Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
File: VXe0uHq4aspXflbjjVuKWBPMzD0.mft (raw, json)
Hash identifier: C38n5ICU0ehDT1ZgFinL7/WoMwq+Ns55lFrMF8EDqU8=
Subject key identifier: 70:40:25:98:D3:EC:0D:DC:7A:BD:B2:FE:9C:C7:B4:23:B6:3F:81:E3
Authority key identifier: 55:77:B4:B8:7A:B8:6A:CA:57:7E:56:E3:8D:5B:8A:58:13:CC:CC:3D
Certificate issuer: /CN=5577b4b87ab86aca577e56e38d5b8a5813cccc3d
Certificate serial: 019D39AF24805CECD44A582DA3273A0EDE36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
Manifest number: 13C2
Signing time: Sun 29 Mar 2026 13:01:12 +0000
Manifest this update: Sun 29 Mar 2026 13:01:12 +0000
Manifest next update: Mon 30 Mar 2026 13:01:12 +0000
Files and hashes: 1: VXe0uHq4aspXflbjjVuKWBPMzD0.crl (hash: RnGw91b22juk5S9Xx2JVU40SeOxYaZrO8QMBpMnBbDw=)
2: wtAobWAtIsJ9eoMextQEU1zoyGo.roa (hash: QGRc3yCeMrwfNC3vCqeJOv3KoeMn2Gn4BzCoJrTisLA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:24:80:5c:ec:d4:4a:58:2d:a3:27:3a:0e:de:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5577b4b87ab86aca577e56e38d5b8a5813cccc3d
Validity
Not Before: Mar 29 13:01:12 2026 GMT
Not After : Mar 30 13:01:12 2026 GMT
Subject: CN=70402598d3ec0ddc7abdb2fe9cc7b423b63f81e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:63:e0:36:f8:52:33:a8:b0:ee:60:55:80:92:
06:86:fb:89:72:77:a0:ee:01:d6:fb:f6:bd:0f:ab:
17:af:e5:16:cb:42:3e:5d:59:12:d8:fe:27:bd:ec:
79:a0:ba:9f:d4:48:c1:c5:0b:af:71:21:f6:82:f7:
47:71:5e:27:06:8b:9a:f9:4b:29:83:54:61:6e:47:
99:2e:d8:be:ed:a6:45:a6:7e:b4:36:1e:89:63:01:
8e:ad:29:eb:73:52:cd:2c:fb:35:87:53:6e:dc:1b:
b0:7e:61:7d:63:4f:14:5f:2d:c7:68:6b:d0:b6:f0:
bf:68:01:51:8d:35:bb:dc:16:63:ca:5a:9f:9f:88:
fd:4b:6c:0d:40:e9:18:2a:7c:7d:3f:ac:96:4d:0c:
56:02:7c:88:0f:5b:44:d0:bf:95:df:e6:24:70:58:
81:20:26:ba:70:b0:87:aa:eb:ea:97:bc:7c:0c:a2:
3a:64:cc:06:d5:d1:5f:03:ff:08:8a:e4:d4:8c:3b:
d0:fd:f8:3b:b0:7d:22:1a:d6:9d:2f:a3:0b:54:d9:
5b:e8:b3:06:0f:d3:9a:7c:b4:54:86:2d:bb:49:1a:
e9:bf:1e:ea:7b:96:35:8c:5b:b5:0f:21:d0:cb:2b:
24:c4:d4:1c:76:a0:d5:1f:85:dd:1a:c2:40:9b:36:
2a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:40:25:98:D3:EC:0D:DC:7A:BD:B2:FE:9C:C7:B4:23:B6:3F:81:E3
X509v3 Authority Key Identifier:
keyid:55:77:B4:B8:7A:B8:6A:CA:57:7E:56:E3:8D:5B:8A:58:13:CC:CC:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:05:2c:e6:1f:1f:13:6c:05:e4:f9:cc:d2:f0:fd:4b:d6:3a:
