Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
File: VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft (raw, json)
Hash identifier: rSKaKijwLTxhr7kG3aFHwtj7xNnWf3HQxf0PAmsnvYE=
Subject key identifier: 13:3A:DF:91:F5:6B:1F:77:A4:4A:1B:24:BC:AC:1F:62:AD:14:95:D0
Authority key identifier: 55:9A:76:94:12:D2:D9:63:B4:91:EB:E3:1D:44:11:1D:CA:FC:CC:94
Certificate issuer: /CN=559a769412d2d963b491ebe31d44111dcafccc94
Certificate serial: 019D38D30A61A582D565DB315A502045CA1E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
Manifest number: 0773
Signing time: Sun 29 Mar 2026 09:00:47 +0000
Manifest this update: Sun 29 Mar 2026 09:00:47 +0000
Manifest next update: Mon 30 Mar 2026 09:00:47 +0000
Files and hashes: 1: VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl (hash: o5FXR9w8qnuDDWqYB7zjWzkl7UkYaVh53fGG/QlGJjs=)
2: tq6kMgziYFoXho7XVp0bBOLTUsY.roa (hash: O9FhMzBttczXakVkdlx4+Fgz/P4MA/RrEi2IBCBaSDo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:0a:61:a5:82:d5:65:db:31:5a:50:20:45:ca:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=559a769412d2d963b491ebe31d44111dcafccc94
Validity
Not Before: Mar 29 09:00:47 2026 GMT
Not After : Mar 30 09:00:47 2026 GMT
Subject: CN=133adf91f56b1f77a44a1b24bcac1f62ad1495d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d5:4c:fe:ab:f8:7e:53:78:e3:26:ab:39:6a:
b0:e4:7d:60:ff:b4:88:92:90:2a:4e:80:66:3d:77:
e0:66:46:cb:c3:25:30:8d:4b:dd:8d:78:a7:6e:05:
d2:c1:15:08:93:a6:1b:7a:7d:8a:06:c7:41:51:4b:
cd:96:58:64:9e:ec:41:67:20:fc:02:9c:64:26:bb:
50:5e:5f:4b:d9:55:0f:5c:12:e1:63:da:3d:77:ec:
2b:39:bf:a2:8c:56:9d:ca:69:d5:db:72:4a:d5:79:
b1:bb:67:6c:14:b2:aa:f6:d8:b9:7d:f5:16:d2:42:
30:29:8f:1f:4f:41:1b:b8:a3:ff:c5:be:13:99:93:
e4:e3:4c:e3:e4:e6:9b:35:e4:67:d1:83:d8:18:a2:
b9:4c:7e:49:93:b2:f4:d4:61:98:8a:f0:a4:45:dc:
a3:33:48:c0:f1:a1:d9:e5:2f:84:11:56:21:c4:e4:
a1:4b:b0:57:e5:31:68:5b:11:ba:67:43:b3:f5:c9:
de:e8:58:e0:74:fb:76:52:44:92:e6:9e:e2:21:89:
93:83:7f:08:36:ff:f4:26:89:dc:e4:49:2d:b9:a7:
9b:ce:cf:da:0c:86:7d:61:cb:cc:eb:45:97:6c:4f:
8f:12:18:2b:8c:a5:9a:2b:39:39:0e:e6:d1:72:6e:
cd:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:3A:DF:91:F5:6B:1F:77:A4:4A:1B:24:BC:AC:1F:62:AD:14:95:D0
X509v3 Authority Key Identifier:
keyid:55:9A:76:94:12:D2:D9:63:B4:91:EB:E3:1D:44:11:1D:CA:FC:CC:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:11:55:e2:56:9f:cf:7e:1e:6b:2e:b3:46:7e:c5:75:18:f0:
e5:3b:05:7a:7a:be:b9:de:f1:3e:e5:05:d8:8d:59:91:70:04:
fd:f0:39:70:ff:10:14:39:38:18:a1:e1:d9:38:d0:ea:30:e5:
55:50:53:97:d2:71:a8:0f:ed:f3:ed:b9:8e:0f:4c:8a:36:d5:
96:cf:b6:36:ab:29:16:c3:a1:87:c0:26:78:54:3e:0a:86:25:
f8:e8:e9:9c:93:9b:d2:70:ea:12:2e:d6:28:3a:4d:8c:a7:c5:
9a:13:03:82:bc:64:8a:b4:17:3f:eb:53:95:23:c9:b8:49:36:
8b:40:5c:68:5f:b0:23:a2:d0:ec:b6:f6:fa:20:f4:4e:64:41:
79:1f:32:a2:f6:47:24:74:df:6f:5d:9a:7b:de:cd:8a:1b:12:
bd:1c:80:42:b3:4d:61:2b:40:9b:88:df:df:81:f6:35:ae:4b:
b3:69:c4:19:88:09:b9:3e:e1:73:f5:90:5f:09:77:3f:ea:2e:
50:8d:e6:2e:13:c1:11:b2:98:e3:cb:85:30:d2:6a:b4:ff:e4:
a7:c8:37:a4:58:e1:4a:2d:e1:11:48:a6:7b:e4:3e:12:4d:44:
58:b1:ee:8d:58:7b:09:eb:3a:7a:58:dc:01:d4:c0:99:65:ee:
78:d2:eb:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:18 2026 by rpki-client