Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
File: vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json)
Hash identifier: /dvvdkAgj36gau8LVZ9sp+oZYXdIuhpixf4uWvf3NAM=
Subject key identifier: D1:72:76:9F:6E:AA:66:E8:46:F1:E6:3C:1A:BB:F6:78:4B:39:21:2B
Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
Certificate issuer: /CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Certificate serial: 019F1A1EB25F800C210CEF3D3A1F0357691D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
Manifest number: 0BB8
Signing time: Tue 30 Jun 2026 20:00:47 +0000
Manifest this update: Tue 30 Jun 2026 20:00:47 +0000
Manifest next update: Wed 01 Jul 2026 20:00:47 +0000
Files and hashes: 1: ZJ-T6ueMae72SObhWhaz9nVHF40.roa (hash: Ow4/9pV+gX/QMnh7E9AZiapSKVWWKGuqpiJHgE1l0SU=)
2: g2RgzQfRtI2o8X5sMP-NXjF8Uho.roa (hash: QHdSplXR9hrky5KPz8Vf+POncO+1O6g9pizr3/G9QPY=)
3: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: WCwGSp7IBMPtqU875T2LO0srAoyQLVw0u9V8sGUYU4U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:1e:b2:5f:80:0c:21:0c:ef:3d:3a:1f:03:57:69:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Validity
Not Before: Jun 30 20:00:47 2026 GMT
Not After : Jul 1 20:00:47 2026 GMT
Subject: CN=d172769f6eaa66e846f1e63c1abbf6784b39212b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:24:a2:1e:ed:d9:12:e6:c7:5b:cf:e8:82:d6:
02:e4:d5:fe:72:34:c5:c2:67:20:19:67:e5:f9:36:
25:d3:41:b2:8a:e1:02:2b:71:1e:3a:f5:1e:12:94:
99:c0:8f:83:71:f7:c7:3e:f2:75:38:94:44:40:93:
33:57:cc:29:0e:42:45:35:9e:d6:7f:73:e4:c0:b5:
52:76:bf:f0:79:bb:a7:21:c3:00:ad:88:1b:62:a9:
3a:e9:75:77:9b:25:98:7c:b5:d8:9a:a8:f2:ca:eb:
10:c0:f7:2e:18:b9:3d:e9:33:f2:c2:0e:30:d3:3e:
32:6a:4f:15:b4:33:3b:45:de:fa:84:de:9e:9c:c8:
c0:9b:5d:8f:78:f3:ff:1f:19:13:07:19:69:42:7b:
fa:d4:45:c9:8a:ce:19:42:de:be:47:30:71:05:79:
c1:22:a7:ba:f2:9a:96:8e:9b:1c:c3:16:1b:07:f5:
e5:29:ac:c1:90:0a:f6:6f:75:d4:63:e9:46:77:b4:
00:5a:a7:f8:06:55:93:bd:47:c1:cf:31:97:d2:9b:
d8:67:73:9e:ab:a6:76:74:e4:56:bc:48:24:d8:19:
52:d6:5f:e2:2e:c8:b8:9d:a4:c7:12:d2:c6:4c:8a:
60:9b:77:9d:a6:b2:e6:dc:50:be:b8:21:73:21:60:
48:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:72:76:9F:6E:AA:66:E8:46:F1:E6:3C:1A:BB:F6:78:4B:39:21:2B
X509v3 Authority Key Identifier:
keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:5e:64:72:d1:17:cc:ff:57:79:4f:f8:7e:f3:07:22:cb:d4:
7a:e2:52:77:90:8d:97:99:bc:29:ed:fe:ac:2a:1c:af:cf:18:
0c:f2:78:07:40:88:fb:2c:1c:90:1d:f2:04:d8:b7:45:96:bd:
d5:39:d4:79:4f:43:0e:99:de:0e:f6:4d:34:2e:df:e5:b8:0b:
77:16:7d:3d:4a:20:4c:c5:2c:0b:dd:d3:d5:de:16:10:71:ac:
7a:c9:9e:06:4d:c6:89:90:83:bc:95:72:21:97:8f:e4:46:ec:
3b:85:02:03:1f:c8:18:98:18:0a:9d:c3:9e:9a:4c:87:93:54:
68:82:bf:d0:d6:a5:b4:95:4a:7a:ea:88:5d:4d:e9:48:cb:6c:
16:2e:f2:37:1f:10:2a:69:db:1b:11:6f:0c:91:65:07:83:d4:
11:4e:cb:6e:2a:4b:24:6a:5e:d2:ce:e4:d3:b0:a0:1b:d7:7a:
3d:77:68:8e:b3:8b:98:12:7e:b5:19:af:73:3c:af:8d:c5:03:
1f:50:65:4d:46:4f:f0:a2:0d:99:d8:a3:c7:28:2d:d5:c2:fc:
c0:48:7e:d5:8f:c1:1d:f6:ca:85:d2:43:e2:27:da:d6:8f:eb:
1f:d8:41:59:3b:b0:92:e7:59:81:be:35:60:a6:18:3c:eb:72:
0a:2b:32:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:42:10 2026 by rpki-client