Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.mft
File: vQQTxuRIJSdlFDEhETiDjhM4VN4.mft (raw, json)
Hash identifier: l0UpZMAcH7mQ6m5hR1gItqq/oHdkYAjg4J4ubcDea5Y=
Subject key identifier: EB:45:CA:E3:74:01:8D:F7:6C:0C:28:A5:68:D9:D6:84:24:5B:B4:86
Authority key identifier: BD:04:13:C6:E4:48:25:27:65:14:31:21:11:38:83:8E:13:38:54:DE
Certificate issuer: /CN=bd0413c6e4482527651431211138838e133854de
Certificate serial: 019F11C035ED02FD7211919B3F377BCB90E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vQQTxuRIJSdlFDEhETiDjhM4VN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.mft
Manifest number: 0118
Signing time: Mon 29 Jun 2026 05:00:36 +0000
Manifest this update: Mon 29 Jun 2026 05:00:36 +0000
Manifest next update: Tue 30 Jun 2026 05:00:36 +0000
Files and hashes: 1: 2BRKaV481qYaYEf_ptQv9s6mXk0.roa (hash: 3qwKn3hKWWlOXMhcF0uI+o1LJ6rwy7CNUd7f2iOCG0I=)
2: PuPGYI3AD64wjFKrjsvTXMK3F3Y.asa (hash: pxQzj2AvHigk+PTnXI/Bxg/3cVEcpO9mX6pPixzHeUk=)
3: vQQTxuRIJSdlFDEhETiDjhM4VN4.crl (hash: bUs9O9FoUovP0U4nvy/bTWHWrEvNTYA1vQ4sd/ekgtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/vQQTxuRIJSdlFDEhETiDjhM4VN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:35:ed:02:fd:72:11:91:9b:3f:37:7b:cb:90:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd0413c6e4482527651431211138838e133854de
Validity
Not Before: Jun 29 05:00:36 2026 GMT
Not After : Jun 30 05:00:36 2026 GMT
Subject: CN=eb45cae374018df76c0c28a568d9d684245bb486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:a0:df:a7:76:53:48:02:2c:06:49:39:2a:2a:
6f:29:1c:fa:aa:74:bd:d3:99:3f:11:7d:ed:ed:64:
89:2f:c2:15:e3:e1:f0:21:2a:8a:1f:ec:e6:45:0c:
0c:62:8a:1e:4f:51:f8:d1:c3:50:26:1e:26:2e:1b:
7e:a9:c6:bb:02:2c:0a:ca:ed:7b:20:ad:d3:68:65:
59:5a:2a:d2:b0:3c:78:fe:14:8e:82:47:74:a7:31:
98:80:fd:41:a8:4d:53:ac:9d:26:93:55:ad:45:16:
4f:eb:2e:bf:f3:2f:cb:a0:d4:bb:8f:9d:d6:75:10:
fc:09:56:f7:43:03:2a:36:0d:27:73:6c:2f:a2:de:
2a:79:ed:05:dc:5e:01:00:7a:8a:de:f4:1a:85:b1:
fa:9d:9a:db:86:1e:29:e7:f5:63:c5:ca:7f:34:b4:
0f:00:64:3c:2c:86:8f:bd:1a:40:3e:61:1d:8f:9d:
c1:ae:73:b7:77:eb:1d:8e:ed:b9:ba:58:67:aa:aa:
78:bc:ac:93:ca:25:cf:2d:ae:af:75:fd:58:b9:a4:
37:5c:0c:c4:09:d7:c3:79:af:98:7e:ff:0d:c1:81:
4f:2c:88:f0:22:80:32:e9:f5:cf:12:d3:a5:c9:48:
b2:8d:76:58:46:96:43:ae:db:0d:fd:b4:6a:ae:eb:
0e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:45:CA:E3:74:01:8D:F7:6C:0C:28:A5:68:D9:D6:84:24:5B:B4:86
X509v3 Authority Key Identifier:
keyid:BD:04:13:C6:E4:48:25:27:65:14:31:21:11:38:83:8E:13:38:54:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vQQTxuRIJSdlFDEhETiDjhM4VN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/91/90a34c-db2f-4096-8b36-e9b1ccf317bb/1/vQQTxuRIJSdlFDEhETiDjhM4VN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:b6:a6:b6:65:1f:bb:84:7f:fe:28:95:e4:37:b0:c4:df:6d:
86:a5:17:82:97:57:d5:d7:cd:4c:c6:14:6d:d2:79:64:98:62:
f9:1a:dd:2c:c1:e2:8a:e2:ac:1a:6a:f7:ea:a0:e1:0e:7f:33:
7d:0a:bf:67:ba:35:c9:56:c9:fd:db:1c:67:c5:b1:29:3a:e5:
22:c9:c4:c2:b6:8b:4e:e7:b6:81:ae:d6:30:d0:5f:eb:b5:f8:
f4:33:db:2a:ce:6e:bc:af:5a:f8:8a:8b:70:87:c6:1f:4b:d7:
c6:0f:26:33:27:8e:44:09:07:a7:28:4a:57:22:b0:9d:d0:fe:
32:3c:fd:49:a9:2b:ce:34:8d:38:08:25:27:d7:37:88:a6:d5:
6e:be:17:39:ed:3c:f9:af:5e:a4:03:76:fe:7f:31:ee:1e:5f:
82:3b:cb:ae:46:82:9d:c5:4f:ed:10:de:c1:c7:2e:d0:ce:21:
61:29:0d:94:78:d7:c9:41:56:96:5f:8f:56:19:4e:dc:24:4b:
24:c7:97:66:56:f3:87:c6:5b:39:51:f8:51:1a:be:39:5f:f3:
1e:ef:47:d8:41:ba:73:c6:df:5d:f2:cd:61:41:ba:e6:27:6a:
a0:46:45:65:ac:5b:04:cd:96:1d:42:9a:87:57:9a:e2:9c:bf:
ef:f2:24:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:34:26 2026 by rpki-client