Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
File: vGNYdq8cfvgkEbQEpw2It5FlCfY.mft (raw, json)
Hash identifier: hVRlEWiFZLQS1ZfTyXPd0HFh/il71OgBVYr7K/Lozos=
Subject key identifier: 80:1A:63:8C:BF:C9:4D:F6:1A:D5:BD:41:89:3F:BA:06:58:30:93:1A
Authority key identifier: BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6
Certificate issuer: /CN=bc635876af1c7ef82411b404a70d88b7916509f6
Certificate serial: 019CAA21346D2FBABC518EFC66FBE2C7AA51
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
Manifest number: 0785
Signing time: Sun 01 Mar 2026 16:00:28 +0000
Manifest this update: Sun 01 Mar 2026 16:00:28 +0000
Manifest next update: Mon 02 Mar 2026 16:00:28 +0000
Files and hashes: 1: QVPA9s4tMBXLDCjD1TGmG3LpMQ0.roa (hash: cGmcjeeQyG7f4OMZt/MKW/jCa9uPzECH8kzxaZlj2k4=)
2: vGNYdq8cfvgkEbQEpw2It5FlCfY.crl (hash: ynRi0Lqs9fNnj8TUfZg6CT/tzvNB/Ray79u3sEk4C9g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 16:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:21:34:6d:2f:ba:bc:51:8e:fc:66:fb:e2:c7:aa:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc635876af1c7ef82411b404a70d88b7916509f6
Validity
Not Before: Mar 1 16:00:28 2026 GMT
Not After : Mar 2 16:00:28 2026 GMT
Subject: CN=801a638cbfc94df61ad5bd41893fba065830931a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:e5:60:1c:9d:c4:9c:bb:80:bb:41:a5:ea:af:
ff:01:25:b8:b3:0d:3b:f9:23:dd:20:ac:f4:df:68:
87:62:d4:9e:55:71:5e:e9:07:5c:df:63:4f:0e:67:
d4:b1:a8:ae:73:51:0c:49:ae:87:ec:a7:7a:25:bf:
7f:7c:c7:22:d2:8c:22:3d:99:ca:f7:99:e9:ed:29:
8c:53:5d:2b:7a:d0:1e:f8:86:2f:2a:08:59:65:52:
77:32:1b:0b:92:59:f9:b2:ca:82:be:69:59:46:4c:
07:f3:4b:8d:98:fd:72:5e:81:45:6b:74:06:4d:70:
19:cd:2d:1b:8f:19:59:b7:46:e4:6a:56:6b:40:66:
81:f4:5c:4a:06:ef:50:d3:f8:fc:9d:00:cc:13:74:
83:a2:c9:75:af:7e:ab:5f:b0:0c:30:57:e7:06:4e:
51:c3:36:58:cd:84:d0:54:f7:2b:0c:e5:34:32:ff:
ef:bf:f1:aa:30:4a:27:95:36:c3:39:53:bf:7e:c4:
c7:45:13:d3:51:90:94:16:e2:53:5a:e6:a3:d2:b6:
fb:d9:7c:73:ec:ea:e0:f3:50:0c:aa:74:4e:0c:74:
e3:30:1b:96:a4:44:3e:e2:83:69:d8:ab:98:44:60:
7f:88:1f:86:80:ae:45:b1:5c:65:28:88:d0:d3:c8:
1b:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:1A:63:8C:BF:C9:4D:F6:1A:D5:BD:41:89:3F:BA:06:58:30:93:1A
X509v3 Authority Key Identifier:
keyid:BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:3e:54:eb:56:ed:4e:6a:9e:0d:08:65:84:6c:ac:a3:53:a9:
8f:a0:06:4d:da:53:5f:d8:aa:81:4a:6a:e6:39:3f:a5:02:82:
b8:47:9d:42:6c:73:a2:99:c6:e0:53:a3:ae:52:0f:78:0e:30:
05:12:96:87:06:4f:eb:37:34:df:d5:88:2a:e6:83:b5:d4:3d:
63:40:ff:7a:c7:0f:a6:82:ac:a8:b6:ef:bf:c8:04:15:97:4e:
a1:f2:31:74:b8:23:74:54:18:4f:e2:b5:e1:70:c1:97:28:31:
5a:23:9e:f0:04:32:e5:b9:b3:aa:87:46:a1:fb:ea:c0:79:c8:
8c:7f:76:5e:b7:a3:d4:b4:a5:9b:e5:1f:55:f0:1a:dc:ee:79:
6a:bd:6f:40:b9:8b:70:4e:44:25:7a:b2:c4:9b:a6:7a:a0:09:
dc:d0:f3:9c:3b:2d:76:a4:e3:4f:1a:11:0f:9f:a4:b1:ac:90:
21:16:0f:12:69:3d:93:0b:da:c7:bb:c8:03:f6:f3:fb:5b:d6:
0f:4c:94:59:5a:50:bc:0a:66:40:68:27:0e:64:87:46:ea:b6:
1e:a7:f8:21:f7:02:3f:fc:7e:cb:a2:16:bc:ef:5d:88:26:52:
fc:ff:c8:a8:80:da:e4:46:be:45:54:ee:61:5d:da:d6:d0:a5:
b7:ec:53:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:07:10 2026 by rpki-client