Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
File: VKwN3sMOJORX4W5lB9IZcoMQiT0.mft (raw, json)
Hash identifier: b8RCjyka3Bqlc/ug7N91oWIptNlE+MHvTMY9Eh28oig=
Subject key identifier: D3:DF:D2:73:87:C2:6F:E3:D0:DE:3C:1D:7D:13:A8:EE:50:FC:B2:39
Authority key identifier: 54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D
Certificate issuer: /CN=54ac0ddec30e24e457e16e6507d219728310893d
Certificate serial: 019D3865681F277C2A5E61CC90C44C04ADD3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
Manifest number: 03F9
Signing time: Sun 29 Mar 2026 07:01:02 +0000
Manifest this update: Sun 29 Mar 2026 07:01:02 +0000
Manifest next update: Mon 30 Mar 2026 07:01:02 +0000
Files and hashes: 1: R7QMGmuA2wDaBVvULaWvGaz5Evg.roa (hash: fySPMSDcnymZQ851W9mCK2einppIFGfSXw6lDW7Rxuo=)
2: VKwN3sMOJORX4W5lB9IZcoMQiT0.crl (hash: xNVFBNOp0RxLUU8rgmFV9X8AjHyNqFONwI+OYoIMJDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:68:1f:27:7c:2a:5e:61:cc:90:c4:4c:04:ad:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ac0ddec30e24e457e16e6507d219728310893d
Validity
Not Before: Mar 29 07:01:02 2026 GMT
Not After : Mar 30 07:01:02 2026 GMT
Subject: CN=d3dfd27387c26fe3d0de3c1d7d13a8ee50fcb239
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:dd:b1:2d:88:19:3d:75:c3:60:0d:0d:e8:3e:
a9:63:0a:e0:17:09:11:7b:d3:da:c4:c5:3a:f0:31:
6f:32:be:da:2b:fd:7a:f2:95:8d:a6:0f:58:8a:5a:
8f:c2:0e:e4:56:b0:bf:19:ed:79:a3:71:01:c2:8d:
83:5b:11:ca:92:ec:26:3c:47:42:61:ef:39:68:59:
6f:63:04:03:64:6b:d2:df:c0:7e:73:b0:d6:0e:1f:
f8:90:88:a4:e8:2a:93:26:27:e7:99:b2:0e:f1:d0:
22:5e:7d:df:bc:41:4c:b2:fd:d1:a9:55:ac:ac:b1:
aa:a3:0b:d9:aa:a0:9e:c0:0b:0d:ff:86:1d:a5:34:
f4:59:85:f6:20:61:54:1e:3e:b4:dc:34:d5:12:75:
3c:0c:5c:74:e6:0c:e6:9f:e7:5f:cb:98:b2:c7:f1:
ed:e5:a5:6f:29:b2:03:cb:19:64:cd:6d:f5:c6:c0:
9e:f3:1c:25:f5:26:26:69:15:2f:f0:46:cf:73:08:
34:6e:43:ac:55:49:de:b1:bc:15:24:c1:98:08:31:
85:9d:de:94:f0:9f:9f:63:37:1d:c7:08:22:5b:5b:
7a:5e:1c:e3:d7:22:02:de:b5:45:85:cd:56:dc:14:
a7:1c:97:44:ac:3d:8c:1c:ff:13:5a:b0:22:65:c9:
b7:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:DF:D2:73:87:C2:6F:E3:D0:DE:3C:1D:7D:13:A8:EE:50:FC:B2:39
X509v3 Authority Key Identifier:
keyid:54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:2a:76:7c:a3:ba:fd:47:3e:e0:36:a2:f0:ea:2f:5f:02:bf:
15:df:c5:40:27:c9:75:07:90:a2:bb:56:2b:ce:b5:94:7c:73:
5f:1b:d5:97:5e:d9:5c:70:07:4a:dd:2f:67:ed:57:63:6d:65:
b9:1b:b4:4f:ae:b2:4a:0f:eb:93:a1:b7:55:1a:2c:81:fd:3a:
ad:ba:67:b3:01:fe:77:48:aa:69:66:ee:eb:6e:d7:0a:7a:5e:
4d:76:a0:6e:f5:d8:a2:b1:08:55:d9:77:3a:53:55:06:fc:4a:
c7:e7:b8:da:89:0b:0f:25:5b:32:f1:ce:00:aa:52:80:f5:22:
de:3f:5f:49:93:6b:7e:c1:17:b3:12:0a:8f:80:98:0b:7d:f0:
68:53:99:28:d5:eb:02:8f:6f:b6:a8:f1:80:12:54:d1:43:37:
08:20:31:2a:42:d4:7e:a6:f7:16:e4:0f:8d:54:fc:24:d7:8d:
81:7b:4d:23:76:58:a2:1a:a9:7e:61:1f:12:72:05:09:31:5c:
b6:06:51:26:0f:65:2f:5f:15:2a:e7:bf:87:38:6e:51:dd:59:
0d:e8:21:fa:90:31:b7:98:33:ee:7f:c9:5d:d2:a3:cd:25:d0:
a5:aa:1f:ab:37:86:95:1b:09:24:37:93:eb:8f:2c:4b:70:47:
b9:6e:51:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:00:46 2026 by rpki-client