Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
File: vK-LpZ96PF0A_grUVk2AUk33-pA.mft (raw, json)
Hash identifier: 3N2ZOa1Ugh4x8NIqUeTp+knliIW7RRStVDp+B5cufK4=
Subject key identifier: 28:BD:0B:EA:0A:8E:3F:CE:65:64:53:8D:2C:72:4F:9B:F4:54:8A:50
Authority key identifier: BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
Certificate issuer: /CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Certificate serial: 019CAEA369C6902730E3D8127EFD9E138F8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
Manifest number: 1845
Signing time: Mon 02 Mar 2026 13:01:10 +0000
Manifest this update: Mon 02 Mar 2026 13:01:10 +0000
Manifest next update: Tue 03 Mar 2026 13:01:10 +0000
Files and hashes: 1: JH9XT1NUV14_SKsiiCKlHziQ9DM.roa (hash: 04vIJ1yQ8bNTRGDpE43oQ18qFJ2VyqPCHwJQW+bmQgI=)
2: vK-LpZ96PF0A_grUVk2AUk33-pA.crl (hash: 4i5d4L2xLt2J3OagZ+4NO/m3+p3kIMQgSTL7LleTxzM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:a3:69:c6:90:27:30:e3:d8:12:7e:fd:9e:13:8f:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Validity
Not Before: Mar 2 13:01:10 2026 GMT
Not After : Mar 3 13:01:10 2026 GMT
Subject: CN=28bd0bea0a8e3fce6564538d2c724f9bf4548a50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:14:5e:6c:9d:17:cd:e5:c6:f9:08:a6:87:03:
71:dc:c1:7c:ea:41:f4:5f:ab:15:c0:6f:b2:ea:e9:
6e:49:63:07:cc:97:52:b8:5a:a3:fa:97:30:9d:7f:
1a:a2:28:39:f6:e7:11:c5:61:55:02:48:b8:6b:b1:
12:19:81:84:a8:f3:53:89:26:55:57:48:11:7c:36:
1b:3e:df:43:ab:33:7d:f8:20:e2:80:a7:87:69:97:
03:42:db:00:02:96:41:f4:bd:41:d7:c9:60:0e:a4:
3d:7a:bb:35:be:55:f9:e8:d3:26:77:0a:55:9b:29:
bc:15:7f:d6:a1:e0:ab:d8:02:ae:52:5c:47:59:a0:
04:f9:c3:a6:a4:c8:50:08:7c:7d:2d:63:32:02:6d:
17:11:d9:11:54:20:10:ad:ce:e4:6f:d4:2e:30:89:
15:87:48:04:d9:cd:99:5f:52:1c:9a:c9:b3:37:ba:
79:a3:f3:c5:0f:d3:b8:04:11:2a:a7:da:92:09:f4:
39:af:b0:71:26:70:2c:36:83:21:cb:d9:cc:2a:f2:
1d:2f:71:aa:75:17:33:8f:e3:6e:e0:5d:4d:ca:4d:
14:90:47:a9:94:8b:3f:35:d7:0a:2b:e3:53:da:f8:
22:3d:5f:fa:63:3b:a5:1a:4e:57:c3:87:ff:2f:c3:
6a:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:BD:0B:EA:0A:8E:3F:CE:65:64:53:8D:2C:72:4F:9B:F4:54:8A:50
X509v3 Authority Key Identifier:
keyid:BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:03:5b:67:e9:a7:f7:98:aa:b6:3a:f0:96:e1:30:25:a0:cf:
2f:1c:8b:3f:c0:d6:11:3d:11:4a:4e:e4:71:77:b1:af:51:22:
12:68:44:e2:55:6a:0c:db:70:55:2f:a2:89:84:23:d7:a8:54:
c8:1f:9d:47:fa:eb:fc:0b:3d:9f:4b:88:66:f4:d9:32:0d:8d:
a3:28:6b:11:01:aa:d7:5f:4d:9a:dd:ee:a9:f1:83:bf:07:b8:
91:51:f3:54:f2:13:da:de:7e:04:1a:26:79:75:3b:fd:d0:10:
13:b6:ff:5f:d4:a8:46:29:f4:e3:db:ff:31:c5:62:29:2e:2e:
d1:1e:38:d4:31:4e:1e:01:d7:f0:94:8b:d5:5a:e1:d6:78:4c:
cb:ec:18:a2:b0:42:ac:02:97:ef:db:16:fe:04:c9:f6:32:d5:
df:c2:d4:dc:4e:2a:f6:8a:44:ba:64:26:f3:bc:00:62:36:42:
ec:5a:db:85:ba:df:2e:ae:c0:c2:70:e3:66:4f:20:ca:ea:4b:
77:99:10:db:15:6c:c8:92:f5:f7:15:4d:23:2b:c2:d5:e2:fa:
a1:93:99:6e:2c:23:9d:91:1b:30:30:0c:c3:ec:62:56:68:2c:
ac:14:b8:7c:aa:1b:a4:b6:31:74:a2:de:26:60:1c:87:04:fd:
01:36:7e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:25:22 2026 by rpki-client