Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
File: vxtInm2bjH2Dyh5yelmE2-V3r7w.mft (raw, json)
Hash identifier: 1x9xJtQAiWBbvTYbhJ78vraCm0dbTcwyPoR4tng+T/k=
Subject key identifier: 79:F9:2C:0A:5A:CB:D5:94:5A:19:45:33:23:5B:3C:43:97:CB:70:97
Authority key identifier: BF:1B:48:9E:6D:9B:8C:7D:83:CA:1E:72:7A:59:84:DB:E5:77:AF:BC
Certificate issuer: /CN=bf1b489e6d9b8c7d83ca1e727a5984dbe577afbc
Certificate serial: 019D38D2BA14CA24FF8A1FB4F889CD898DC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
Manifest number: 0199
Signing time: Sun 29 Mar 2026 09:00:27 +0000
Manifest this update: Sun 29 Mar 2026 09:00:27 +0000
Manifest next update: Mon 30 Mar 2026 09:00:27 +0000
Files and hashes: 1: HQm537DA2Rt_gLXH5dIBcaR4gcY.roa (hash: A6esoRRzZBkkNQYtZos5wiiS1Mq3h7ghGv25Qr0rnQ0=)
2: vxtInm2bjH2Dyh5yelmE2-V3r7w.crl (hash: DwkVqTSrUjLiF9DGxFZqAm82lwrOmugUipDlrS+w6nk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:ba:14:ca:24:ff:8a:1f:b4:f8:89:cd:89:8d:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf1b489e6d9b8c7d83ca1e727a5984dbe577afbc
Validity
Not Before: Mar 29 09:00:27 2026 GMT
Not After : Mar 30 09:00:27 2026 GMT
Subject: CN=79f92c0a5acbd5945a194533235b3c4397cb7097
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:67:bc:fb:65:eb:10:f9:ba:e3:95:b6:fa:d0:
34:61:de:05:7d:ff:98:0f:5f:aa:2d:1e:b4:cc:51:
0e:51:6f:c6:5b:8b:d4:02:1b:39:75:b3:2f:81:4c:
e7:87:e2:f1:1e:df:15:46:c6:88:5b:dc:4c:30:70:
b2:98:e4:41:27:3a:f8:bf:45:37:a6:fb:96:22:76:
1c:47:74:7b:a8:4b:62:dc:2e:97:4a:76:11:ac:39:
46:50:b4:9a:c7:f5:e8:3e:0b:06:03:69:43:3f:24:
45:46:24:a1:bb:2e:7f:2f:23:23:d8:7b:b0:2d:4c:
10:ae:66:d1:ff:c6:bf:b2:d6:c8:d0:35:20:8f:66:
f8:98:fc:ba:6b:cf:0d:37:c1:cd:e7:1b:6d:ce:1e:
a2:07:ba:e0:0c:1d:35:01:cd:4d:2e:a9:a0:e6:60:
b6:46:8a:99:68:e6:32:6f:f3:79:97:d8:56:f7:38:
f0:51:ed:1d:88:eb:76:26:8f:3d:7c:5c:7c:62:4d:
06:6f:b1:23:5d:7b:c2:69:da:44:59:49:4a:fe:74:
bc:37:60:2e:1c:4e:a6:84:28:77:c0:af:97:42:0f:
25:8b:d9:18:f2:a9:57:b1:4f:b1:8f:66:4f:80:2c:
c5:53:3a:ce:9e:57:cf:64:61:bd:d8:cb:bc:21:5e:
21:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:F9:2C:0A:5A:CB:D5:94:5A:19:45:33:23:5B:3C:43:97:CB:70:97
X509v3 Authority Key Identifier:
keyid:BF:1B:48:9E:6D:9B:8C:7D:83:CA:1E:72:7A:59:84:DB:E5:77:AF:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vxtInm2bjH2Dyh5yelmE2-V3r7w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/b441ca-e77c-4211-8712-182cd4aac436/1/vxtInm2bjH2Dyh5yelmE2-V3r7w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:28:23:8e:43:33:83:92:08:de:73:4a:9d:89:c4:0f:14:6e:
