Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft
File: vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft (raw, json)
Hash identifier: pRJA+VOt9JafDyOZd9XbTBgZlV7lOx39mRDO+haSJuI=
Subject key identifier: A0:DD:2E:5D:44:6D:D2:EC:63:89:83:8B:79:12:47:90:27:5C:BE:82
Authority key identifier: BD:D6:41:05:A1:9D:CD:5C:67:5C:0A:3F:98:EE:8C:60:4E:80:8F:1B
Certificate issuer: /CN=bdd64105a19dcd5c675c0a3f98ee8c604e808f1b
Certificate serial: 019D9AE3767ACA6DF9E8DEF44CA9FA1A6B94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft
Manifest number: 0D9C
Signing time: Fri 17 Apr 2026 10:01:31 +0000
Manifest this update: Fri 17 Apr 2026 10:01:31 +0000
Manifest next update: Sat 18 Apr 2026 10:01:31 +0000
Files and hashes: 1: vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl (hash: X9NSYwbiyIvZYF2FHW8DHa9KaqpxyLnbi+8Zdy4yuzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:76:7a:ca:6d:f9:e8:de:f4:4c:a9:fa:1a:6b:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdd64105a19dcd5c675c0a3f98ee8c604e808f1b
Validity
Not Before: Apr 17 10:01:31 2026 GMT
Not After : Apr 18 10:01:31 2026 GMT
Subject: CN=a0dd2e5d446dd2ec6389838b79124790275cbe82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:22:d6:fe:0c:ad:5f:7b:95:9a:2a:9e:98:cb:
69:67:cc:0b:c4:5d:ed:cb:de:f9:bc:fd:06:5f:03:
9a:c4:c4:e1:f0:35:7e:d4:a5:a5:69:5e:c8:ed:44:
25:86:30:31:ab:80:a2:00:ed:fb:15:ef:5a:cf:69:
19:f1:90:87:22:65:50:43:a2:c0:0b:c1:77:2b:19:
a7:ec:e2:88:65:06:68:e3:eb:4d:19:9d:15:76:f8:
b8:ee:a1:0a:81:ae:1f:bb:41:3b:97:f4:34:2e:9b:
27:4b:34:8a:cd:60:45:5c:99:57:0c:6c:8e:c4:98:
f5:32:86:98:d5:24:63:53:27:c6:ff:bd:4d:a2:bf:
f2:db:5e:71:27:d5:72:61:c7:80:5a:59:f8:a4:5f:
f7:99:1f:79:5a:3a:6f:8a:91:da:69:1f:3e:e5:9b:
af:2c:c0:24:1b:b6:2d:d8:f0:5e:63:51:67:10:ad:
c4:cc:e3:48:55:7b:7a:92:57:a2:2e:44:16:33:28:
e8:70:63:e7:ae:07:3f:ef:4b:3e:30:e5:a8:e0:90:
6c:df:d2:4d:02:e0:81:79:1f:59:54:3c:26:88:8c:
3a:f4:56:0c:04:fb:77:ec:38:bd:b6:9d:1d:6d:32:
19:9f:90:a3:d9:eb:5f:9f:93:6f:a8:18:23:d9:b7:
76:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:DD:2E:5D:44:6D:D2:EC:63:89:83:8B:79:12:47:90:27:5C:BE:82
X509v3 Authority Key Identifier:
keyid:BD:D6:41:05:A1:9D:CD:5C:67:5C:0A:3F:98:EE:8C:60:4E:80:8F:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/0184bd-b5d2-4b9c-916b-d0456f729873/1/vdZBBaGdzVxnXAo_mO6MYE6Ajxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:21:31:c7:d4:56:ee:cf:4f:b4:4e:84:33:e8:13:d4:c7:3a:
cd:fd:25:d9:7b:4d:b8:48:0c:e4:85:4f:3e:29:33:bf:c3:e2:
67:21:55:b7:9e:6a:73:51:0a:8a:15:47:9d:82:8c:9c:3c:3c:
33:48:7f:03:f9:56:fe:0a:ab:bd:e0:8c:af:4a:82:95:60:7a:
95:0d:7b:93:1d:60:f0:4b:b4:98:f0:1b:c9:85:3a:5f:59:19:
df:72:e2:b1:0c:24:8a:4d:a3:d6:69:07:c5:fd:bc:d6:06:8d:
a4:f0:91:0c:e3:d1:6a:34:49:ec:88:8b:12:b4:0d:7b:93:4d:
2c:cd:d6:d6:e3:ed:bc:f5:82:94:9d:06:d0:6c:a4:e1:71:de:
ac:b3:6f:ac:86:e8:c8:34:e7:5b:44:b8:e4:08:85:a0:2b:43:
54:19:45:85:86:9c:1f:d2:38:06:99:6b:91:b8:23:22:ea:82:
22:87:ce:84:bd:cd:f8:ca:38:2c:13:9f:0e:fa:1d:4f:99:d1:
ba:83:f0:07:66:03:c4:f2:52:c6:f4:8d:88:83:bb:01:9d:2a:
41:8d:d7:7b:b1:f3:d8:8b:dd:41:7a:48:86:a4:7f:42:0a:6c:
d2:a2:17:11:10:66:46:00:61:c8:e2:ae:d0:23:05:c2:c7:c3:
f3:72:ed:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:58:17 2026 by rpki-client