Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
File: vzrHIKEXt01NE8Jj95R3kp7btLw.mft (raw, json)
Hash identifier: ns0w80V2aaBQJJitsfGLTjsdGn1GAVhkVERC6d151hg=
Subject key identifier: 74:32:CF:C9:1A:8F:48:8D:E2:DA:50:1F:D5:01:17:4A:E1:D5:2F:26
Authority key identifier: BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
Certificate issuer: /CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Certificate serial: 019D389BD5BD7CAAD6CC7059464A976273C6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
Manifest number: 0679
Signing time: Sun 29 Mar 2026 08:00:30 +0000
Manifest this update: Sun 29 Mar 2026 08:00:30 +0000
Manifest next update: Mon 30 Mar 2026 08:00:30 +0000
Files and hashes: 1: jshUcB9xo_4UjMSMpv_Atyyty9w.roa (hash: An++hrgldtP3cS4PiEwsT48K4V8iq3LI6SDvvL0nHOE=)
2: vzrHIKEXt01NE8Jj95R3kp7btLw.crl (hash: rTDdWwEN8RuHMJRXem6XAPPuHPtOOosgk+aHrqr8V1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:d5:bd:7c:aa:d6:cc:70:59:46:4a:97:62:73:c6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Validity
Not Before: Mar 29 08:00:30 2026 GMT
Not After : Mar 30 08:00:30 2026 GMT
Subject: CN=7432cfc91a8f488de2da501fd501174ae1d52f26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:26:2b:a2:f5:a4:2b:3e:a2:27:96:83:c8:23:
be:62:1d:38:68:af:51:2e:c6:28:3b:8b:b1:f8:e4:
ae:a1:79:e9:67:48:0c:69:78:f9:6a:38:13:fd:31:
3c:d5:c4:25:78:8f:49:30:fd:5d:02:72:d4:fd:b6:
b9:44:f8:e3:a9:ef:02:87:53:a9:80:85:e7:29:e4:
06:8a:b9:01:8d:fd:18:10:27:ec:fe:fe:6b:a7:80:
9b:81:25:e3:1c:51:8a:59:95:8d:c5:f0:20:b7:40:
33:06:5c:f9:72:0a:05:9e:db:0b:a1:f7:d7:b5:73:
83:25:e6:0f:a6:b5:1d:29:9b:44:b4:6f:68:47:b9:
f0:70:ab:91:73:d5:6a:fc:fe:1e:b2:ac:2c:da:f9:
d0:fd:8d:81:1c:c7:0a:b4:0f:52:6a:5d:01:70:b2:
84:8d:6e:a9:40:26:5a:9b:11:f3:c8:bb:c5:20:20:
b4:14:94:f3:d8:2f:98:69:e4:3e:49:74:4e:d3:a6:
4c:bb:62:39:16:96:dc:8d:ff:32:3e:70:40:e1:5b:
13:3a:56:eb:e1:a9:9b:b1:98:75:1c:93:5b:c8:a6:
4d:0f:9f:76:ee:be:dc:f6:91:7c:7a:ca:c8:0a:4c:
13:96:7f:15:bb:5a:b8:26:74:75:37:17:96:54:2a:
79:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:32:CF:C9:1A:8F:48:8D:E2:DA:50:1F:D5:01:17:4A:E1:D5:2F:26
X509v3 Authority Key Identifier:
keyid:BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:93:84:49:37:c0:01:84:da:b0:60:1f:23:71:1b:4b:96:0b:
ee:e1:50:36:d2:47:74:da:dc:07:21:e2:18:d8:ba:76:b8:b7:
df:aa:fa:77:bf:dc:b1:9b:54:0e:44:dc:52:7c:f2:1b:1d:a1:
80:b0:d6:a0:1a:95:f6:4a:4b:78:12:44:44:16:86:ea:01:68:
31:62:b9:e6:34:ec:4d:e2:7d:65:b9:34:e8:01:4d:07:6c:c8:
33:ea:1f:6f:0c:65:ee:02:22:b8:74:3c:e0:17:6a:f7:36:74:
56:ea:86:3c:c5:bb:0c:9c:c2:a3:b7:9f:0f:1a:f4:1d:3f:20:
70:f5:c2:ef:5f:45:98:1a:56:76:6e:23:4f:49:a4:f9:cd:6c:
6d:31:4f:25:1b:bb:01:19:cc:89:37:2f:0e:68:61:66:30:d9:
15:d9:48:c0:c2:c3:ab:49:dd:90:f8:cc:b5:ae:1a:f1:7b:05:
84:f9:79:20:b7:4b:65:c2:27:c9:88:3a:be:0d:9c:66:63:76:
30:c3:b0:22:05:23:3f:37:71:34:41:97:15:a0:34:33:b4:46:
1b:13:d9:c1:33:66:f2:05:8d:7d:19:a1:b7:48:56:db:7c:9c:
ad:fb:b0:b6:39:91:99:ec:87:27:85:b2:1f:f2:c6:9d:98:31:
e5:e3:c5:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:47 2026 by rpki-client