Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
File: vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json)
Hash identifier: eD4q8GSpMabfnOMHWw9CuLZ7oTzUy1M/UqrnSrlCFfE=
Subject key identifier: 2D:FC:7F:68:A5:9B:8C:3D:3A:71:4A:38:56:F6:4F:AA:52:04:69:CF
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial: 019CABA1F78E18DB611E5388C37DF979831F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
Manifest number: 171F
Signing time: Sun 01 Mar 2026 23:00:44 +0000
Manifest this update: Sun 01 Mar 2026 23:00:44 +0000
Manifest next update: Mon 02 Mar 2026 23:00:44 +0000
Files and hashes: 1: FB6XhAljb_Cq4OzW1NxhRMI8uX8.roa (hash: oRoqHHkjJ5NsUTcwkAs7nSs4mia9Uv979j7dFZIGR9Y=)
2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: jY88WQBARVvoAU3FW4lPfZKh4bzpBOq0JfzFTHKmE70=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:f7:8e:18:db:61:1e:53:88:c3:7d:f9:79:83:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Validity
Not Before: Mar 1 23:00:44 2026 GMT
Not After : Mar 2 23:00:44 2026 GMT
Subject: CN=2dfc7f68a59b8c3d3a714a3856f64faa520469cf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:dd:7b:47:bb:a8:21:ff:6f:d2:0b:fa:d5:11:
73:3e:06:37:b2:23:e5:ce:a6:42:16:c4:cd:7b:d6:
cf:6d:ca:2f:a8:a8:79:72:89:bd:10:13:a9:6e:e2:
f3:90:0f:b7:de:c2:53:84:53:69:47:ea:36:81:83:
c7:03:00:16:11:02:bb:04:ba:52:87:26:5e:e6:dd:
96:44:1b:ab:fa:1d:b0:c6:5b:20:2c:30:43:a4:c8:
bf:8f:51:be:51:06:40:2e:23:53:d2:77:78:ce:bc:
e8:24:fd:44:3c:30:18:ef:24:54:5f:a6:98:53:15:
a9:92:f9:0f:b7:e7:92:71:39:90:d4:f6:68:82:63:
1f:5c:c6:55:81:93:6b:cb:fb:c0:54:71:7f:cb:15:
d7:cb:36:f0:15:e6:64:ba:44:91:33:c6:61:29:d3:
93:95:5c:72:9c:99:06:e6:70:33:2e:d3:fe:b3:6a:
a4:c9:36:a3:d4:2e:8d:5e:46:a4:4e:46:ea:87:ae:
cc:85:22:1c:ab:7a:14:45:84:53:e8:31:d8:3e:62:
8d:91:e2:a5:48:04:51:ef:21:a9:a4:cb:38:56:5f:
34:cb:64:9c:fa:bc:96:10:fc:de:58:47:e9:9b:b8:
5b:db:20:ca:31:1f:33:c2:f1:48:1e:8a:0d:8b:38:
9d:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:FC:7F:68:A5:9B:8C:3D:3A:71:4A:38:56:F6:4F:AA:52:04:69:CF
X509v3 Authority Key Identifier:
keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:99:61:64:8e:19:2d:ea:03:d7:6d:8c:ce:e4:d0:d2:22:2d:
06:7a:39:1c:d5:b0:92:13:fa:57:88:b3:06:26:40:74:03:e3:
15:97:5d:17:4f:61:86:06:85:5a:70:b1:a5:bc:af:7d:f6:34:
89:ba:a8:ea:ff:64:c5:c4:3d:05:52:b9:11:41:c5:9c:cf:6f:
bf:18:47:fb:2d:62:c4:d4:e8:46:34:67:a8:80:8d:55:2b:06:
ad:4e:d8:d8:fe:bb:86:cd:36:6d:77:39:a5:87:88:de:66:51:
ab:d3:a8:b6:2e:b9:56:9d:4d:f0:3f:da:68:16:bb:08:a5:b7:
19:8e:d6:ab:dd:c2:e4:b4:26:87:fc:9f:a8:3c:fe:b6:58:6b:
40:32:d9:44:91:29:70:d2:a0:8a:5b:b0:a1:7b:88:1c:86:48:
e9:e8:a7:af:58:e9:f4:98:46:f0:4d:4a:e7:cd:4b:d0:e3:e1:
d0:b4:15:9c:dd:fb:2a:8a:74:e6:10:17:aa:08:e6:c9:00:b8:
31:31:ca:d3:21:c3:7c:70:56:d8:d5:e6:a8:03:b4:55:b6:b0:
6e:f2:69:c1:df:5c:58:0d:94:31:8d:03:d3:e4:f9:f5:e2:82:
31:17:54:82:11:95:f2:cb:03:c3:39:ac:5b:fd:03:96:30:ab:
a3:cc:1f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:38:49 2026 by rpki-client