Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
File: VKzhXkXvtaAGDAZeJ06o46-wJes.mft (raw, json)
Hash identifier: uW4CiqapFtzZoHWMJ4SSsVSuz+iT0Xc5lg0ynAu/hnU=
Subject key identifier: A4:7A:69:E7:F7:FA:E3:F5:9F:5B:E6:9C:D2:5A:11:6C:29:6A:DC:85
Authority key identifier: 54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
Certificate issuer: /CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Certificate serial: 019EB769EE926405F8A0353356CEE17E21B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
Manifest number: 1955
Signing time: Thu 11 Jun 2026 16:00:33 +0000
Manifest this update: Thu 11 Jun 2026 16:00:33 +0000
Manifest next update: Fri 12 Jun 2026 16:00:33 +0000
Files and hashes: 1: 7Br6QJMiBJoDhVb_EXiCriWN_AY.roa (hash: gsWLGvyw0Im/+vXwSUKiwI1f5wizI+ESV/TWVUu641o=)
2: VKzhXkXvtaAGDAZeJ06o46-wJes.crl (hash: S9D6zhZMYQ+BQyTH0vmKcjtD3jhh3j793uUHTiqykqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:69:ee:92:64:05:f8:a0:35:33:56:ce:e1:7e:21:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Validity
Not Before: Jun 11 16:00:33 2026 GMT
Not After : Jun 12 16:00:33 2026 GMT
Subject: CN=a47a69e7f7fae3f59f5be69cd25a116c296adc85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:98:71:49:11:67:02:8e:62:9d:74:35:0a:69:
48:8e:05:41:4a:9a:79:c4:78:d3:91:a3:bf:34:13:
d1:3b:5f:3b:ad:5d:bb:cc:03:1f:93:de:c8:fa:89:
7c:96:50:c5:d1:f5:55:84:92:c9:e8:fc:a8:cf:11:
1e:eb:ad:0e:09:b0:23:18:c5:8b:a8:f3:9c:af:bf:
d0:ba:63:e4:61:71:40:f2:dd:dc:6c:80:1a:af:c7:
91:a9:99:7a:bc:d6:8e:13:7d:19:bb:f8:cb:59:ee:
cb:98:df:d0:ff:ca:7a:82:d1:af:94:9d:02:f4:dc:
0d:58:fe:2b:30:dd:07:b0:51:97:ab:71:9d:77:f6:
53:cb:2c:ce:19:05:05:50:42:a0:0e:0b:50:87:ec:
34:43:a4:c2:bd:6c:be:3e:6d:5e:bc:dd:72:89:a5:
84:cc:60:62:f0:64:e1:ed:5e:fe:ed:0b:da:c6:a5:
03:db:9e:d0:1b:03:66:09:47:b9:bd:45:0c:e2:f3:
bd:e4:84:97:35:40:92:8e:72:07:a0:2d:60:22:a3:
49:28:d2:ae:4a:02:0c:a4:d5:c3:43:d9:5d:bb:b8:
f1:09:8c:6b:30:4e:04:5b:76:dd:52:a9:b9:0e:59:
01:5e:3d:10:d3:b9:46:97:bd:2e:2b:71:45:fa:22:
06:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:7A:69:E7:F7:FA:E3:F5:9F:5B:E6:9C:D2:5A:11:6C:29:6A:DC:85
X509v3 Authority Key Identifier:
keyid:54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:69:81:b9:3e:17:b7:ec:54:6e:04:91:ac:10:0f:78:cb:29:
9c:11:4b:7a:f9:cc:7f:be:88:8e:a9:71:15:06:5d:e3:ae:87:
83:7f:a4:ac:78:a8:6b:ee:df:5e:09:07:3a:8b:a4:ee:bd:12:
4e:89:25:c3:52:04:83:41:31:f3:97:e9:db:e8:e8:3c:ca:32:
ac:74:10:12:e0:29:b4:f9:0a:26:e2:cf:4d:c5:58:4a:b3:ce:
9a:47:49:19:35:df:1f:e0:88:6b:60:2c:11:59:bf:ab:cf:7e:
56:8c:80:a1:1c:a2:b3:c5:3f:18:06:07:cc:ed:f2:15:ba:90:
b9:06:98:c0:96:ba:1d:6d:61:fe:23:15:32:8c:2b:6d:a7:93:
24:2d:54:19:bb:34:e2:fd:aa:71:6f:f4:a0:95:64:bc:74:56:
58:c8:5c:bc:e2:fa:34:b3:e9:49:06:c1:31:68:66:c5:4f:2f:
ed:0f:ed:93:07:1b:53:8f:bf:0a:18:a9:03:e4:f0:77:99:39:
3a:5a:97:55:72:77:01:d3:ba:72:34:01:2b:64:0a:aa:9e:a4:
54:b5:8b:03:5f:5b:26:b8:be:63:61:77:d8:9a:6b:20:ea:ee:
bc:f2:ae:75:29:a5:12:3c:9c:05:6b:e2:d4:ad:35:d7:b8:1c:
3e:05:44:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 22:59:57 2026 by rpki-client