Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
File: vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json)
Hash identifier: ++OYJgOyJpiN3UwW1kBTbToLYf/DgKs/MQH2mcFyhjc=
Subject key identifier: 53:6D:41:8C:3B:21:AD:84:8A:D7:72:1D:9E:5A:F5:4A:78:BB:51:8E
Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
Certificate issuer: /CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Certificate serial: 019E30721CE1DB5B9DE3BA1002FC0F383760
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
Manifest number: 0B3F
Signing time: Sat 16 May 2026 11:00:45 +0000
Manifest this update: Sat 16 May 2026 11:00:45 +0000
Manifest next update: Sun 17 May 2026 11:00:45 +0000
Files and hashes: 1: ZJ-T6ueMae72SObhWhaz9nVHF40.roa (hash: Ow4/9pV+gX/QMnh7E9AZiapSKVWWKGuqpiJHgE1l0SU=)
2: g2RgzQfRtI2o8X5sMP-NXjF8Uho.roa (hash: QHdSplXR9hrky5KPz8Vf+POncO+1O6g9pizr3/G9QPY=)
3: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: 7lg3bYaZHFeU9VrZbXSzgS3mG5+5sW4UpnMgVu7cRwA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:1c:e1:db:5b:9d:e3:ba:10:02:fc:0f:38:37:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Validity
Not Before: May 16 11:00:45 2026 GMT
Not After : May 17 11:00:45 2026 GMT
Subject: CN=536d418c3b21ad848ad7721d9e5af54a78bb518e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:b9:04:fd:20:5e:da:44:26:88:e2:65:5f:19:
b6:f2:01:3c:e1:fc:7b:95:74:91:02:9f:14:37:63:
6e:0e:99:96:ab:07:5d:6c:e8:98:a8:0b:3e:9e:4f:
9e:78:83:47:cd:e7:e2:3a:80:65:a2:17:f3:f9:7d:
22:b5:c0:e5:b9:a5:10:43:78:ef:66:79:00:7f:dc:
d1:07:48:17:a9:6d:d0:35:77:f2:c4:f1:1f:ab:8f:
51:65:9f:1d:15:6c:42:2d:32:c4:27:c0:d9:18:bd:
c8:63:a6:36:6e:7e:ff:ce:93:16:ce:10:d5:f2:c3:
22:5d:93:34:88:39:06:98:6b:a4:ff:e2:75:4f:c1:
53:2e:e7:2c:5c:51:2a:3d:76:8b:8c:7c:61:ec:4a:
0f:84:7e:ad:a6:2d:da:b1:f8:05:72:5e:be:59:55:
9f:fd:3f:7e:7e:49:d3:53:f5:d1:c5:dd:92:41:af:
8c:83:91:84:49:2a:e1:56:5f:72:66:34:b0:28:d4:
b1:8b:37:29:9b:9b:ce:df:55:ab:0d:7f:3b:3e:aa:
ac:0e:a6:94:11:e2:de:a9:4d:d5:4e:c6:98:e0:ee:
47:57:29:c7:58:a0:b1:d8:e6:64:fb:35:e7:07:4b:
1d:6c:33:99:24:e8:83:22:b3:6e:b3:36:65:0f:ea:
c0:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:6D:41:8C:3B:21:AD:84:8A:D7:72:1D:9E:5A:F5:4A:78:BB:51:8E
X509v3 Authority Key Identifier:
keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:6a:36:97:ef:32:53:f8:a3:69:c2:e0:47:27:aa:3b:6a:95:
be:ce:f8:ee:14:ff:59:51:5f:01:88:ba:ad:93:de:0f:37:cf:
1d:50:a1:f6:7c:42:55:1f:1e:cf:14:c3:a2:f7:10:d9:35:7f:
fd:de:af:fb:9c:45:bd:66:45:89:4e:f3:06:ab:95:d2:81:a4:
8c:0d:23:ab:f9:0e:26:62:ee:82:18:32:33:da:ad:13:42:9b:
7c:3f:44:f3:ae:ee:be:0d:e9:01:62:1c:f0:22:33:06:bc:c7:
55:5d:11:de:7c:a0:35:ff:c9:0d:35:17:c0:d1:dc:64:df:02:
87:62:e7:e5:89:48:11:a2:57:ad:be:02:5e:7f:6e:2a:46:1c:
d6:35:32:60:e4:84:af:0f:14:12:7c:4a:30:a0:c0:20:13:23:
3b:59:c5:68:ff:88:13:cb:67:ef:a7:33:ba:3a:be:c2:44:dc:
4f:44:51:9a:44:98:57:df:e6:bd:bf:88:cb:61:11:60:6d:24:
0a:ea:92:33:2c:13:02:ee:38:b7:f8:14:1c:a5:20:86:c3:d5:
b4:84:67:91:92:18:bc:c8:ba:13:2e:77:7b:ed:da:2f:c7:0a:
0e:76:f5:32:03:19:98:33:7c:cf:45:f3:2d:cf:27:bb:4d:8f:
32:de:1f:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 19:31:00 2026 by rpki-client