Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
File: VKzhXkXvtaAGDAZeJ06o46-wJes.mft (raw, json)
Hash identifier: A2rT/ha3/JJeZ7ZQJbAWW6408nHXJgHdj/yxEDtDPWE=
Subject key identifier: 3E:A4:DA:72:7C:B5:40:D3:FF:D5:8B:A8:C9:67:16:85:2A:84:BA:42
Authority key identifier: 54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
Certificate issuer: /CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Certificate serial: 019D390A5248888591286DAD3AE6FED41DEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 10:01:10 +0000
Manifest this update: Sun 29 Mar 2026 10:01:10 +0000
Manifest next update: Mon 30 Mar 2026 10:01:10 +0000
Files and hashes: 1: 7Br6QJMiBJoDhVb_EXiCriWN_AY.roa (hash: gsWLGvyw0Im/+vXwSUKiwI1f5wizI+ESV/TWVUu641o=)
2: VKzhXkXvtaAGDAZeJ06o46-wJes.crl (hash: mepoo0ChwC5i+jpYlPfKwB7jF0cb8Z4qBuwm/6SMVIg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:52:48:88:85:91:28:6d:ad:3a:e6:fe:d4:1d:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Validity
Not Before: Mar 29 10:01:10 2026 GMT
Not After : Mar 30 10:01:10 2026 GMT
Subject: CN=3ea4da727cb540d3ffd58ba8c96716852a84ba42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e8:0b:b4:e4:a7:f1:b3:16:cb:98:4c:bc:0a:
0d:db:78:20:97:ca:97:cd:94:a9:98:ae:45:d7:b7:
ad:4b:d6:f7:f1:74:24:45:f8:94:c4:22:f0:8f:9e:
7a:05:ea:93:36:17:11:8e:02:8f:ce:45:15:36:f3:
13:73:73:99:f5:60:93:05:72:37:fc:e7:a6:07:c0:
09:73:2c:64:f5:e6:35:a0:e4:53:f4:ee:49:b2:c5:
ab:64:ae:a6:5e:ad:cd:65:94:6b:06:d6:09:fe:26:
43:c5:0e:78:85:62:49:47:0b:01:b6:d7:c9:ab:16:
54:43:37:7a:aa:19:81:e3:38:92:fb:bb:5b:47:66:
7d:4d:e0:74:1c:8c:d9:2d:e8:76:47:0c:7a:ca:4e:
ec:68:88:9f:61:3d:72:d8:90:ea:fc:fe:9f:8b:a4:
fc:b3:e9:42:96:ee:42:05:d8:84:53:34:ab:8f:75:
00:dc:a3:a1:54:99:1f:77:7c:e1:46:06:dd:8d:14:
df:42:f9:a2:3c:ac:cf:61:19:66:22:f2:8c:13:50:
e0:19:6b:d6:b2:a7:83:17:59:df:cd:ba:c6:5d:e3:
ae:fd:29:a2:66:fd:21:e3:df:5d:0e:5b:c9:9a:0e:
29:ff:ec:c6:fa:9b:f9:43:a8:c0:75:72:e3:ea:90:
b6:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:A4:DA:72:7C:B5:40:D3:FF:D5:8B:A8:C9:67:16:85:2A:84:BA:42
X509v3 Authority Key Identifier:
keyid:54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:12:6b:ea:cb:e4:8e:a3:6c:2d:f4:d5:b6:1e:53:9f:9d:8e:
16:04:da:56:b9:1e:fc:5f:28:0a:e4:0c:dd:71:d9:a4:41:ac:
6a:0a:82:d8:92:41:ab:b9:6c:71:ab:09:76:93:85:51:02:7b:
5a:a2:11:22:53:2a:31:0b:8f:5f:03:5f:78:0a:61:74:c3:5a:
4d:34:83:07:61:a5:a7:53:44:f4:8f:3f:f3:0f:64:a0:f0:f2:
01:df:94:18:fb:81:77:b3:32:5b:a1:09:3c:d4:7e:39:f6:83:
07:a1:8e:9d:8e:e1:fd:de:26:77:21:a4:da:2a:93:ae:d8:99:
8b:3e:cc:d6:f4:91:5e:a3:7d:04:6d:48:33:63:50:78:db:77:
25:e9:c1:f3:6e:09:b7:31:d2:96:24:ca:39:63:4d:6e:64:01:
8a:47:05:f4:0c:1d:b6:36:d1:93:de:fe:ac:50:49:06:3b:71:
04:56:6a:9b:90:65:8d:5d:f2:1f:18:3c:fd:be:72:1c:b4:23:
28:6f:9f:8d:46:c5:d0:55:11:2c:af:e4:f3:4a:95:14:57:d5:
12:0e:d2:f2:1e:2a:45:5d:62:78:e5:b3:46:6d:27:65:04:bd:
ae:e3:4a:a3:6c:23:22:83:e3:39:d7:0f:d5:6f:76:83:bf:1b:
fd:ce:dc:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05ClJIiIWRKG2tOub+1B3vMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0YWNlMTVlNDVlZmI1YTAwNjBjMDY1ZTI3NGVhOGUzYWZi
MDI1ZWIwHhcNMjYwMzI5MTAwMTEwWhcNMjYwMzMwMTAwMTEwWjAzMTEwLwYDVQQD
EygzZWE0ZGE3MjdjYjU0MGQzZmZkNThiYThjOTY3MTY4NTJhODRiYTQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlegLtOSn8bMWy5hMvAoN23ggl8qX
zZSpmK5F17etS9b38XQkRfiUxCLwj556BeqTNhcRjgKPzkUVNvMTc3OZ9WCTBXI3
/OemB8AJcyxk9eY1oORT9O5JssWrZK6mXq3NZZRrBtYJ/iZDxQ54hWJJRwsBttfJ
qxZUQzd6qhmB4ziS+7tbR2Z9TeB0HIzZLeh2Rwx6yk7saIifYT1y2JDq/P6fi6T8
s+lClu5CBdiEUzSrj3UA3KOhVJkfd3zhRgbdjRTfQvmiPKzPYRlmIvKME1DgGWvW
sqeDF1nfzbrGXeOu/SmiZv0h499dDlvJmg4p/+zG+pv5Q6jAdXLj6pC2KwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD6k2nJ8tUDT/9WLqMlnFoUqhLpCMB8GA1UdIwQY
MBaAFFSs4V5F77WgBgwGXidOqOOvsCXrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEt
YWQyYjYxMzgwYmUxLzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEtYWQyYjYxMzgwYmUx
LzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkxJr6svk
jqNsLfTVth5Tn52OFgTaVrke/F8oCuQM3XHZpEGsagqC2JJBq7lscasJdpOFUQJ7
WqIRIlMqMQuPXwNfeAphdMNaTTSDB2Glp1NE9I8/8w9koPDyAd+UGPuBd7MyW6EJ
PNR+OfaDB6GOnY7h/d4mdyGk2iqTrtiZiz7M1vSRXqN9BG1IM2NQeNt3JenB824J
tzHSliTKOWNNbmQBikcF9AwdtjbRk97+rFBJBjtxBFZqm5BljV3yHxg8/b5yHLQj
KG+fjUbF0FURLK/k80qVFFfVEg7S8h4qRV1ieOWzRm0nZQS9ruNKo2wjIoPjOdcP
1W92g78b/c7clA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 14:05:45 2026 by rpki-client