Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: qqTel2S1Td5XIb7f50+x/j7beVfJLF4iOmvK/NGVhSA=
Subject key identifier: 0C:95:9D:B0:69:B4:CF:63:75:DA:5B:FA:68:77:93:3B:FE:81:ED:60
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 019DCFE2E35BBDE99B7EB2CFE7D99540E8E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0C08
Signing time: Mon 27 Apr 2026 17:00:45 +0000
Manifest this update: Mon 27 Apr 2026 17:00:45 +0000
Manifest next update: Tue 28 Apr 2026 17:00:45 +0000
Files and hashes: 1: 5TQ-JqFgF-IFdipnnBO-T6tTIiI.roa (hash: jvG5fPveO3vEmUkVM2g5EIXNmfe8tIUO+ydnKHanIQ8=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: Ft93vlo4I7Y/D2OsL9cc9L3+yvyjhO5pnrdMwxOf97U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 14:27:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:e2:e3:5b:bd:e9:9b:7e:b2:cf:e7:d9:95:40:e8:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Apr 27 17:00:45 2026 GMT
Not After : Apr 28 17:00:45 2026 GMT
Subject: CN=0c959db069b4cf6375da5bfa6877933bfe81ed60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:f7:42:a2:60:85:56:6e:86:08:a1:e4:23:c9:
31:8f:92:33:b7:f1:13:92:ae:e0:3b:2b:1c:00:ed:
6e:9b:bd:ed:5e:d4:a5:66:ef:75:b7:4b:ba:f0:d7:
aa:36:a3:71:db:fe:a9:81:d7:18:92:59:f1:04:b9:
9a:52:0e:26:99:44:36:44:6b:05:23:32:97:0d:ce:
e6:b8:c2:e5:c3:9f:2c:5d:03:89:18:13:53:8a:a9:
ee:8d:6d:d2:87:d8:c6:02:a1:bd:06:93:63:b7:76:
77:08:51:88:f5:62:13:dc:ca:e0:7c:5c:6b:e6:33:
22:81:0a:61:39:4d:13:71:4a:7a:2e:f5:2a:9c:bb:
42:89:74:7f:36:6e:8b:bb:92:cd:de:12:6e:08:dd:
c6:fc:09:4f:e6:ad:aa:c4:d5:89:8f:eb:59:e5:6e:
8a:6d:dd:ab:2f:e5:64:a0:d1:9d:83:50:d8:06:8b:
b3:70:21:07:0c:39:a0:09:0e:13:1f:bc:c4:01:01:
1d:16:10:0c:b1:90:ec:a4:5c:4f:eb:d0:aa:c2:22:
43:37:06:ed:cd:a4:ec:72:98:a1:fb:7f:6a:75:09:
4c:fb:fb:e5:33:6a:b9:80:38:9e:9a:a7:31:ab:d6:
e2:06:84:2e:60:1a:d2:14:b1:e9:c9:b6:6c:57:46:
5d:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:95:9D:B0:69:B4:CF:63:75:DA:5B:FA:68:77:93:3B:FE:81:ED:60
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:17:6e:25:a9:ed:6c:f5:fe:cd:7a:de:ed:91:11:b6:e3:c1:
9e:f0:15:bd:fc:ba:49:0f:d0:49:29:0a:f4:df:8c:0c:31:ff:
37:e4:e2:0c:ed:cb:7d:5a:a4:c1:c6:00:ab:e9:ba:88:7a:71:
fa:80:6e:8d:7f:ca:71:50:28:34:46:8a:29:67:3e:0b:e9:45:
74:63:e3:fd:73:ca:21:aa:00:4f:b4:d7:a8:b8:41:ce:59:88:
b3:22:f2:a7:5e:67:44:d8:69:6a:f3:ec:5a:fb:86:30:e4:d7:
46:bc:34:51:17:b8:72:aa:3b:bf:7e:9b:03:87:dd:c9:4d:54:
9a:79:9a:24:59:11:ee:60:56:e9:78:ce:e2:9d:9f:21:86:cb:
d9:d8:b6:1e:3b:88:64:0a:32:ce:b1:9a:3b:7e:85:3d:18:80:
b0:2a:b5:e7:d3:74:64:bf:31:a4:c5:98:1f:87:c6:70:ee:ff:
59:27:08:62:03:ef:94:db:19:4f:78:6a:f3:04:44:58:2e:e6:
6d:bc:11:61:16:46:4e:2c:ce:5d:41:f8:c4:a7:43:1b:b1:7d:
8b:ae:79:51:a2:a2:6f:e1:b1:2c:2f:90:7d:93:34:b3:e5:87:
4c:e9:46:99:bd:57:56:e6:63:71:ec:8b:62:c4:22:99:bd:3d:
bd:68:f3:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:12:53 2026 by rpki-client