Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
File: vJldFVAngKzfe25qGGXttaDn3Es.mft (raw, json)
Hash identifier: S0W7KCzCWMHBCbV2dklD1WFr3ANVCrrTZPOwsy7BSmM=
Subject key identifier: E3:09:80:AA:2F:24:04:6D:4D:17:8B:76:93:98:F1:D8:9D:D8:3A:59
Authority key identifier: BC:99:5D:15:50:27:80:AC:DF:7B:6E:6A:18:65:ED:B5:A0:E7:DC:4B
Certificate issuer: /CN=bc995d15502780acdf7b6e6a1865edb5a0e7dc4b
Certificate serial: 019CABD9EB31A3C5AA511A42E67E166F316A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
Manifest number: 05FC
Signing time: Mon 02 Mar 2026 00:01:51 +0000
Manifest this update: Mon 02 Mar 2026 00:01:51 +0000
Manifest next update: Tue 03 Mar 2026 00:01:51 +0000
Files and hashes: 1: LgX3EnuU8OfYYtzP7MkhOHIuG6k.roa (hash: tdx965ReIy+ujDSCSzvpO67kGikMuRqJQAFubursvgs=)
2: gzoeZ2AgO1ey7ZNcukJz3zjT1LY.roa (hash: argro5YsxjIunpkmHi4BZRWmPpTrNV/wF+jpyXPN3DM=)
3: vJldFVAngKzfe25qGGXttaDn3Es.crl (hash: 3ADPFJ+Z1l9255L1rUYHhlGd5CdEza5jcBikvLeqM+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:eb:31:a3:c5:aa:51:1a:42:e6:7e:16:6f:31:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc995d15502780acdf7b6e6a1865edb5a0e7dc4b
Validity
Not Before: Mar 2 00:01:51 2026 GMT
Not After : Mar 3 00:01:51 2026 GMT
Subject: CN=e30980aa2f24046d4d178b769398f1d89dd83a59
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:c7:5b:da:c2:99:30:f6:62:ac:77:76:10:23:
f2:a6:c9:7d:dd:99:90:30:7f:1b:3d:3c:67:aa:91:
27:d4:f5:c4:96:b4:52:1a:c2:66:72:17:3a:62:c2:
c3:a0:37:8d:53:64:7b:33:de:a8:02:64:ab:dd:85:
3e:9c:f6:5d:5b:17:d7:3d:fa:5f:13:30:69:d8:82:
75:58:62:c9:64:82:f9:d7:0f:5a:c1:be:c3:d2:30:
aa:4f:7c:c3:f4:4d:9e:3b:69:f3:c2:2f:ea:f3:1d:
1a:d8:db:33:b0:92:6d:b6:06:a9:49:aa:d1:5d:27:
d1:73:e1:d4:19:cc:15:9f:83:e7:0a:e4:d5:f7:fb:
33:ae:49:7e:c9:db:76:26:e6:ef:5a:40:ab:2b:5f:
b1:fc:b2:39:45:3d:68:4e:45:7d:92:13:7a:a6:60:
3c:68:c5:05:87:52:d5:23:ed:90:63:90:d0:7f:c3:
7a:a8:a3:b0:c6:71:eb:ae:19:8c:57:5d:d4:8d:ab:
dd:01:de:52:17:99:11:1c:41:ac:c4:24:e0:21:18:
f6:6a:27:87:ac:cf:a1:3b:45:76:e1:09:63:76:f0:
2e:4d:a1:6b:05:29:69:8a:64:ff:cd:ea:1c:37:80:
2d:ab:8b:3b:c4:dc:65:65:6a:de:2a:a7:b5:f3:b0:
4c:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:09:80:AA:2F:24:04:6D:4D:17:8B:76:93:98:F1:D8:9D:D8:3A:59
X509v3 Authority Key Identifier:
keyid:BC:99:5D:15:50:27:80:AC:DF:7B:6E:6A:18:65:ED:B5:A0:E7:DC:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:2d:b4:85:ba:81:37:74:6c:31:8e:23:60:c0:4a:88:39:8d:
