Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
File: vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft (raw, json)
Hash identifier: GIkkrvLFqA5q0ulnhxJ5p6ZoMOa4mVzq3qbgr5xmuOM=
Subject key identifier: D2:9F:74:A3:CB:A5:21:FF:EC:F9:69:5B:51:E2:50:A2:76:1F:B0:E0
Authority key identifier: BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
Certificate issuer: /CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Certificate serial: 019D25BA0A428B44152E43B112FBED699475
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
Manifest number: 17DC
Signing time: Wed 25 Mar 2026 16:00:42 +0000
Manifest this update: Wed 25 Mar 2026 16:00:42 +0000
Manifest next update: Thu 26 Mar 2026 16:00:42 +0000
Files and hashes: 1: 5supAJphl0r8bbob-Kiwa2s9Q0E.roa (hash: 3BmLyzQOS+6Kk+ZKBpt8B4neQYPPKen9M6XG2H5jhLc=)
2: vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl (hash: JrYiFPTQD2L3Mqwud02JI04jwVBodL/ZQiPNZXO6OyE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:ba:0a:42:8b:44:15:2e:43:b1:12:fb:ed:69:94:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Validity
Not Before: Mar 25 16:00:42 2026 GMT
Not After : Mar 26 16:00:42 2026 GMT
Subject: CN=d29f74a3cba521ffecf9695b51e250a2761fb0e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:90:d3:88:58:ca:79:f7:b0:e6:a7:d0:ec:82:
9d:7c:18:be:74:e7:5a:6a:a5:f4:97:09:a1:b4:3a:
41:c9:cb:62:a0:14:8d:1a:ff:d0:60:87:ff:54:0c:
4a:24:b8:4f:e7:a7:c1:73:39:76:bb:ef:b5:f4:3f:
ee:52:f2:bf:b6:78:ff:0f:34:91:1a:b6:5a:5c:21:
da:97:bf:56:f6:db:32:0d:ed:d6:a4:6a:71:96:4b:
aa:c0:e0:9d:a1:34:55:80:e8:d1:2d:47:32:81:06:
47:96:6f:66:3e:e9:81:4e:27:30:9c:32:d3:b5:f6:
59:f4:93:ba:1e:1d:cc:d2:18:99:d7:61:04:e6:d2:
2e:77:a5:09:23:a5:48:b5:24:0c:55:8c:2d:f5:1d:
25:a3:5a:e9:d2:44:87:09:a4:36:21:4c:33:3c:3f:
6d:80:a1:19:0a:c1:35:d8:17:31:ab:8b:78:a1:ce:
49:54:55:12:87:3c:9f:2c:79:aa:9d:16:26:c6:93:
2b:98:24:bb:53:9b:00:13:aa:ee:0f:70:6f:54:b8:
2e:f4:b1:e2:f9:f1:46:55:5e:e9:8b:47:e1:71:ea:
8c:51:68:e9:34:13:9a:e8:1c:0f:6a:43:9e:eb:70:
6c:4d:08:26:1b:cf:7b:9d:6d:57:bd:c9:84:d2:7b:
83:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:9F:74:A3:CB:A5:21:FF:EC:F9:69:5B:51:E2:50:A2:76:1F:B0:E0
X509v3 Authority Key Identifier:
keyid:BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:c3:18:27:db:07:3d:41:44:f2:a6:f9:21:a4:4e:b5:5d:70:
5c:57:c3:76:28:b1:dd:ad:2d:31:bd:45:ce:4c:cc:f0:a7:4a:
