Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: XUo7Pt677+IHehhGeXq5kUgnC2ww+CJPNIfNrJUwhtU=
Subject key identifier: C6:44:EA:C8:C8:DC:E7:5C:A2:EC:52:8E:25:21:29:67:39:DA:5A:72
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 019EB7A0E658B3E00C6A177B53497BAF783F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0C80
Signing time: Thu 11 Jun 2026 17:00:35 +0000
Manifest this update: Thu 11 Jun 2026 17:00:35 +0000
Manifest next update: Fri 12 Jun 2026 17:00:35 +0000
Files and hashes: 1: 5TQ-JqFgF-IFdipnnBO-T6tTIiI.roa (hash: jvG5fPveO3vEmUkVM2g5EIXNmfe8tIUO+ydnKHanIQ8=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: li/hHZVL1MF9VV/uRaAnVpclpRMjOrGu8kGXAKRZE7M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 17:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a0:e6:58:b3:e0:0c:6a:17:7b:53:49:7b:af:78:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Jun 11 17:00:35 2026 GMT
Not After : Jun 12 17:00:35 2026 GMT
Subject: CN=c644eac8c8dce75ca2ec528e2521296739da5a72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a6:73:1f:0a:0a:0a:1c:73:11:96:1f:a0:89:
4f:c1:4b:f0:1e:dd:b0:6d:59:14:ae:19:8c:68:b4:
7a:62:3e:5d:82:c9:e1:40:9c:c7:0b:11:d5:a0:d6:
1a:8a:94:69:94:91:a2:b1:c6:7a:a9:9a:2d:48:f9:
3c:20:1e:af:ef:b5:27:27:b2:38:e7:de:a3:67:68:
7e:7f:2a:11:a0:5c:9c:c7:b5:a5:fa:17:28:18:a6:
1f:48:5b:53:c7:1f:5e:95:3b:fa:43:02:10:4c:68:
d0:14:e6:2e:94:5f:8e:75:eb:e2:3d:ef:64:74:7e:
82:1d:9d:9e:2c:79:86:f0:1d:49:95:f5:c8:31:d1:
19:90:93:34:9c:56:97:40:26:d3:05:1e:4b:4b:aa:
53:42:1a:4f:f6:5d:3c:4e:5b:e6:39:ef:58:90:7d:
6e:da:34:3e:4f:1c:da:f1:4f:6d:97:5c:b8:03:3f:
03:a6:2c:3f:76:13:9c:60:c7:4b:73:32:e3:24:31:
8d:6a:61:1f:60:dd:62:7a:05:41:de:5a:b5:7b:2f:
63:f0:b4:ac:f4:6a:aa:47:f4:75:74:5f:cd:28:3c:
b2:3a:9a:dd:84:0f:bb:1a:ce:12:04:5f:00:34:59:
ad:bb:4b:63:cf:9a:bd:93:d5:d6:68:3f:9d:bc:e8:
12:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:44:EA:C8:C8:DC:E7:5C:A2:EC:52:8E:25:21:29:67:39:DA:5A:72
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:70:c9:ec:18:07:14:75:b3:28:f8:43:7e:fb:65:b1:56:c2:
a9:4f:d3:58:88:e9:cd:90:23:34:46:92:ed:dc:00:82:f0:7e:
8e:77:b0:78:8c:7b:b5:b9:36:c2:f1:a3:ef:69:e1:fb:07:90:
0f:45:d2:d1:15:be:49:28:91:c5:69:37:05:96:8c:20:a9:2f:
ca:3b:41:a0:9f:62:73:91:82:bc:2f:8a:b8:76:34:de:a1:a6:
d6:d6:9e:e8:88:e6:0f:cb:46:5f:29:06:a3:eb:66:9c:e5:95:
08:2b:db:8b:70:69:60:f9:99:92:41:bf:3d:d7:e2:c0:86:b2:
73:1f:4e:fc:ba:16:a9:d1:22:1b:b4:99:f8:2e:49:ea:3f:7e:
46:81:c4:e2:9b:dc:bb:63:d2:cd:57:73:fd:fb:8a:59:c3:11:
73:14:f3:40:1a:6c:06:ba:f3:b6:f5:08:7e:71:76:dd:3c:a9:
23:a2:a8:eb:67:ce:6e:0e:6f:96:2d:98:f5:ce:58:e7:b0:3e:
b6:6e:97:99:83:1c:e2:22:9e:fc:4c:bc:36:23:7c:7e:48:bb:
7d:12:c8:64:33:f8:a2:8b:e7:04:8a:8e:3a:78:f7:8d:d7:67:
33:23:bf:79:91:13:9b:cd:68:2f:03:54:d9:2b:cb:e0:0c:d9:
43:22:6f:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:54:26 2026 by rpki-client