Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
File: vX2BeM7FzTdlSKkEkRf0acCnQxw.mft (raw, json)
Hash identifier: wFrergWLn0h+SbS0qu9BXzaD1fpUl3bCGndG5kA3T8Q=
Subject key identifier: 4A:47:AF:3C:7E:23:DA:48:A2:56:77:79:92:6A:99:40:B3:D8:EF:92
Authority key identifier: BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
Certificate issuer: /CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Certificate serial: 019D292956A39D7A8BAA63FB9D1CD106A827
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
Manifest number: 1899
Signing time: Thu 26 Mar 2026 08:01:07 +0000
Manifest this update: Thu 26 Mar 2026 08:01:07 +0000
Manifest next update: Fri 27 Mar 2026 08:01:07 +0000
Files and hashes: 1: 7z1tSf8I9u1vya-qzqnrFwA2jNM.roa (hash: /WQm3fnxjA4ArGkSbC1Tat7ScQ2OaqKECXjtZq5aFo8=)
2: XiD6lDrgMPuS8eayCDVkIbui-4s.roa (hash: SBkJkhDft5A8cF6t/KuhZfif5su+kzjqoUhMEaiSsSk=)
3: ajZvyc1TZO3sN3JzZ4xIlekYW3A.roa (hash: KoTZ28q/3XFXaDAUF+RkPrxNb4KFBcBG2YemXG25Ts8=)
4: pBECGuvlqI1JRG7h1KFoBdoLOQQ.roa (hash: g1yrRU6vVwlNdEkW9jmsyPMMiYUAGVw0ecH5Z2RUhlM=)
5: vX2BeM7FzTdlSKkEkRf0acCnQxw.crl (hash: A7XYBydeQOwkqfc37XgtrC+aV/xq/7uVHxKAKzp3DNo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 08:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:29:56:a3:9d:7a:8b:aa:63:fb:9d:1c:d1:06:a8:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Validity
Not Before: Mar 26 08:01:07 2026 GMT
Not After : Mar 27 08:01:07 2026 GMT
Subject: CN=4a47af3c7e23da48a2567779926a9940b3d8ef92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:34:83:6e:64:71:a9:f6:31:44:30:d7:58:83:
75:e3:ac:48:74:92:9f:cb:6b:e0:da:e3:65:f0:28:
67:d0:5f:ff:8c:87:33:90:92:cf:cd:6c:0c:98:68:
d3:1d:f9:a9:61:fa:cd:4a:57:95:96:ce:ef:8d:7d:
d1:68:f6:bc:75:2f:81:72:e8:77:c9:8b:2a:9f:ad:
b7:6a:93:29:b8:59:74:af:13:9e:c7:eb:41:a5:76:
56:4a:bf:7d:a7:24:a0:55:6d:79:26:e6:8b:f4:2c:
c9:36:05:f4:72:49:9d:a7:f0:3b:64:fa:0e:54:fd:
e1:21:21:6a:a8:68:d7:96:37:1d:30:54:ab:fe:14:
d4:2a:b4:e2:b0:62:91:fe:46:1e:16:53:79:cf:e0:
7f:52:72:c1:1b:29:c4:1e:d8:23:50:d2:4e:b8:38:
52:f8:b8:f4:e0:9a:e8:9b:df:24:7a:56:36:19:9d:
f8:bd:1b:b4:04:03:8f:23:3a:4d:c7:f4:12:77:07:
27:d0:ed:12:ea:15:33:c7:e3:49:86:c6:f7:02:ea:
c0:93:17:64:54:39:99:0a:59:e4:d7:1c:a9:10:41:
6a:8e:48:49:64:f2:3e:0e:01:c0:b3:ad:e4:32:72:
c2:c5:e5:c9:dc:ec:8a:1a:e8:28:ac:1c:a3:ea:2d:
df:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:47:AF:3C:7E:23:DA:48:A2:56:77:79:92:6A:99:40:B3:D8:EF:92
X509v3 Authority Key Identifier:
keyid:BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:af:df:d8:81:85:c2:5c:64:8c:a3:bc:80:2a:17:2f:0e:21:
cc:1c:5c:49:91:65:74:13:46:4b:46:84:fb:07:5c:4d:d2:77:
2d:f4:83:d7:af:a1:51:84:82:d5:6f:07:26:0c:ce:5a:67:9f:
f1:db:6b:f5:5f:9f:79:24:43:d3:7a:d9:82:c7:c7:b0:e8:bf:
95:49:ff:7c:b8:45:cc:63:14:c5:4f:fd:2d:71:dc:c3:13:87:
7e:cf:f6:11:a4:80:26:43:c4:75:a6:de:4a:2e:81:4b:a1:1c:
3b:ad:1e:99:b0:42:71:9f:ac:65:cb:6e:b0:c8:0a:72:92:b9:
1f:87:11:90:23:a5:40:41:ec:17:30:7e:8b:2d:dd:0f:21:0a:
59:51:e3:11:0d:64:d2:1a:ba:9a:6c:de:68:9d:67:be:a4:9c:
7d:d0:8b:bc:c1:ca:e7:0f:81:18:f4:df:c7:ee:63:dc:9f:96:
9c:3e:ae:a7:d3:c6:0d:67:c3:d7:f5:2a:3a:e2:81:3a:2a:6c:
01:bd:23:fd:5b:bc:e7:f7:7f:0f:09:20:39:85:71:12:18:c1:
fa:f9:42:56:eb:fc:08:9e:f1:a6:50:11:b5:1c:d8:08:43:d2:
ee:2c:a1:e8:95:64:ee:2f:9b:2e:3f:0f:8c:43:71:2d:48:89:
1a:ff:72:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:26:44 2026 by rpki-client