df:64:0b:a4:3b:e5:96:44:d2:83:a5:78:32:b4:78:e6:97:93:
80:3d:b6:95:2f:15:c1:d8:0e:72:8b:c3:9b:46:92:0c:c7:e4:
bb:58:f2:ea:e8:a4:2b:ef:4e:08:ee:5a:26:49:00:40:18:48:
44:8a:af:21:f2:a1:b8:e3:9d:c5:1d:de:af:e8:61:67:9c:a3:
2b:26:30:65:50:9b:d8:6d:bf:47:eb:66:32:6e:b9:fe:d2:48:
de:4b:86:f5:88:9b:e9:f2:03:a2:85:15:82:e7:81:62:7c:9c:
eb:b9:bf:6a:66:7f:92:d3:bd:ef:14:32:2c:bc:d7:0d:01:09:
94:69:46:d4:e0:f8:07:5c:53:dd:e2:60:87:a8:13:6f:6d:77:
6e:a6:a2:3a:af:5d:5e:14:de:d3:97:9f:38:6a:e0:80:48:78:
e5:f5:19:7f:d9:7d:10:52:ed:c1:d5:d3:3f:7a:45:59:3a:01:
c8:9a:c6:8a:5f:bb:1c:a7:c8:d5:66:b6:b2:83:eb:c9:b5:7d:
de:86:74:f1:8a:fd:93:4c:9f:ba:86:df:cd:f7:a6:48:d1:fc:
77:30:79:0e:88:ab:fc:b8:b8:f1:6a:ae:3c:f3:0c:f0:c6:f4:
db:8f:4b:3f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ040roUyiT/ih+0+InNiY3HMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmMWI0ODllNmQ5YjhjN2Q4M2NhMWU3MjdhNTk4NGRiZTU3
N2FmYmMwHhcNMjYwMzI5MDkwMDI3WhcNMjYwMzMwMDkwMDI3WjAzMTEwLwYDVQQD
Eyg3OWY5MmMwYTVhY2JkNTk0NWExOTQ1MzMyMzViM2M0Mzk3Y2I3MDk3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWe8+2XrEPm645W2+tA0Yd4Fff+Y
D1+qLR60zFEOUW/GW4vUAhs5dbMvgUznh+LxHt8VRsaIW9xMMHCymORBJzr4v0U3
pvuWInYcR3R7qEti3C6XSnYRrDlGULSax/XoPgsGA2lDPyRFRiShuy5/LyMj2Huw
LUwQrmbR/8a/stbI0DUgj2b4mPy6a88NN8HN5xttzh6iB7rgDB01Ac1NLqmg5mC2
RoqZaOYyb/N5l9hW9zjwUe0diOt2Jo89fFx8Yk0Gb7EjXXvCadpEWUlK/nS8N2Au
HE6mhCh3wK+XQg8li9kY8qlXsU+xj2ZPgCzFUzrOnlfPZGG92Mu8IV4hRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHn5LApay9WUWhlFMyNbPEOXy3CXMB8GA1UdIwQY
MBaAFL8bSJ5tm4x9g8oecnpZhNvld6+8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9iNDQxY2EtZTc3Yy00MjExLTg3MTIt
MTgyY2Q0YWFjNDM2LzEvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Ni9iNDQxY2EtZTc3Yy00MjExLTg3MTItMTgyY2Q0YWFjNDM2
LzEvdnh0SW5tMmJqSDJEeWg1eWVsbUUyLVYzcjd3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhygjjkMz
g5II3nNKnYnEDxRu32QLpDvllkTSg6V4MrR45peTgD22lS8VwdgOcovDm0aSDMfk
u1jy6uikK+9OCO5aJkkAQBhIRIqvIfKhuOOdxR3er+hhZ5yjKyYwZVCb2G2/R+tm
Mm65/tJI3kuG9Yib6fIDooUVgueBYnyc67m/amZ/ktO97xQyLLzXDQEJlGlG1OD4
B1xT3eJgh6gTb213bqaiOq9dXhTe05efOGrggEh45fUZf9l9EFLtwdXTP3pFWToB
yJrGil+7HKfI1Wa2soPrybV93oZ08Yr9k0yfuobfzfemSNH8dzB5Doir/Li48Wqu
PPMM8Mb0249LPw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 16:25:13 2026 by rpki-client