Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
File: vxtInm2bjH2Dyh5yelmE2-V3r7w.mft (raw, json)
Hash identifier: PNOgQDFOXOzORR34TFvdXabN0WTl0CstEuB4DDajNg0=
Subject key identifier: 52:0B:60:28:41:40:E1:35:77:1B:74:13:20:8B:31:37:9C:56:18:68
Authority key identifier: BF:1B:48:9E:6D:9B:8C:7D:83:CA:1E:72:7A:59:84:DB:E5:77:AF:BC
Certificate issuer: /CN=bf1b489e6d9b8c7d83ca1e727a5984dbe577afbc
Certificate serial: 019F19B185B8494804EAF5878DEABBB6D958
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
Manifest number: 0292
Signing time: Tue 30 Jun 2026 18:01:32 +0000
Manifest this update: Tue 30 Jun 2026 18:01:32 +0000
Manifest next update: Wed 01 Jul 2026 18:01:32 +0000
Files and hashes: 1: HQm537DA2Rt_gLXH5dIBcaR4gcY.roa (hash: A6esoRRzZBkkNQYtZos5wiiS1Mq3h7ghGv25Qr0rnQ0=)
2: vxtInm2bjH2Dyh5yelmE2-V3r7w.crl (hash: eXji9BiVQKryYKbUAH7SdYuQujZG306ameLukMUPOJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:b1:85:b8:49:48:04:ea:f5:87:8d:ea:bb:b6:d9:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1b489e6d9b8c7d83ca1e727a5984dbe577afbc
Validity
Not Before: Jun 30 18:01:32 2026 GMT
Not After : Jul 1 18:01:32 2026 GMT
Subject: CN=520b60284140e135771b7413208b31379c561868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:01:8e:05:c0:6e:40:26:d7:82:53:31:2a:33:
3e:c3:d4:86:61:75:fa:3f:43:20:b3:08:a0:51:4c:
e8:4e:47:88:0d:90:d0:14:26:e1:fb:a8:df:be:2e:
9c:af:4c:47:54:5c:d1:e8:e1:1c:0d:b7:d8:77:30:
03:ae:0a:45:2c:42:e0:1b:d2:48:b8:9f:34:c7:92:
d8:7e:75:26:a8:e4:f5:eb:8b:03:52:30:b6:f3:bd:
a5:18:c9:2c:12:48:18:b0:be:69:94:6d:a4:03:21:
4b:3c:8a:b3:9d:6a:26:9b:27:c8:12:6a:35:8f:33:
30:fd:41:1d:36:cb:e0:2a:38:f3:72:9d:b3:6a:b0:
a8:05:22:59:7c:c8:79:53:9b:7a:a3:84:31:f7:fe:
b4:a1:91:88:4f:b5:18:a8:f5:bc:2b:96:3d:8f:84:
b2:1e:24:62:8a:bc:86:49:c3:8c:a9:8a:5e:ef:17:
5d:9b:49:64:c5:2f:9d:3a:20:fc:31:76:0c:f9:59:
0a:d6:40:71:de:06:c3:3e:13:4a:bb:56:41:76:06:
fc:0b:f6:99:7e:ef:b4:21:72:34:e0:f5:2c:79:a5:
ca:af:57:a5:03:06:8d:00:5f:55:b5:b1:19:0d:4c:
c2:dd:91:3b:b9:0e:4d:91:e9:c5:1e:b0:b4:c5:9e:
80:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:0B:60:28:41:40:E1:35:77:1B:74:13:20:8B:31:37:9C:56:18:68
X509v3 Authority Key Identifier:
keyid:BF:1B:48:9E:6D:9B:8C:7D:83:CA:1E:72:7A:59:84:DB:E5:77:AF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:d1:be:13:fb:b3:3c:ea:54:e0:a3:46:06:47:05:6c:76:76:
fa:c1:85:23:b0:76:47:2c:f4:a7:40:cd:f1:4b:b1:01:3f:8f:
52:bb:4f:bb:7a:9b:9b:0f:d1:95:a8:1a:c6:f5:06:b0:31:c2:
2d:b9:97:d7:4e:68:c4:7f:8a:00:b1:af:22:33:29:a3:e8:51:
4b:70:05:65:c3:c6:7d:e0:0c:0d:2d:e8:14:7b:54:b5:0d:26:
d3:a0:3c:f5:1c:b2:7a:43:8b:a6:03:c7:c9:9c:4d:68:9e:af:
29:25:b6:00:69:da:0c:4e:b2:f7:a9:c3:ec:33:04:0d:bf:fb:
29:ae:a8:55:bc:de:32:48:07:66:47:6e:3c:55:fd:2b:7d:14:
89:0d:2d:1b:bb:84:1e:0e:52:af:12:95:b2:d2:2b:e8:2a:75:
ee:f8:f9:e5:55:c7:0d:7e:fb:91:f3:13:69:90:96:d5:ca:02:
58:56:25:b7:03:a6:89:7d:a9:c3:a9:73:37:98:8f:36:be:f5:
81:9f:8b:11:65:92:eb:87:47:33:49:4b:8c:41:b3:e0:d2:08:
f6:9c:b9:a2:f3:47:63:7e:1f:9d:3d:ed:7c:5c:42:b0:6c:8c:
3a:50:a4:a8:d0:1b:80:ed:2c:25:ba:f6:4a:b2:13:33:93:3b:
dd:fb:11:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:34:11 2026 by rpki-client