38:2d:d5:8d:95:7b:46:88:cf:76:c9:f0:90:c3:7b:37:03:0a:
af:18:06:d6:9e:eb:56:70:2c:5f:1e:18:c9:57:09:21:d2:af:
a1:0a:07:88:af:d0:48:17:e0:8b:05:59:76:80:57:b8:d4:e5:
c4:c1:12:22:b3:fb:f5:0c:80:93:79:8a:28:2a:dd:a5:73:b8:
71:a5:6e:e0:69:ee:bf:e1:ea:92:42:37:67:e7:8f:31:13:a4:
7e:bf:92:04:16:73:be:b7:a2:43:8f:f3:41:86:cf:da:ee:99:
c1:63:20:c2:dd:41:fb:a1:a7:4f:71:b7:ce:79:8e:94:6c:97:
f1:d3:db:61:83:68:42:58:4d:33:56:ca:fc:88:f4:73:a5:2f:
1c:6d:f9:be:8c:1e:f5:0b:2f:bd:52:20:33:15:2a:da:6b:f0:
ba:07:4e:89:20:62:43:59:5b:96:3e:5c:7f:9d:eb:55:23:b4:
cf:d1:b3:ed:be:2b:a0:ee:43:bb:be:c7:48:db:56:c0:8f:78:
fe:73:95:4c:1c:cd:a7:18:bc:f7:08:41:80:c9:2a:77:e4:dc:
71:ac:0f:e4:d8:d3:d4:37:aa:f4:97:fc:24:6c:24:1c:8c:a5:
dc:31:0c:a5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05rySAXOzUSlgtoyc6Dt42MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1NzdiNGI4N2FiODZhY2E1NzdlNTZlMzhkNWI4YTU4MTNj
Y2NjM2QwHhcNMjYwMzI5MTMwMTEyWhcNMjYwMzMwMTMwMTEyWjAzMTEwLwYDVQQD
Eyg3MDQwMjU5OGQzZWMwZGRjN2FiZGIyZmU5Y2M3YjQyM2I2M2Y4MWUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx2PgNvhSM6iw7mBVgJIGhvuJcneg
7gHW+/a9D6sXr+UWy0I+XVkS2P4nvex5oLqf1EjBxQuvcSH2gvdHcV4nBoua+Usp
g1RhbkeZLti+7aZFpn60Nh6JYwGOrSnrc1LNLPs1h1Nu3BuwfmF9Y08UXy3HaGvQ
tvC/aAFRjTW73BZjylqfn4j9S2wNQOkYKnx9P6yWTQxWAnyID1tE0L+V3+YkcFiB
ICa6cLCHquvql7x8DKI6ZMwG1dFfA/8IiuTUjDvQ/fg7sH0iGtadL6MLVNlb6LMG
D9OafLRUhi27SRrpvx7qe5Y1jFu1DyHQyyskxNQcdqDVH4XdGsJAmzYq/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHBAJZjT7A3cer2y/pzHtCO2P4HjMB8GA1UdIwQY
MBaAFFV3tLh6uGrKV35W441bilgTzMw9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVlhlMHVIcTRhc3BYZmxiampWdUtXQlBNekQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9kMTU4ZTEtNTEyYi00NDg2LWFmODct
YjQ5MGE2ZDZiZTI1LzEvVlhlMHVIcTRhc3BYZmxiampWdUtXQlBNekQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9kMTU4ZTEtNTEyYi00NDg2LWFmODctYjQ5MGE2ZDZiZTI1
LzEvVlhlMHVIcTRhc3BYZmxiampWdUtXQlBNekQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARgUs5h8f
E2wF5PnM0vD9S9Y6OC3VjZV7RojPdsnwkMN7NwMKrxgG1p7rVnAsXx4YyVcJIdKv
oQoHiK/QSBfgiwVZdoBXuNTlxMESIrP79QyAk3mKKCrdpXO4caVu4Gnuv+HqkkI3
Z+ePMROkfr+SBBZzvreiQ4/zQYbP2u6ZwWMgwt1B+6GnT3G3znmOlGyX8dPbYYNo
QlhNM1bK/Ij0c6UvHG35vowe9QsvvVIgMxUq2mvwugdOiSBiQ1lblj5cf53rVSO0
z9Gz7b4roO5Du77HSNtWwI94/nOVTBzNpxi89whBgMkqd+TccawP5NjT1Deq9Jf8
JGwkHIyl3DEMpQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:25 2026 by rpki-client