIHfJooZ+oyKzpDTF3yVTtFTU/0=
Subject key identifier: AA:E9:08:54:0F:E8:CF:37:BE:3E:41:B0:4A:68:D9:BB:93:36:43:D9
Authority key identifier: BD:B2:4D:F4:A7:C9:AA:21:31:D8:57:50:3B:93:D6:0F:7F:B5:1B:D9
Certificate issuer: /CN=bdb24df4a7c9aa2131d857503b93d60f7fb51bd9
Certificate serial: 019CAB34A32D4F3A6239D5FD5607530E3BEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
Manifest number: 0514
Signing time: Sun 01 Mar 2026 21:01:19 +0000
Manifest this update: Sun 01 Mar 2026 21:01:19 +0000
Manifest next update: Mon 02 Mar 2026 21:01:19 +0000
Files and hashes: 1: rnLM_a8LAjwiWtEqOy7Mhls5gy0.roa (hash: jMUOUB5MPfYCum5RcFFu1kpq8F6mGqOp/XYY8NGS/KY=)
2: vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl (hash: WksjgfI7/yXQZeu1ewMzLvSi6XNAEHIaZGZYItCbMS0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:a3:2d:4f:3a:62:39:d5:fd:56:07:53:0e:3b:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdb24df4a7c9aa2131d857503b93d60f7fb51bd9
Validity
Not Before: Mar 1 21:01:19 2026 GMT
Not After : Mar 2 21:01:19 2026 GMT
Subject: CN=aae908540fe8cf37be3e41b04a68d9bb933643d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b5:2c:fb:47:b6:57:c8:6f:32:37:f9:5c:c8:
13:c8:2d:9a:61:de:2f:07:df:8e:31:fb:18:20:04:
e8:3e:20:00:2c:e9:bb:a6:a7:0d:57:c7:5d:aa:da:
c1:80:35:ef:15:48:f0:53:08:30:40:30:1f:10:47:
8a:a1:dd:44:d8:1c:39:db:db:fe:74:8d:a9:60:e4:
57:58:5f:be:c6:ca:ba:94:d1:f1:2c:79:ba:af:8f:
af:8b:ee:27:a9:32:75:3c:eb:2c:bc:04:3d:19:e1:
b9:90:5c:3a:45:70:bb:d5:5f:e8:3d:e8:f3:e8:20:
fe:ce:fc:1d:7d:53:57:e7:e5:0d:f5:b7:66:d9:fe:
fc:72:55:f7:27:d1:55:90:82:d6:da:45:cf:d7:e9:
31:73:92:11:60:3a:d0:aa:d3:77:ff:20:ac:f3:e0:
89:51:02:f6:5e:93:9e:9f:db:5c:6c:20:e8:fe:98:
23:e7:06:f0:7c:d3:23:81:10:f8:33:00:35:4d:0d:
22:d8:2d:33:db:37:27:ea:03:43:c0:ce:da:02:85:
ab:6f:f4:39:12:9b:cb:72:ff:b7:79:7d:4d:7a:3d:
54:c1:d7:e2:1c:67:5b:98:45:c4:a1:7c:64:46:9c:
e6:83:ee:7c:71:f3:a3:cd:4c:a6:44:e5:16:d5:10:
c3:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:E9:08:54:0F:E8:CF:37:BE:3E:41:B0:4A:68:D9:BB:93:36:43:D9
X509v3 Authority Key Identifier:
keyid:BD:B2:4D:F4:A7:C9:AA:21:31:D8:57:50:3B:93:D6:0F:7F:B5:1B:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:0b:d6:63:43:87:7c:91:2f:7b:8b:03:42:82:03:53:37:60:
4d:e5:aa:bf:84:1d:54:3e:47:60:96:52:1c:90:33:6c:f6:f2:
ca:4e:0c:5b:55:fd:4b:59:cd:d8:1a:b8:90:89:39:40:18:6b:
f3:05:ce:71:8e:cf:2f:5d:96:77:e3:76:fd:3c:c5:b7:a9:99:
08:3b:2f:7e:d4:73:af:30:9d:7e:41:a4:24:e3:2a:f4:ff:a9:
7d:f3:9c:28:c5:03:41:f5:b7:9e:2a:a4:90:2f:b9:62:12:6d:
7c:fb:05:c3:34:80:a0:0d:92:a0:52:bd:bf:99:7b:bc:36:c3:
8b:86:cc:34:4d:fc:d4:2d:df:ee:21:c9:e0:0a:45:d2:cb:68:
3a:2c:e2:f1:9f:76:97:82:95:0e:c5:ea:d8:ba:67:07:41:53:
9b:02:46:72:29:53:66:e5:30:44:29:01:be:2e:d6:0c:07:d9:
62:55:a6:7c:35:81:ab:80:0e:80:a2:75:bf:bf:72:64:37:a3:
7a:16:c0:5d:01:2a:3a:02:09:d3:89:03:67:b1:fb:8a:62:ad:
5a:1b:c7:22:7f:3a:a9:6d:2f:0f:6e:ed:3d:34:33:29:f8:87:
cd:26:74:5c:a8:39:5e:2b:86:58:a2:d2:bf:63:16:e6:9e:a6:
5d:5f:08:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:47:29 2026 by rpki-client