Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
File: VFhKIZ9vUGbYSO0quWTaiWbUCio.mft (raw, json)
Hash identifier: YVLfWsn/NcyXOnHCvulheERibYfzrLauWj2WAR38Hz8=
Subject key identifier: 03:74:A9:2A:13:07:9C:99:55:34:51:AF:58:AC:37:79:1F:4F:F1:59
Authority key identifier: 54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
Certificate issuer: /CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Certificate serial: 019D39AEA9D033E6B24B9FA03330C8386B46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
Manifest number: 1894
Signing time: Sun 29 Mar 2026 13:00:41 +0000
Manifest this update: Sun 29 Mar 2026 13:00:41 +0000
Manifest next update: Mon 30 Mar 2026 13:00:41 +0000
Files and hashes: 1: VFhKIZ9vUGbYSO0quWTaiWbUCio.crl (hash: pTlK26mlufUqh47T0F2Q6hecfdYaDQa7ZvGWjtNfjlI=)
2: VdNiyBTNLP0hxdVWgblf808PR6Q.roa (hash: b0TF5folKN7zXjRCmCKkB9rk4cn3L/tdaHd7F0edmTA=)
3: _Ly8wabjTR1vhLqLPK6iVz33UEY.roa (hash: wpw6THVmXZJSjX+YaGWEWwzdrzwOfnuWTEH+2nafh7A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:a9:d0:33:e6:b2:4b:9f:a0:33:30:c8:38:6b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Validity
Not Before: Mar 29 13:00:41 2026 GMT
Not After : Mar 30 13:00:41 2026 GMT
Subject: CN=0374a92a13079c99553451af58ac37791f4ff159
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:38:f2:e6:4e:b8:39:33:7f:f1:92:90:d9:db:
ec:ba:a8:ad:11:71:ce:2e:91:f3:71:d8:c3:9d:a4:
7d:d5:f8:f1:1f:5a:94:3c:e3:51:fe:ff:87:23:ab:
a5:47:a8:5a:f6:a4:8f:8f:e8:f0:75:a7:25:df:77:
32:1a:4a:c0:d9:f2:78:a2:1a:c9:86:fd:24:f6:9e:
7d:e0:b8:2e:25:64:e5:4a:ae:b3:e2:dd:36:a7:15:
6a:df:f2:23:a7:9e:62:ee:51:b0:44:b5:b8:40:58:
c5:31:d8:0d:e3:66:1b:49:1a:46:5e:18:49:ac:ed:
67:6c:c3:2b:cf:fe:71:07:f4:c3:88:bf:95:d3:5b:
64:13:be:8c:36:6e:b1:b3:74:f7:3f:7c:47:b3:6d:
36:20:81:82:45:77:f5:cc:4c:2c:bd:f1:f0:17:44:
e6:57:cd:d3:da:f7:5d:20:cc:5e:98:4b:0f:91:b2:
cb:91:92:2a:e8:52:58:0e:59:c9:b6:d4:5a:87:22:
b1:71:95:e3:78:17:df:d7:ec:04:2a:e6:89:d8:55:
cd:6c:46:f2:9c:da:53:33:7d:54:ae:58:fe:8f:f9:
87:09:d5:40:d0:d9:d3:08:97:43:9c:01:e1:e6:86:
18:9c:cf:84:80:58:e8:31:3f:d0:3c:91:2e:36:44:
a9:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:74:A9:2A:13:07:9C:99:55:34:51:AF:58:AC:37:79:1F:4F:F1:59
X509v3 Authority Key Identifier:
keyid:54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:64:f7:2e:95:22:22:9c:6a:4a:7c:6a:e8:1b:58:ad:2b:29:
b4:73:0e:ff:a3:bb:0d:2a:49:67:c4:7e:b0:54:1c:35:db:07:
d5:d1:d6:9c:9b:fe:b8:a7:47:68:39:b4:92:4d:f0:a7:48:30:
c6:a7:5e:43:43:42:45:d8:d6:26:61:05:c5:34:92:09:eb:00:
21:3b:c8:b5:37:56:81:53:f9:4b:59:e5:4d:1e:8a:44:d8:0d:
06:4e:f6:c7:61:96:91:14:74:2f:3e:b7:94:98:b8:a1:58:96:
12:1e:a0:de:e5:6e:1c:2b:13:1f:ee:79:49:5f:49:a1:d4:11:
ff:8c:70:a6:1c:13:01:d2:81:59:3c:b3:e6:1d:9d:b6:47:c5:
6c:5a:09:0a:48:e5:9e:1e:45:33:60:36:76:25:49:80:94:4a:
cd:4d:43:6b:1f:34:8b:44:e9:88:7d:88:bc:9b:5f:39:c4:a4:
ae:a1:c7:ab:f4:69:0d:0c:3f:76:94:e2:c3:cb:42:7f:c1:88:
ba:89:76:3a:ee:d0:2b:3d:4d:97:fa:a9:c9:d3:2c:23:4d:6f:
ea:35:88:c3:3d:8e:2e:f3:72:86:f1:1d:f5:a6:9c:86:bc:1e:
d8:7b:cf:eb:ca:f7:37:5e:12:ab:22:d1:5d:65:d8:5e:56:e3:
08:78:59:23
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:48:48 2026 by rpki-client