Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
File: vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft (raw, json)
Hash identifier: SF56nkQCblCKL3d/8DDvZZO9XVKwjYDlmesi/2Ri9GA=
Subject key identifier: D0:01:D2:44:19:EB:E9:C9:39:99:7F:E8:50:58:70:6F:5B:E7:19:62
Authority key identifier: BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
Certificate issuer: /CN=be5539afe925db80b415efb14c631b2d82c8cedd
Certificate serial: 019D3909BD0D27FDC37E16B38B90F2783927
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
Manifest number: 046C
Signing time: Sun 29 Mar 2026 10:00:32 +0000
Manifest this update: Sun 29 Mar 2026 10:00:32 +0000
Manifest next update: Mon 30 Mar 2026 10:00:32 +0000
Files and hashes: 1: vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl (hash: xTuuFoc7SDUmYy3Man869NY3TVUQ7zJi0mMfYQc246k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:bd:0d:27:fd:c3:7e:16:b3:8b:90:f2:78:39:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be5539afe925db80b415efb14c631b2d82c8cedd
Validity
Not Before: Mar 29 10:00:32 2026 GMT
Not After : Mar 30 10:00:32 2026 GMT
Subject: CN=d001d24419ebe9c939997fe85058706f5be71962
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ca:e1:a1:37:05:d6:71:ed:06:a7:ff:99:fe:
55:af:18:66:f6:f0:29:4a:49:5b:c2:fb:37:e3:bc:
b3:ca:df:16:2e:fb:3f:96:11:79:38:f0:b1:6a:3c:
9f:04:4d:8d:d1:1f:e7:4d:55:14:52:de:0f:da:e1:
80:a6:ee:53:d8:08:97:7e:ad:c7:6b:8a:08:ac:11:
bb:0a:8f:38:38:40:d8:14:6e:15:91:4c:14:fc:9c:
78:97:29:14:6f:d2:53:74:8e:f9:3f:f6:83:2a:fa:
3d:06:65:e5:9d:2e:91:ef:66:ea:f2:6b:d1:79:e0:
99:e6:02:10:31:d7:36:93:bf:14:ab:c1:f0:cd:81:
09:0f:c9:a7:2e:f5:f9:92:19:a6:b6:f1:f1:5e:04:
ef:00:fd:17:3e:2e:63:33:92:32:87:ad:75:ee:91:
ea:22:8e:3f:00:98:9b:6c:25:c2:31:42:0c:c4:98:
06:4a:33:65:4d:23:06:87:0e:7f:71:1a:fb:b2:93:
b2:2f:28:d6:45:91:34:33:53:00:18:ff:58:c5:af:
a8:f4:8b:8c:ff:b8:bf:d3:c8:65:19:db:de:22:49:
53:76:54:bb:35:2e:cb:29:36:75:9f:70:4a:5a:ac:
aa:b3:1c:99:df:3d:0d:99:61:b5:9c:b4:0e:da:01:
7c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:01:D2:44:19:EB:E9:C9:39:99:7F:E8:50:58:70:6F:5B:E7:19:62
X509v3 Authority Key Identifier:
keyid:BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:0d:53:66:d1:01:11:3f:a9:d3:b5:bf:fb:81:8d:06:69:f7:
6b:94:cb:5f:c0:b9:1a:8f:54:ae:c8:f9:a6:bd:eb:78:d2:d0:
3b:b6:37:94:09:0e:3d:a1:13:0b:99:f7:af:ce:01:17:cb:b0:
72:82:f8:49:66:03:a7:26:44:83:90:a6:96:ae:a9:93:5f:c4:
38:c4:fd:65:cb:f0:da:8f:55:6f:c0:62:52:51:55:92:de:62:
19:a8:e7:31:e8:78:bf:f3:a2:33:b1:fa:99:b0:9e:b0:e7:68:
3f:e0:fa:9d:57:91:7e:96:ab:25:7a:95:41:a2:a9:c2:98:cd:
13:43:bd:e7:45:bb:ef:9b:e5:8a:bf:fb:8c:35:ac:c6:08:9e:
9e:c2:96:41:8c:6e:db:7e:f8:35:8a:12:3a:56:eb:3a:fd:33:
7e:4b:d4:1e:0e:11:a3:8f:e1:a3:7f:16:98:fa:95:bc:97:dc:
24:5f:ef:54:6e:52:c0:ae:e2:af:73:c3:43:ff:2a:04:48:be:
e7:d1:e9:9f:4b:ba:fc:6b:ca:85:e2:23:4b:0e:a4:90:10:be:
f3:09:ad:73:4a:7d:c5:cf:ad:82:e9:2f:e0:41:b8:6b:f9:a6:
3b:b9:22:c5:16:74:48:c7:9a:9f:cf:db:e3:75:bf:2a:87:37:
9f:40:e6:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:36:29 2026 by rpki-client