Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
File: vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft (raw, json)
Hash identifier: EhLY6obhXz3EDTGsGQe/pKhfBLR0s7lHUNXYIl0UlTQ=
Subject key identifier: 07:8C:EA:08:59:C4:A5:2A:71:DC:31:29:9F:DB:29:E6:83:CB:0A:BC
Authority key identifier: BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
Certificate issuer: /CN=be722a99732c9c3cbc20b0a47292a823782603ac
Certificate serial: 019CE44885727EC5F8B24EC5B9D87D121A1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
Manifest number: 17F5
Signing time: Thu 12 Mar 2026 23:01:23 +0000
Manifest this update: Thu 12 Mar 2026 23:01:23 +0000
Manifest next update: Fri 13 Mar 2026 23:01:23 +0000
Files and hashes: 1: J9YAUFwPteiNE41P-B9PZesABw4.roa (hash: aWHkIvoqLm8EJJK/XFEsvikfiT0fdWpAKa84pZKqHPU=)
2: vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl (hash: SUgaCzK56AAgbZOnyfsG4Nlg9MJEnPr/etzLOt+PK30=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 23:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:48:85:72:7e:c5:f8:b2:4e:c5:b9:d8:7d:12:1a:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be722a99732c9c3cbc20b0a47292a823782603ac
Validity
Not Before: Mar 12 23:01:23 2026 GMT
Not After : Mar 13 23:01:23 2026 GMT
Subject: CN=078cea0859c4a52a71dc31299fdb29e683cb0abc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:58:29:ec:4c:97:66:4c:ad:a0:85:ee:e4:94:
ec:55:84:5b:e3:61:f1:3e:6f:03:75:4f:0d:a9:8a:
84:05:34:42:c4:af:e2:67:e5:04:68:0b:d9:a3:c8:
b9:f3:14:b2:09:da:81:2c:88:c8:c7:9e:f9:20:4f:
96:92:56:05:55:ca:3a:4a:97:eb:68:42:57:c7:7b:
49:e9:7e:7c:7d:99:45:26:66:0d:e5:87:98:e1:59:
b9:9a:d1:1b:e6:6f:ba:31:63:13:60:ed:70:42:e5:
11:5b:ca:00:04:0f:6b:8e:18:88:3f:e0:82:7d:8c:
5d:6f:39:53:00:fe:65:5c:cc:68:04:e6:3e:f3:c9:
76:29:9c:8e:7d:5f:eb:56:2a:c7:20:6a:a6:3a:b7:
14:37:25:c4:2d:42:df:e3:ea:d7:f5:28:62:5f:ec:
a6:d7:81:b4:68:56:b3:bc:e3:f1:5f:b4:25:9b:7a:
8b:b4:b2:94:2a:56:64:59:1d:e0:3d:6c:aa:33:08:
09:26:fe:28:4a:d7:e8:d8:68:bb:86:73:e4:63:a2:
0a:42:fd:70:19:79:a7:fd:d3:9c:57:86:53:e2:4a:
34:f9:0c:c1:be:72:f4:9a:f3:38:57:14:ad:94:64:
3a:67:95:c6:c3:88:a4:e9:07:ba:1a:23:55:62:0a:
a5:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:8C:EA:08:59:C4:A5:2A:71:DC:31:29:9F:DB:29:E6:83:CB:0A:BC
X509v3 Authority Key Identifier:
keyid:BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:03:5d:31:ab:2d:88:da:ee:b3:19:d3:14:99:8a:3b:91:6b:
ff:18:df:0d:0b:58:77:d5:e3:35:2f:36:12:cc:8c:21:dd:4e:
bd:67:ad:79:28:8b:c3:e4:b4:42:3d:d1:18:cc:b4:0f:50:31:
d8:c1:6b:a4:72:c1:bb:17:49:34:53:08:f5:32:50:39:e8:68:
af:27:4f:f5:89:a6:61:00:7e:9b:3b:4e:6b:80:a3:ac:c6:45:
c3:4c:a9:d7:fe:8f:4e:9d:30:d3:f2:93:45:da:3f:6b:01:ae:
07:00:e2:21:ff:22:02:ec:14:15:f8:ff:b7:bb:cd:f9:36:d5:
9c:ef:0f:af:8f:d1:66:1b:fe:5f:c7:8a:b2:a8:f0:07:f4:7c:
8f:56:09:44:2d:1f:66:39:6e:f1:89:68:40:fc:3d:36:3c:93:
c3:2e:31:f0:09:6a:b4:af:5f:ea:0a:12:bc:b3:2a:43:96:5e:
72:98:2c:1e:cd:89:e6:d5:6c:e2:12:e7:d6:eb:02:14:4c:26:
6a:d0:3d:39:a7:24:76:1d:92:ee:97:7a:70:38:7e:7c:65:94:
a6:52:08:b8:03:82:73:de:d6:5e:78:2a:5c:83:2b:6d:c3:68:
2e:ec:2c:8a:ca:81:79:43:1c:a1:a2:4f:c4:45:f8:f3:f0:da:
fc:44:f6:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 08:43:46 2026 by rpki-client