Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft
File: vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft (raw, json)
Hash identifier: iHG6INycSChxaF0VYBGHM5dgJl6iWtwi0sNg44QuOaI=
Subject key identifier: D7:B8:07:49:FD:67:50:9E:3A:C2:A8:87:A1:B0:69:07:96:8B:C8:60
Authority key identifier: BE:18:68:20:5B:3D:13:73:55:AA:71:F2:46:72:95:CD:87:19:52:C8
Certificate issuer: /CN=be1868205b3d137355aa71f2467295cd871952c8
Certificate serial: 019D37526373B46527B04BC230F1F776590E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhhoIFs9E3NVqnHyRnKVzYcZUsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft
Manifest number: 0E8F
Signing time: Sun 29 Mar 2026 02:00:39 +0000
Manifest this update: Sun 29 Mar 2026 02:00:39 +0000
Manifest next update: Mon 30 Mar 2026 02:00:39 +0000
Files and hashes: 1: vhhoIFs9E3NVqnHyRnKVzYcZUsg.crl (hash: RfmJ5iVIDXouLT02gS5wRtSaAsuXvNRliGecU8XIEgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vhhoIFs9E3NVqnHyRnKVzYcZUsg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:63:73:b4:65:27:b0:4b:c2:30:f1:f7:76:59:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be1868205b3d137355aa71f2467295cd871952c8
Validity
Not Before: Mar 29 02:00:39 2026 GMT
Not After : Mar 30 02:00:39 2026 GMT
Subject: CN=d7b80749fd67509e3ac2a887a1b06907968bc860
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:90:07:54:ec:51:78:c9:9b:6e:4d:a6:72:c7:
b7:92:69:b3:8d:86:f6:50:ee:6f:68:3d:ed:99:55:
f2:67:00:ec:6e:f0:fd:c5:89:6e:22:2b:0f:bb:28:
d4:1a:ea:6a:9c:91:13:b4:64:ea:8e:90:41:f0:b9:
6b:a4:c2:99:b0:9b:94:b0:dc:3d:ba:3e:fa:3d:6e:
ba:d3:98:e0:f0:d6:12:ca:b5:9a:b0:e4:e8:f6:66:
79:8e:a5:90:8f:a2:e1:5a:1e:03:22:2a:ab:19:9a:
b5:c7:7a:a1:55:a1:63:49:1c:f2:c4:4d:0e:5f:4b:
58:b7:1f:17:5d:dd:a9:65:df:c0:92:da:20:5c:15:
bc:33:b7:de:59:78:24:f7:d1:d6:c4:33:53:8a:51:
83:1f:e4:b7:99:c8:e0:10:a9:5f:bd:61:b3:85:5b:
bf:3d:4e:13:7a:97:20:3d:8e:87:6a:05:ee:fe:30:
46:2c:3b:67:21:39:d9:6f:a8:07:22:e0:9f:c6:51:
73:b8:c0:93:8a:f9:69:c8:83:4d:e3:c5:a1:7b:e9:
ad:20:bc:81:94:eb:d0:9d:a6:c2:0a:4b:6c:9b:dd:
6c:79:3e:ab:3a:31:7f:01:ea:cb:79:c4:df:7b:72:
45:2e:f3:5a:aa:c8:35:1f:09:99:15:01:7e:61:34:
65:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:B8:07:49:FD:67:50:9E:3A:C2:A8:87:A1:B0:69:07:96:8B:C8:60
X509v3 Authority Key Identifier:
keyid:BE:18:68:20:5B:3D:13:73:55:AA:71:F2:46:72:95:CD:87:19:52:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhhoIFs9E3NVqnHyRnKVzYcZUsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/d980d1-92c8-44b4-a5ab-757f99927571/1/vhhoIFs9E3NVqnHyRnKVzYcZUsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:ef:55:de:9a:3f:7d:3d:cc:b8:22:9e:49:4b:f0:3e:18:f0:
25:63:c6:5f:d2:98:ee:e7:77:08:4d:f8:a4:9b:7b:20:be:45:
00:3f:5a:93:36:09:c5:c3:48:c0:09:15:22:ab:8c:f9:1d:33:
3c:df:c8:74:1d:38:ac:25:9f:be:15:05:fc:3d:bc:67:5d:6c:
9e:55:01:cb:97:ac:a0:f5:89:30:61:3b:9d:01:89:27:b5:d3:
ea:fa:42:1c:87:9e:05:97:ee:ad:db:69:44:a7:f2:a2:d4:b7:
2a:68:55:f4:78:39:77:0d:fe:b3:c5:ad:3f:7e:bc:98:7b:ad:
b7:83:d2:e5:e9:81:39:4e:fd:79:4f:ef:ee:43:8c:06:d2:63:
9a:9f:ac:45:0e:ec:59:e4:c0:2a:4d:af:e8:4d:cb:f9:44:29:
22:f7:2b:1b:7b:d0:28:18:88:3b:be:5c:b6:ef:37:9b:fb:e1:
d2:7f:01:4f:2c:fb:21:51:d9:5e:e2:45:88:9e:11:8c:04:8b:
c0:1f:5a:42:6c:48:d8:cb:b2:39:e7:f6:43:b4:49:6b:1d:23:
3d:3a:e7:60:60:c9:c9:dc:73:c5:1c:99:7a:15:ff:29:b2:d9:
99:14:f3:08:f5:a6:bf:a1:0c:49:78:66:d4:71:3b:6a:4a:0a:
c3:91:46:59
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:56 2026 by rpki-client