Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
File: vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json)
Hash identifier: ltkK9F3ICY4ItLL74Zphbe1wNtox37MMGtzd9d7AVSk=
Subject key identifier: CE:14:B6:7A:D5:3B:04:AB:85:9E:BE:9B:CF:E1:C6:FD:F6:31:2E:C0
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial: 019D9B1985F05C7CF3C59EA2F1160A65343D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
Manifest number: 179B
Signing time: Fri 17 Apr 2026 11:00:34 +0000
Manifest this update: Fri 17 Apr 2026 11:00:34 +0000
Manifest next update: Sat 18 Apr 2026 11:00:34 +0000
Files and hashes: 1: FB6XhAljb_Cq4OzW1NxhRMI8uX8.roa (hash: oRoqHHkjJ5NsUTcwkAs7nSs4mia9Uv979j7dFZIGR9Y=)
2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: sEso3ToIhyOJBpNsH2SIXu5ssMrhXg247Sa7dVSS6Tg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:85:f0:5c:7c:f3:c5:9e:a2:f1:16:0a:65:34:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Validity
Not Before: Apr 17 11:00:34 2026 GMT
Not After : Apr 18 11:00:34 2026 GMT
Subject: CN=ce14b67ad53b04ab859ebe9bcfe1c6fdf6312ec0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:8c:84:12:cd:60:79:02:45:88:4d:be:44:50:
a5:c4:45:89:15:b3:89:57:e5:0b:4a:f8:47:06:0c:
57:7f:d1:ab:08:67:f5:d5:01:06:03:fa:93:eb:7f:
69:88:b1:04:57:f4:77:1f:1c:9a:86:fe:4f:f1:78:
49:b9:e4:63:33:6b:21:b6:b8:4e:b3:81:49:38:81:
52:16:10:89:ac:80:85:51:c3:c2:bf:d0:56:f1:fa:
00:c2:e6:b5:b8:0f:a3:05:d0:cf:95:ab:51:0c:30:
44:1d:98:05:70:7a:1d:35:5c:ba:4b:a2:2b:fd:7e:
d0:2b:29:b2:9c:c6:6c:ea:4d:df:fa:5a:39:f0:db:
15:6f:4b:15:a2:97:48:0d:f9:e4:a1:05:f1:ee:2f:
4b:90:82:34:a0:2f:5b:f5:fc:9d:70:6f:60:13:90:
09:68:a4:98:70:85:3d:3f:6d:a6:b5:ed:0a:f5:32:
1b:17:6c:b0:3b:9c:01:d6:ab:f9:df:06:fa:af:2b:
82:11:93:97:45:45:2b:db:a3:78:06:6c:be:ce:08:
f7:d6:97:62:f4:af:dd:e8:c1:b6:48:72:48:5f:06:
52:46:eb:8a:5b:c1:c8:2c:0d:ad:4b:29:d0:75:ab:
85:bb:17:cf:85:96:07:1c:c1:07:15:c9:9e:27:b8:
15:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:14:B6:7A:D5:3B:04:AB:85:9E:BE:9B:CF:E1:C6:FD:F6:31:2E:C0
X509v3 Authority Key Identifier:
keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:25:ab:bb:45:4f:05:ff:b8:58:e6:ca:35:a8:19:c9:00:58:
62:0f:33:95:aa:93:9d:0f:8b:dd:1b:d8:7a:50:c9:fc:ce:a0:
47:98:b2:e3:44:69:6f:4f:8d:df:ef:6c:3d:a6:40:63:7a:bc:
05:f0:65:23:11:d9:ba:ca:ea:1a:57:e6:27:e4:15:f2:7e:b8:
bf:bc:5b:50:af:3c:59:ae:bc:3a:6d:19:47:0c:53:e9:9e:ba:
da:ee:e2:9d:ac:64:07:c5:bf:1f:75:b4:07:f1:3f:04:c1:ea:
c3:47:b0:87:11:79:ab:45:93:5f:7d:7d:8f:39:cd:7a:df:d6:
e2:a9:e8:ef:25:12:74:df:46:31:78:ce:15:3d:75:14:1c:61:
1a:df:9d:0e:32:0f:47:03:e7:1d:32:70:20:47:98:9b:b5:b0:
e8:6c:69:21:05:e1:39:84:4f:35:df:e1:8b:0d:c0:81:42:20:
ef:35:9f:4e:08:21:f2:b6:43:60:74:52:b4:3b:7a:7d:17:72:
09:a5:f9:07:e6:7a:52:cb:cb:31:72:b9:8e:12:b4:c8:b2:48:
02:4d:3e:1e:5b:f6:72:e3:83:8d:e0:32:9c:0d:7a:c1:f1:9d:
d6:ae:f0:1c:d1:cc:f6:e9:bb:ff:b6:86:53:74:bc:bf:07:cc:
d1:4a:41:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2bGYXwXHzzxZ6i8RYKZTQ9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkZjk2MGIwZWU2YmM1ZDBmNmEwYzY0YTY5ZjJmODYyNTlm
ZGNkNTgwHhcNMjYwNDE3MTEwMDM0WhcNMjYwNDE4MTEwMDM0WjAzMTEwLwYDVQQD
EyhjZTE0YjY3YWQ1M2IwNGFiODU5ZWJlOWJjZmUxYzZmZGY2MzEyZWMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoyEEs1geQJFiE2+RFClxEWJFbOJ
V+ULSvhHBgxXf9GrCGf11QEGA/qT639piLEEV/R3Hxyahv5P8XhJueRjM2shtrhO
s4FJOIFSFhCJrICFUcPCv9BW8foAwua1uA+jBdDPlatRDDBEHZgFcHodNVy6S6Ir
/X7QKymynMZs6k3f+lo58NsVb0sVopdIDfnkoQXx7i9LkII0oC9b9fydcG9gE5AJ
aKSYcIU9P22mte0K9TIbF2ywO5wB1qv53wb6ryuCEZOXRUUr26N4Bmy+zgj31pdi
9K/d6MG2SHJIXwZSRuuKW8HILA2tSynQdauFuxfPhZYHHMEHFcmeJ7gVmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM4UtnrVOwSrhZ6+m8/hxv32MS7AMB8GA1UdIwQY
MBaAFL35YLDua8XQ9qDGSmny+GJZ/c1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8zMzY4NGEtMTJjMi00MjNhLWJkM2Et
M2RkZmZkZWI5MjA3LzEvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi8zMzY4NGEtMTJjMi00MjNhLWJkM2EtM2RkZmZkZWI5MjA3
LzEvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEyWru0VP
Bf+4WObKNagZyQBYYg8zlaqTnQ+L3RvYelDJ/M6gR5iy40Rpb0+N3+9sPaZAY3q8
BfBlIxHZusrqGlfmJ+QV8n64v7xbUK88Wa68Om0ZRwxT6Z662u7inaxkB8W/H3W0
B/E/BMHqw0ewhxF5q0WTX319jznNet/W4qno7yUSdN9GMXjOFT11FBxhGt+dDjIP
RwPnHTJwIEeYm7Ww6GxpIQXhOYRPNd/hiw3AgUIg7zWfTggh8rZDYHRStDt6fRdy
CaX5B+Z6UsvLMXK5jhK0yLJIAk0+Hlv2cuODjeAynA16wfGd1q7wHNHM9um7/7aG
U3S8vwfM0UpBKA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 13:42:42 2026 by rpki-client