Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
File: vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft (raw, json)
Hash identifier: 0DMf1wr2lQZSbd87DGgjHSBVduu8JLWQU+N7y2ruSi0=
Subject key identifier: 09:1D:38:F5:BF:FA:AE:C1:07:F2:14:B8:3D:38:B2:F6:15:83:42:05
Authority key identifier: BD:B2:4D:F4:A7:C9:AA:21:31:D8:57:50:3B:93:D6:0F:7F:B5:1B:D9
Certificate issuer: /CN=bdb24df4a7c9aa2131d857503b93d60f7fb51bd9
Certificate serial: 019D98BD8903BE7EF4E007F669D7B9193162
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
Manifest number: 058F
Signing time: Fri 17 Apr 2026 00:00:51 +0000
Manifest this update: Fri 17 Apr 2026 00:00:51 +0000
Manifest next update: Sat 18 Apr 2026 00:00:51 +0000
Files and hashes: 1: rnLM_a8LAjwiWtEqOy7Mhls5gy0.roa (hash: jMUOUB5MPfYCum5RcFFu1kpq8F6mGqOp/XYY8NGS/KY=)
2: vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl (hash: fvBsFFqOBN7YG3ulisuebyShCKoFWGVgyFabFke41e8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:bd:89:03:be:7e:f4:e0:07:f6:69:d7:b9:19:31:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdb24df4a7c9aa2131d857503b93d60f7fb51bd9
Validity
Not Before: Apr 17 00:00:51 2026 GMT
Not After : Apr 18 00:00:51 2026 GMT
Subject: CN=091d38f5bffaaec107f214b83d38b2f615834205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c8:5d:37:98:a1:14:e3:55:47:dd:dc:69:eb:
44:9c:3e:3f:2f:30:fc:45:d3:68:06:6d:bb:07:2f:
75:98:c4:7e:37:5d:97:29:81:65:d9:95:c7:e9:a9:
b0:66:8f:e6:5a:d1:15:45:80:de:5a:a4:c4:ef:32:
9b:b1:9e:87:14:bc:d3:7f:9d:fd:50:12:e4:40:36:
93:b7:c7:27:97:8c:28:7b:7e:86:a3:3e:11:d3:dd:
9d:fb:15:f5:8e:f0:25:32:91:9a:bd:11:d8:38:09:
1d:72:93:71:55:c6:b4:41:5a:43:8c:50:ea:e3:80:
6b:71:b8:b0:7e:eb:fa:8d:ff:9a:d8:70:c5:18:15:
4c:cb:2d:7a:9b:15:6a:c5:a6:89:9a:48:bf:f5:38:
34:37:e7:bc:9f:90:a2:6a:f1:24:ea:d3:44:4a:db:
b3:5a:ab:f6:aa:c6:75:f3:c1:36:26:36:91:12:f6:
aa:9a:18:59:cd:ed:25:c9:1b:4f:4b:8f:0f:39:42:
62:0f:a2:44:48:b4:64:2f:6e:94:9a:ca:53:75:1d:
b8:5d:9e:96:ca:ef:a9:61:64:40:b6:ec:80:27:e5:
8e:be:a7:1d:88:80:f2:9d:c7:11:6f:4c:1d:ed:5a:
57:4c:87:fb:cf:d7:55:f5:bc:14:cb:37:e9:5d:02:
ec:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:1D:38:F5:BF:FA:AE:C1:07:F2:14:B8:3D:38:B2:F6:15:83:42:05
X509v3 Authority Key Identifier:
keyid:BD:B2:4D:F4:A7:C9:AA:21:31:D8:57:50:3B:93:D6:0F:7F:B5:1B:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:a7:7b:8e:92:e9:40:50:58:3a:90:78:7f:da:d8:c9:2b:b7:
3a:2a:ba:c2:a6:df:1c:96:a9:ef:ca:55:63:04:8b:fd:ae:6b:
8c:0c:f5:da:18:18:29:88:55:ad:14:0a:64:ac:ed:0a:e4:d4:
65:4d:7a:0c:cd:2f:43:f1:4a:3b:24:f5:7f:42:6e:a1:40:19:
bf:0c:f2:15:88:cc:bd:de:cf:3b:c3:f0:9d:dc:5a:2a:78:42:
8d:38:b2:63:59:76:5e:90:7d:65:fc:bc:d3:32:15:7d:fd:0a:
92:84:93:e5:7f:af:1b:56:85:43:0c:2f:54:ba:31:f8:09:79:
9a:81:f5:63:99:6b:88:e6:09:8d:ad:39:26:ef:64:b3:68:44:
12:be:9a:39:45:4e:d6:24:08:58:bf:17:bd:34:d1:56:38:ee:
90:c6:36:ed:12:38:c3:f8:64:21:02:fe:d5:50:75:30:d3:d0:
be:57:5f:5e:49:50:61:6e:d1:8c:66:02:e9:b2:9d:72:8a:b5:
d4:5c:c7:68:8d:c0:50:08:ef:90:8e:2b:f2:2b:13:a9:c1:29:
f7:ce:00:c0:0e:fa:6e:3b:a2:51:58:1e:16:0b:dc:39:66:86:
40:63:58:43:c0:f2:85:30:e2:73:71:ab:9f:ae:47:b1:c6:a0:
90:95:c9:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 02:33:18 2026 by rpki-client