c4:16:4c:cd:df:60:c4:bb:79:41:18:a4:c8:3a:5e:fe:16:82:
39:eb:c7:78:7c:b4:65:a2:77:74:e6:2a:5e:0b:5f:3b:bd:4c:
19:ce:0f:d6:ba:7b:8c:a4:19:f6:10:20:5a:b1:64:1d:54:07:
98:c1:61:ec:b1:1b:93:64:ea:63:ca:82:c5:b1:06:a3:84:7f:
70:0d:30:32:42:b1:f6:e2:d9:f8:c9:35:cc:74:cc:81:9a:19:
2c:bf:8f:ad:d0:1b:ec:6a:fe:ea:c9:5c:bf:6b:c2:2d:80:aa:
33:5b:2f:ce:d3:dd:1b:57:a6:2b:29:4e:9c:26:5e:19:ab:f9:
33:1d:12:94:e1:5b:0f:5a:03:85:2f:4e:48:b3:0f:88:4b:a1:
79:79:bf:f9:50:5c:22:75:fe:c5:e4:94:c0:1b:01:38:28:2b:
00:fd:2a:45:94:67:60:08:ab:33:49:61:6c:fc:1f:ef:7d:6e:
b5:e9:00:7e:aa:85:95:8f:34:e5:56:f4:b3:57:b7:2a:9f:34:
a6:bd:f3:7b:9c:5e:45:eb:83:28:c7:83:1c:0d:61:d2:b4:da:
c1:e9:57:6f:11:99:76:b5:a4:4b:c5:ab:df:44:16:90:d9:85:
0b:ec:73:de
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2esxo8WqURpC5n4WbzFqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjOTk1ZDE1NTAyNzgwYWNkZjdiNmU2YTE4NjVlZGI1YTBl
N2RjNGIwHhcNMjYwMzAyMDAwMTUxWhcNMjYwMzAzMDAwMTUxWjAzMTEwLwYDVQQD
EyhlMzA5ODBhYTJmMjQwNDZkNGQxNzhiNzY5Mzk4ZjFkODlkZDgzYTU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsdb2sKZMPZirHd2ECPypsl93ZmQ
MH8bPTxnqpEn1PXElrRSGsJmchc6YsLDoDeNU2R7M96oAmSr3YU+nPZdWxfXPfpf
EzBp2IJ1WGLJZIL51w9awb7D0jCqT3zD9E2eO2nzwi/q8x0a2NszsJJttgapSarR
XSfRc+HUGcwVn4PnCuTV9/szrkl+ydt2JubvWkCrK1+x/LI5RT1oTkV9khN6pmA8
aMUFh1LVI+2QY5DQf8N6qKOwxnHrrhmMV13UjavdAd5SF5kRHEGsxCTgIRj2aieH
rM+hO0V24QljdvAuTaFrBSlpimT/zeocN4Atq4s7xNxlZWreKqe187BMGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOMJgKovJARtTReLdpOY8did2DpZMB8GA1UdIwQY
MBaAFLyZXRVQJ4Cs33tuahhl7bWg59xLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkpsZEZWQW5nS3pmZTI1cUdHWHR0YURuM0VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wNDQzNTAtOGNjOS00ODZkLTg3Yzkt
NTcyYzRlMTI5ZDMyLzEvdkpsZEZWQW5nS3pmZTI1cUdHWHR0YURuM0VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS8wNDQzNTAtOGNjOS00ODZkLTg3YzktNTcyYzRlMTI5ZDMy
LzEvdkpsZEZWQW5nS3pmZTI1cUdHWHR0YURuM0VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQC20hbqB
N3RsMY4jYMBKiDmNxBZMzd9gxLt5QRikyDpe/haCOevHeHy0ZaJ3dOYqXgtfO71M
Gc4P1rp7jKQZ9hAgWrFkHVQHmMFh7LEbk2TqY8qCxbEGo4R/cA0wMkKx9uLZ+Mk1
zHTMgZoZLL+PrdAb7Gr+6slcv2vCLYCqM1svztPdG1emKylOnCZeGav5Mx0SlOFb
D1oDhS9OSLMPiEuheXm/+VBcInX+xeSUwBsBOCgrAP0qRZRnYAirM0lhbPwf731u
tekAfqqFlY805Vb0s1e3Kp80pr3ze5xeReuDKMeDHA1h0rTawelXbxGZdrWkS8Wr
30QWkNmFC+xz3g==
-----END CERTIFICATE-----
Generated at Mon Mar 2 10:59:45 2026 by rpki-client