e0:1f:2c:74:c9:01:dd:0d:cf:55:79:c7:1d:24:2e:5f:61:8b:
52:7c:0e:62:cd:d3:c5:f7:b2:c4:87:20:02:62:36:d3:5b:48:
87:8c:d9:7b:eb:30:0d:3f:7c:34:4a:f4:0f:72:8b:bd:a1:8b:
84:73:c6:2a:47:93:a2:55:1d:e6:e1:70:0c:9d:ea:8b:64:73:
9e:9a:c5:ae:62:17:fd:17:cd:27:3d:5a:65:2a:0a:f9:51:a0:
f2:2d:75:43:13:08:2b:b0:1e:31:cd:56:fd:5d:3b:ca:67:90:
7b:11:07:92:49:19:6a:65:66:bb:37:38:c5:4c:2e:46:09:ef:
0b:94:a9:c1:ca:ea:b0:f8:1e:7b:8c:d4:ed:63:f3:4b:b0:08:
ba:ae:d2:ce:99:7c:77:aa:d1:a5:e3:f5:48:af:b8:c3:08:5d:
f9:09:eb:7d:6f:f5:a0:11:d7:67:67:2f:88:38:42:4d:eb:5e:
aa:e2:06:32:f2:5e:85:8a:55:be:f1:54:21:c1:8d:40:cd:8a:
b0:9f:5c:e3:62:34:22:0d:6d:23:30:00:73:16:10:61:26:e1:
ae:20:22:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0lugpCi0QVLkOxEvvtaZR1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkYTNkMGJiNDIyYjBiY2E3MDY3MTZjMjBmN2FkNThkZDI3
NjU0NzEwHhcNMjYwMzI1MTYwMDQyWhcNMjYwMzI2MTYwMDQyWjAzMTEwLwYDVQQD
EyhkMjlmNzRhM2NiYTUyMWZmZWNmOTY5NWI1MWUyNTBhMjc2MWZiMGUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5DTiFjKefew5qfQ7IKdfBi+dOda
aqX0lwmhtDpByctioBSNGv/QYIf/VAxKJLhP56fBczl2u++19D/uUvK/tnj/DzSR
GrZaXCHal79W9tsyDe3WpGpxlkuqwOCdoTRVgOjRLUcygQZHlm9mPumBTicwnDLT
tfZZ9JO6Hh3M0hiZ12EE5tIud6UJI6VItSQMVYwt9R0lo1rp0kSHCaQ2IUwzPD9t
gKEZCsE12Bcxq4t4oc5JVFUShzyfLHmqnRYmxpMrmCS7U5sAE6ruD3BvVLgu9LHi
+fFGVV7pi0fhceqMUWjpNBOa6BwPakOe63BsTQgmG897nW1XvcmE0nuDgwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNKfdKPLpSH/7PlpW1HiUKJ2H7DgMB8GA1UdIwQY
MBaAFL2j0LtCKwvKcGcWwg961Y3SdlRxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmFQUXUwSXJDOHB3WnhiQ0QzclZqZEoyVkhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mOGE0NmUtYmRmZC00ZGY2LTgyNjEt
ZjIzMjgzNjAxNzY0LzEvdmFQUXUwSXJDOHB3WnhiQ0QzclZqZEoyVkhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9mOGE0NmUtYmRmZC00ZGY2LTgyNjEtZjIzMjgzNjAxNzY0
LzEvdmFQUXUwSXJDOHB3WnhiQ0QzclZqZEoyVkhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyMMYJ9sH
PUFE8qb5IaROtV1wXFfDdiix3a0tMb1FzkzM8KdK4B8sdMkB3Q3PVXnHHSQuX2GL
UnwOYs3TxfeyxIcgAmI201tIh4zZe+swDT98NEr0D3KLvaGLhHPGKkeTolUd5uFw
DJ3qi2RznprFrmIX/RfNJz1aZSoK+VGg8i11QxMIK7AeMc1W/V07ymeQexEHkkkZ
amVmuzc4xUwuRgnvC5SpwcrqsPgee4zU7WPzS7AIuq7Szpl8d6rRpeP1SK+4wwhd
+QnrfW/1oBHXZ2cviDhCTetequIGMvJehYpVvvFUIcGNQM2KsJ9c42I0Ig1tIzAA
cxYQYSbhriAi8g==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:00:40 2026 by rpki-client