Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
File: vK-LpZ96PF0A_grUVk2AUk33-pA.mft (raw, json)
Hash identifier: 72sENPnRMfNCLM1OTIMQZH82XerTH3/8M90Xg4b5qpQ=
Subject key identifier: 6A:81:74:53:73:A0:1F:A2:BC:37:A7:4C:62:34:28:90:2A:08:F2:69
Authority key identifier: BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
Certificate issuer: /CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Certificate serial: 019D9A3E5FFA474D96F6D55D9A7FBF772CD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 07:01:12 +0000
Manifest this update: Fri 17 Apr 2026 07:01:12 +0000
Manifest next update: Sat 18 Apr 2026 07:01:12 +0000
Files and hashes: 1: JH9XT1NUV14_SKsiiCKlHziQ9DM.roa (hash: 04vIJ1yQ8bNTRGDpE43oQ18qFJ2VyqPCHwJQW+bmQgI=)
2: vK-LpZ96PF0A_grUVk2AUk33-pA.crl (hash: CIoiWoTFsz+Ln+HGoOpUHqi65+PT8gn8pPk7c6+WyzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:5f:fa:47:4d:96:f6:d5:5d:9a:7f:bf:77:2c:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Validity
Not Before: Apr 17 07:01:12 2026 GMT
Not After : Apr 18 07:01:12 2026 GMT
Subject: CN=6a81745373a01fa2bc37a74c623428902a08f269
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:d1:07:cc:4a:2d:fd:e5:62:5c:10:cd:e2:10:
ad:c0:22:6d:97:ad:df:1f:88:92:de:6e:cd:be:27:
3a:42:e3:a8:06:3c:e5:fd:d0:eb:28:db:cf:e2:a5:
37:bd:8f:d3:d2:01:20:be:ac:22:6a:27:a4:1a:09:
ab:90:1d:41:5f:3b:0a:eb:1f:38:06:df:17:f4:0f:
7f:5f:08:72:49:43:d1:78:96:81:86:38:52:e5:43:
86:a5:10:72:94:dd:15:d1:7a:c5:8d:ca:1e:a1:ae:
23:d8:29:58:71:13:e6:05:7e:b9:20:7b:f9:88:17:
c2:7f:39:59:3b:fe:00:d7:22:2d:be:f4:11:26:43:
1b:aa:9d:7d:7f:83:f4:ba:3c:d9:a6:d7:06:84:ba:
4b:30:f3:d8:25:45:91:68:59:59:14:bb:d7:d3:15:
30:25:cc:20:19:1a:be:76:1d:2e:c2:7f:06:69:26:
a4:69:4e:9d:26:f4:dd:f3:47:79:9a:74:4b:b8:13:
06:82:6c:eb:76:dd:e2:17:41:3d:25:81:0f:47:90:
d1:ca:8a:97:64:7e:2a:5b:37:ab:98:3d:9e:d4:ac:
ee:18:e2:62:90:8e:56:95:07:f7:32:8f:d4:33:b1:
7f:b1:56:ec:7d:b3:28:cc:e8:9e:12:bc:ac:b3:d8:
25:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:81:74:53:73:A0:1F:A2:BC:37:A7:4C:62:34:28:90:2A:08:F2:69
X509v3 Authority Key Identifier:
keyid:BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:d5:74:81:3f:ef:43:6b:39:1e:e8:7d:b9:1e:52:41:0f:2f:
da:77:5f:f3:58:34:70:f5:3c:65:f4:0c:b7:3e:5b:37:1b:2f:
76:f0:fa:f1:09:ec:dd:2e:2f:d9:f8:18:5e:63:ed:37:31:7b:
dc:d6:8a:6f:a0:10:e7:12:c6:36:d9:80:a4:e8:13:c6:b8:3f:
8f:80:83:56:ff:75:ce:7a:f2:99:03:57:6c:2f:5b:41:96:7b:
8e:3b:e9:45:a5:ce:36:ff:54:43:28:11:ad:d9:df:5c:c4:99:
cc:8e:37:47:b1:0c:23:de:06:bb:c9:a0:d4:3c:9b:9b:16:37:
ad:19:07:dc:26:2c:6f:46:6b:29:a3:d0:a7:97:eb:f5:38:66:
b4:1c:3c:9c:53:46:39:f4:0e:e7:ac:05:33:e7:82:62:c1:0e:
4a:a3:8d:91:a9:4e:49:07:f3:ee:8a:d6:88:80:68:dc:57:bb:
a2:39:68:56:52:c2:7b:cf:43:c8:5a:fd:1a:cc:61:b1:d5:b0:
31:83:c0:d9:9f:86:c1:21:6b:cd:5f:82:15:f6:d4:28:42:e8:
3b:2e:01:ec:3d:5e:f5:a8:93:67:9b:e0:81:0c:0e:f1:58:2b:
78:8c:5e:d0:d4:2c:a7:0c:fa:cd:b7:92:08:5e:17:40:64:c5:
c9:9e:03:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:16:28 2026 by rpki-client