Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
File: VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft (raw, json)
Hash identifier: 2tCfV7DagXvd6EFjRQrk0GFTqvAzLQt2kX2m8xAqMXU=
Subject key identifier: E8:80:F6:41:7E:B4:F7:AA:4E:86:01:33:DD:7E:E0:A4:CA:1A:46:CB
Authority key identifier: 54:49:5A:2F:41:CD:10:5A:EF:06:F2:87:0A:76:33:98:01:ED:B9:0D
Certificate issuer: /CN=54495a2f41cd105aef06f2870a76339801edb90d
Certificate serial: 019D3977962DEF1BB559FC00D7CC7CFA5506
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
Manifest number: 0480
Signing time: Sun 29 Mar 2026 12:00:31 +0000
Manifest this update: Sun 29 Mar 2026 12:00:31 +0000
Manifest next update: Mon 30 Mar 2026 12:00:31 +0000
Files and hashes: 1: 24NDosuGOzoLKVetD4UFYNcQ4SA.roa (hash: x73nU2X10gXdOf1oB089+xGubJOyS5xtYbEaoPCCv+4=)
2: VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl (hash: cRlGfGajVPrb8FSg9fMKdr/pdmrFITGIrmDRWxOiyFU=)
3: ixPSDov5is1CTdWPuI6nUpxYEdo.roa (hash: j30+Tn85DLKw4a0VclBr/LX3MiFqXcwbshmPsr6R/Q0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:96:2d:ef:1b:b5:59:fc:00:d7:cc:7c:fa:55:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54495a2f41cd105aef06f2870a76339801edb90d
Validity
Not Before: Mar 29 12:00:31 2026 GMT
Not After : Mar 30 12:00:31 2026 GMT
Subject: CN=e880f6417eb4f7aa4e860133dd7ee0a4ca1a46cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:30:0b:e6:c7:84:33:9e:ac:64:9f:11:58:16:
f1:b0:96:d8:34:3b:c9:27:e8:48:32:a7:f1:5a:79:
3d:36:b7:58:4a:07:45:0f:36:1d:2d:02:ff:95:5d:
c8:8e:1a:0a:bd:85:6e:e1:22:84:9b:82:36:a1:30:
c0:68:73:24:0f:d3:f5:0e:19:00:95:4d:8c:8d:c0:
01:c6:4b:75:77:f8:3a:10:c7:3d:f1:c3:51:92:f8:
f8:d8:68:e7:d5:36:02:3a:22:ee:d7:02:ba:60:2e:
8c:00:10:8c:c5:c8:2d:ca:0e:d1:e4:5c:60:45:55:
0f:2c:1c:17:a7:5d:74:64:33:f7:93:98:64:12:de:
59:97:92:46:28:88:cc:ea:a9:7f:93:41:55:d1:62:
ff:99:f8:12:fa:f6:33:3e:88:17:8a:2e:6a:c6:ff:
68:29:1f:2c:0e:4f:48:d4:49:f8:1f:19:53:aa:5e:
45:97:d4:fa:57:99:be:79:cf:46:9f:16:eb:84:8e:
28:06:e8:f3:3a:1b:a5:2a:9a:61:68:ed:bc:0b:75:
66:35:96:fc:08:83:a9:93:c9:d0:5f:96:2e:89:cb:
11:e1:7a:16:f5:87:8d:40:8b:c5:45:45:6e:ce:02:
98:67:ec:60:73:5e:76:f6:2a:f7:4e:42:fa:47:b0:
1f:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:80:F6:41:7E:B4:F7:AA:4E:86:01:33:DD:7E:E0:A4:CA:1A:46:CB
X509v3 Authority Key Identifier:
keyid:54:49:5A:2F:41:CD:10:5A:EF:06:F2:87:0A:76:33:98:01:ED:B9:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:0f:ae:c2:a8:e3:69:9e:ef:a6:0b:9f:2b:70:1d:34:1d:0d:
05:88:75:9c:9d:31:11:03:c3:6b:95:22:b4:c9:55:98:5a:0a:
9a:a0:d7:fc:f8:b1:72:e1:24:3e:91:63:f3:92:51:66:93:b6:
db:b9:87:30:ad:ee:9d:99:ab:2a:6b:de:1b:c7:b2:2c:7a:86:
68:4c:2a:e2:d7:55:4a:1e:cb:70:32:81:37:dc:a3:c7:75:b5:
d5:33:69:ce:ca:c0:97:16:69:24:0f:9b:75:17:47:d2:bc:9c:
07:6c:c6:ce:bb:32:96:8d:2e:49:99:ff:5b:04:e1:2b:b8:d6:
fa:a3:f1:16:b8:06:23:6d:99:21:c1:8c:26:37:2e:b1:72:87:
c8:f3:7d:af:0e:f6:55:5b:ee:75:bc:a3:f3:18:66:3d:b5:cc:
08:94:3a:72:3a:e5:7c:31:36:c1:1c:86:b9:77:3d:75:42:c3:
9e:2f:82:d3:a2:c9:c2:a8:18:ca:90:be:44:26:c8:b3:0a:3d:
d3:ff:46:9b:b7:ce:42:81:c2:07:6f:05:1d:04:3b:34:48:d4:
1b:f7:0c:6a:d1:e2:ef:da:cb:30:c1:00:10:11:5e:d4:4e:58:
90:4f:fb:65:29:73:2e:3a:27:06:81:32:d6:a9:ee:35:3c:bd:
a1:f0:5c:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:40:59 2026 by rpki-client