Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
File: vxtInm2bjH2Dyh5yelmE2-V3r7w.mft (raw, json)
Hash identifier: 0cJeuVBlxf+zYctOVhGvVbcIwh73V8B/eXVBi0OUFvE=
Subject key identifier: B4:BA:9D:33:37:A9:87:09:DE:FE:B7:1D:00:BB:61:78:70:6B:E2:29
Authority key identifier: BF:1B:48:9E:6D:9B:8C:7D:83:CA:1E:72:7A:59:84:DB:E5:77:AF:BC
Certificate issuer: /CN=bf1b489e6d9b8c7d83ca1e727a5984dbe577afbc
Certificate serial: 019E31F339D6378A591EBC906A13FA25B043
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
Manifest number: 021A
Signing time: Sat 16 May 2026 18:01:24 +0000
Manifest this update: Sat 16 May 2026 18:01:24 +0000
Manifest next update: Sun 17 May 2026 18:01:24 +0000
Files and hashes: 1: HQm537DA2Rt_gLXH5dIBcaR4gcY.roa (hash: A6esoRRzZBkkNQYtZos5wiiS1Mq3h7ghGv25Qr0rnQ0=)
2: vxtInm2bjH2Dyh5yelmE2-V3r7w.crl (hash: 5980wBnSSQKw2TujM5yB3rRMCNZEJq/TSPBjKPuF+0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f3:39:d6:37:8a:59:1e:bc:90:6a:13:fa:25:b0:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1b489e6d9b8c7d83ca1e727a5984dbe577afbc
Validity
Not Before: May 16 18:01:24 2026 GMT
Not After : May 17 18:01:24 2026 GMT
Subject: CN=b4ba9d3337a98709defeb71d00bb6178706be229
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:bb:42:27:ed:0e:63:95:a0:98:ee:ac:0a:8d:
2c:c1:2b:ef:61:a0:46:83:4c:e3:89:84:35:6b:3c:
48:8f:8e:ac:0f:42:62:ac:b7:2f:31:5d:59:c4:3d:
90:48:ea:7c:99:be:04:3a:43:84:72:49:8b:51:87:
4d:fd:cd:f2:b4:27:98:8f:44:28:4c:c4:f6:a2:c4:
ba:60:e8:ae:f0:88:bd:50:d3:91:27:05:2d:0e:10:
e2:0a:39:fb:0d:50:d1:9e:96:b9:19:e8:2c:80:79:
ab:31:a2:26:b2:6a:5d:46:c0:6e:56:5f:b6:04:65:
4e:ab:0c:e2:84:e8:0d:55:ef:4c:32:d7:6c:ed:b6:
ef:43:6b:56:8f:b6:ab:3c:f1:ec:c3:40:06:a7:38:
82:78:fe:ae:4c:a0:d6:50:b8:45:b8:72:3b:c2:49:
63:21:1f:11:e0:90:0d:14:89:f9:54:83:b4:5e:c7:
54:62:e4:8d:59:34:ed:ff:81:69:d5:53:83:f5:07:
c4:00:cf:b0:c3:ee:de:4b:ad:fa:34:8f:01:2d:2a:
a5:05:90:0e:5b:99:27:21:22:7f:2a:92:ed:d6:97:
00:5a:76:ef:1d:59:32:b9:e6:b8:0a:cd:24:5d:69:
ee:f5:4a:93:46:d6:de:47:9b:50:9b:e2:76:6a:74:
95:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:BA:9D:33:37:A9:87:09:DE:FE:B7:1D:00:BB:61:78:70:6B:E2:29
X509v3 Authority Key Identifier:
keyid:BF:1B:48:9E:6D:9B:8C:7D:83:CA:1E:72:7A:59:84:DB:E5:77:AF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:2c:32:b3:05:57:2f:f6:9e:33:ae:85:2f:44:5a:c5:f2:05:
c1:b4:c1:84:5f:b8:e7:82:7a:7e:08:c0:ce:d2:55:15:62:8c:
99:b7:aa:60:57:b1:5c:88:38:95:35:9c:5c:90:88:46:34:81:
e3:47:75:b1:57:c2:0c:0b:fb:b0:38:15:1a:4d:0a:d1:75:01:
81:ab:e6:6d:cd:cb:2e:bb:da:b6:cf:c1:dd:1e:93:a0:84:63:
47:e8:bd:c6:03:b7:29:25:df:12:01:b8:a1:01:42:8e:af:d7:
5c:cf:c3:92:26:0d:48:a9:3f:0f:db:33:d1:f8:b0:9f:9f:58:
98:27:ef:a1:01:b8:54:44:b5:b8:e2:65:e9:c7:a5:d8:56:9d:
cd:f5:86:e3:1d:45:94:1a:2c:9a:8e:cc:a6:65:80:74:49:28:
a0:84:87:d6:58:e1:a4:5b:98:38:be:ca:dc:0a:a7:1a:04:5a:
39:05:d6:44:10:58:74:7a:c2:99:9a:f5:fb:5b:f3:32:13:36:
8f:dc:f2:da:27:06:07:fb:ed:8b:25:a1:87:66:cc:b4:5c:a5:
38:8d:ba:36:27:70:e6:a8:4e:32:77:84:40:45:84:b1:64:27:
6b:5b:b3:7a:63:dd:33:a7:bc:88:ff:f0:20:c7:f5:07:60:27:
9d:0e:e5:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4x8znWN4pZHryQahP6JbBDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmMWI0ODllNmQ5YjhjN2Q4M2NhMWU3MjdhNTk4NGRiZTU3
N2FmYmMwHhcNMjYwNTE2MTgwMTI0WhcNMjYwNTE3MTgwMTI0WjAzMTEwLwYDVQQD
EyhiNGJhOWQzMzM3YTk4NzA5ZGVmZWI3MWQwMGJiNjE3ODcwNmJlMjI5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl7tCJ+0OY5WgmO6sCo0swSvvYaBG
g0zjiYQ1azxIj46sD0JirLcvMV1ZxD2QSOp8mb4EOkOEckmLUYdN/c3ytCeYj0Qo
TMT2osS6YOiu8Ii9UNORJwUtDhDiCjn7DVDRnpa5GegsgHmrMaImsmpdRsBuVl+2
BGVOqwzihOgNVe9MMtds7bbvQ2tWj7arPPHsw0AGpziCeP6uTKDWULhFuHI7wklj
IR8R4JANFIn5VIO0XsdUYuSNWTTt/4Fp1VOD9QfEAM+ww+7eS636NI8BLSqlBZAO
W5knISJ/KpLt1pcAWnbvHVkyuea4Cs0kXWnu9UqTRtbeR5tQm+J2anSV/QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLS6nTM3qYcJ3v63HQC7YXhwa+IpMB8GA1UdIwQY
MBaAFL8bSJ5tm4x9g8oecnpZhNvld6+8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNDQxY2EtZTc3Yy00MjExLTg3MTIt
MTgyY2Q0YWFjNDM2LzEvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9iNDQxY2EtZTc3Yy00MjExLTg3MTItMTgyY2Q0YWFjNDM2
LzEvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAICwyswVX
L/aeM66FL0RaxfIFwbTBhF+454J6fgjAztJVFWKMmbeqYFexXIg4lTWcXJCIRjSB
40d1sVfCDAv7sDgVGk0K0XUBgavmbc3LLrvats/B3R6ToIRjR+i9xgO3KSXfEgG4
oQFCjq/XXM/DkiYNSKk/D9sz0fiwn59YmCfvoQG4VES1uOJl6cel2FadzfWG4x1F
lBosmo7MpmWAdEkooISH1ljhpFuYOL7K3AqnGgRaOQXWRBBYdHrCmZr1+1vzMhM2
j9zy2icGB/vtiyWhh2bMtFylOI26Nidw5qhOMneEQEWEsWQna1uzemPdM6e8iP/w
IMf1B2AnnQ7lhg==
-----END CERTIFICATE-----
Generated at Sat May 16 21:12:50 2026 by rpki-client