Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft
File: VmczL0gJQe01gDssBLhPNyjTkpc.mft (raw, json)
Hash identifier: MneqM3ykW3mbyS8Obeucfgu0QjoFRcyca25cUVaJfQY=
Subject key identifier: E8:09:A9:93:B0:AF:E5:67:37:4F:17:BE:C6:66:D2:57:73:5F:37:92
Authority key identifier: 56:67:33:2F:48:09:41:ED:35:80:3B:2C:04:B8:4F:37:28:D3:92:97
Certificate issuer: /CN=5667332f480941ed35803b2c04b84f3728d39297
Certificate serial: 019D390A1BCB9DE001BCF0849652F4B9D76C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmczL0gJQe01gDssBLhPNyjTkpc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft
Manifest number: 0280
Signing time: Sun 29 Mar 2026 10:00:56 +0000
Manifest this update: Sun 29 Mar 2026 10:00:56 +0000
Manifest next update: Mon 30 Mar 2026 10:00:56 +0000
Files and hashes: 1: VmczL0gJQe01gDssBLhPNyjTkpc.crl (hash: BkOwtpviy7BUp2FnIp8trSuWy4fU/Pk9J1+R3nXjAqs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft
rsync://rpki.ripe.net/repository/DEFAULT/VmczL0gJQe01gDssBLhPNyjTkpc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:1b:cb:9d:e0:01:bc:f0:84:96:52:f4:b9:d7:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5667332f480941ed35803b2c04b84f3728d39297
Validity
Not Before: Mar 29 10:00:56 2026 GMT
Not After : Mar 30 10:00:56 2026 GMT
Subject: CN=e809a993b0afe567374f17bec666d257735f3792
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:95:a0:70:d8:71:45:1e:ba:f4:c8:1f:29:fb:
7f:2f:d4:ce:2d:c2:ff:fa:18:59:48:3f:58:74:aa:
2d:a3:4a:0c:4f:ac:64:4f:66:8a:86:ee:f3:42:c2:
8d:d5:d1:65:9f:29:26:7d:d9:69:fd:76:59:8c:c8:
98:f0:04:63:28:9f:59:5d:d3:ad:85:38:4e:78:cd:
4a:1e:85:08:f1:b8:8b:1e:39:b3:18:75:df:95:8c:
71:03:3e:13:f2:5f:4f:0b:54:f5:32:b9:96:81:f4:
ac:86:1c:f4:73:01:dd:19:47:7f:b3:7e:a5:1d:d0:
28:49:24:ee:d6:a0:53:2f:13:6f:40:95:b9:60:94:
ac:9c:76:2c:b3:e3:f6:ac:58:0e:88:e9:35:e3:f5:
c6:5e:f0:f7:2f:61:c0:a8:9f:fc:d6:d6:fd:d8:6f:
8e:1a:7f:2a:cc:da:49:69:65:cd:45:39:b5:28:62:
22:69:ac:92:b9:97:65:cd:43:77:14:11:85:0b:d1:
f6:23:05:e1:22:5d:cf:fc:54:79:90:f5:2a:18:3e:
56:c2:b4:f3:0b:2c:cd:53:13:e2:0e:eb:68:f7:a3:
b1:31:bf:40:f4:5b:79:17:e8:73:48:2f:18:85:59:
2b:11:fa:df:ed:6d:d2:d0:fb:fc:cd:03:c6:c0:c2:
5f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:09:A9:93:B0:AF:E5:67:37:4F:17:BE:C6:66:D2:57:73:5F:37:92
X509v3 Authority Key Identifier:
keyid:56:67:33:2F:48:09:41:ED:35:80:3B:2C:04:B8:4F:37:28:D3:92:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmczL0gJQe01gDssBLhPNyjTkpc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2f90f1-e257-4e54-b25d-2594c2ff6cb7/1/VmczL0gJQe01gDssBLhPNyjTkpc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:28:59:53:e0:1a:d5:80:dc:83:fe:f3:25:36:02:c9:07:0d:
f6:48:a6:2c:4c:f7:83:b8:b5:81:ba:95:9b:42:1a:50:83:81:
0c:39:e0:de:36:fa:9e:52:eb:01:09:7c:08:45:cb:60:f0:e2:
cc:f3:ce:ed:a1:ca:80:80:c3:07:3a:65:0d:55:c6:41:33:69:
02:b2:73:a3:fa:f2:d7:22:47:db:ac:cd:9e:b6:38:c4:66:40:
c9:71:df:7d:a4:df:35:fd:28:ec:d6:da:94:08:bb:8f:19:6d:
1d:6e:1b:1b:c9:de:29:c5:1e:3b:49:79:6e:9e:c3:56:c5:f2:
06:3c:ab:2a:21:7a:55:f2:a0:25:35:02:d0:0b:fc:4a:29:4e:
06:d3:3a:bd:81:87:b7:0f:94:2d:0a:e7:a3:da:c0:a5:3a:14:
5d:89:c0:a5:5c:99:c7:57:5e:32:cd:2f:d4:a3:40:69:ce:07:
7f:aa:b2:f8:de:42:bd:be:9d:d9:4b:e5:6c:e7:aa:22:57:f9:
83:c8:2b:7a:38:b0:fe:18:e2:d1:a0:ce:ae:95:0d:5d:bc:b3:
fc:ee:10:55:19:9c:a5:fb:d1:3e:04:42:d1:56:65:5d:63:74:
93:2c:a1:04:ae:cf:21:92:0b:40:33:a7:05:ae:33:d5:8e:78:
b6:fa:95:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:34:19 2026 by rpki-client