Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.mft
File: VmHcWpFRx4ITkPT3C-dorNd7taI.mft (raw, json)
Hash identifier: hHF20j79l8Y+yEv9zWPw8lxzkgQZURN02FIJ7GxZxY8=
Subject key identifier: AE:B9:70:63:44:87:4A:6A:93:FD:D3:51:18:94:E3:48:54:8D:20:86
Authority key identifier: 56:61:DC:5A:91:51:C7:82:13:90:F4:F7:0B:E7:68:AC:D7:7B:B5:A2
Certificate issuer: /CN=5661dc5a9151c7821390f4f70be768acd77bb5a2
Certificate serial: 019D37F73249E5BA97B563FF97B248F20BC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmHcWpFRx4ITkPT3C-dorNd7taI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.mft
Manifest number: BA
Signing time: Sun 29 Mar 2026 05:00:40 +0000
Manifest this update: Sun 29 Mar 2026 05:00:40 +0000
Manifest next update: Mon 30 Mar 2026 05:00:40 +0000
Files and hashes: 1: MF6MLfWJPwV-yPLIF_0nZ7bOwsM.roa (hash: 6dApg/Qg1KQtk7rezLH61i3WO99VCx8PzPPW1oB5WB8=)
2: VmHcWpFRx4ITkPT3C-dorNd7taI.crl (hash: 2BLAiuLsNtDo4CzvHtgPvUzfXzDCKC8LsbARhSNd8IY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.mft
rsync://rpki.ripe.net/repository/DEFAULT/VmHcWpFRx4ITkPT3C-dorNd7taI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:32:49:e5:ba:97:b5:63:ff:97:b2:48:f2:0b:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5661dc5a9151c7821390f4f70be768acd77bb5a2
Validity
Not Before: Mar 29 05:00:40 2026 GMT
Not After : Mar 30 05:00:40 2026 GMT
Subject: CN=aeb9706344874a6a93fdd3511894e348548d2086
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5f:48:69:e4:7f:6f:a8:be:95:84:9c:41:76:
90:0d:14:24:45:df:eb:67:06:e5:46:e1:3b:8d:60:
8d:5a:ed:ba:4b:7f:df:94:e3:3f:17:1f:82:e3:0c:
7c:2a:a1:b8:c8:59:9d:9f:9b:6a:a2:14:9b:e0:6f:
8b:10:54:25:78:71:e4:ef:e5:e5:55:94:7e:78:c0:
74:a8:04:df:c8:0e:d8:13:96:57:6c:13:07:11:d5:
6f:7d:f5:84:0f:bb:1c:37:02:9a:85:32:46:2d:82:
53:3c:b7:8f:22:20:7f:2e:b7:95:73:8f:03:2a:de:
7e:98:5b:34:0d:dd:d4:8d:8a:b7:67:0e:e4:8b:42:
3e:25:4e:0b:76:89:02:3b:31:19:1e:79:a1:76:c4:
8c:0c:ec:54:e7:65:65:10:01:83:b8:e1:d0:8a:b4:
f3:1f:bc:45:66:bf:23:d0:25:ef:51:d2:66:59:2e:
b6:2a:73:dd:ab:73:f9:43:19:44:34:c8:ce:93:28:
d5:77:e2:28:de:43:a7:84:77:08:35:95:af:af:d4:
3a:f8:77:19:da:4b:69:7f:8f:a6:89:77:c9:7f:e6:
7a:15:12:df:38:c8:4d:e0:62:ed:ef:57:59:91:6b:
70:8f:53:c4:c9:d9:c4:ab:e9:0b:a3:a9:f5:76:05:
d8:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:B9:70:63:44:87:4A:6A:93:FD:D3:51:18:94:E3:48:54:8D:20:86
X509v3 Authority Key Identifier:
keyid:56:61:DC:5A:91:51:C7:82:13:90:F4:F7:0B:E7:68:AC:D7:7B:B5:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmHcWpFRx4ITkPT3C-dorNd7taI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:f9:08:2d:d2:7c:bf:6e:58:05:d0:41:58:d7:54:2e:1b:fa:
cc:c7:6c:3a:fd:ed:71:d9:16:eb:85:c7:b8:12:67:82:76:66:
c2:b1:10:40:fc:9a:d2:85:7f:c1:b3:27:77:c0:e7:80:69:b3:
76:75:87:2f:99:18:1b:11:80:e8:9c:27:8e:86:4c:8f:3f:30:
79:81:17:17:87:a1:e7:4b:fe:a8:6a:3d:e7:db:59:92:a9:da:
b5:88:75:3c:8f:9d:65:14:18:3e:66:db:54:41:b0:a9:d3:f7:
a2:16:f8:aa:8a:53:39:e5:a2:76:43:a5:86:c1:2d:4f:6c:7d:
d4:f2:a9:a2:6f:05:99:6d:2e:46:ca:1d:2a:84:fa:61:7c:92:
8d:81:1e:98:b6:8d:5c:80:b7:0e:15:d7:b8:98:ae:27:55:41:
1e:f6:52:b8:c8:17:5c:4e:1b:67:e5:cd:2e:12:9e:80:fb:98:
89:37:87:0d:af:b8:fc:a6:18:74:83:ed:81:97:f1:08:10:56:
52:6f:a0:4a:69:d9:07:d2:97:9b:fe:15:94:24:03:09:a6:0c:
76:0a:95:1f:cb:3a:52:85:c3:91:f1:4b:aa:50:7c:27:fd:b5:
41:0a:cc:91:76:74:00:6c:c0:55:ca:77:20:e4:98:5f:ae:1d:
29:01:31:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:03:41 2026 by rpki-client