Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
File: vjcHM7jbYU2qdgoALCQEgCgwDi0.mft (raw, json)
Hash identifier: bbmX+iKiPos/MjMy7f8GiJujSbkNC8oaTv96Vmw3xes=
Subject key identifier: 88:3B:9C:70:62:50:B5:59:75:75:7C:B8:B8:1C:8F:2E:F9:F7:EE:02
Authority key identifier: BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D
Certificate issuer: /CN=be370733b8db614daa760a002c24048028300e2d
Certificate serial: 019D38D2A7160A8F1ABB2F1476EC8A1794CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 09:00:22 +0000
Manifest this update: Sun 29 Mar 2026 09:00:22 +0000
Manifest next update: Mon 30 Mar 2026 09:00:22 +0000
Files and hashes: 1: D-LoIPh4w6ZRPr6EB3oORu8b_qM.roa (hash: IJEKqU/hmkuGGlwqmZo6DWM0XWvE4LTwDePizqu7MS0=)
2: vjcHM7jbYU2qdgoALCQEgCgwDi0.crl (hash: MdRYX49JdrEZVByYXWXkh99yMoNp603oQ5DFEt+tG18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:a7:16:0a:8f:1a:bb:2f:14:76:ec:8a:17:94:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be370733b8db614daa760a002c24048028300e2d
Validity
Not Before: Mar 29 09:00:22 2026 GMT
Not After : Mar 30 09:00:22 2026 GMT
Subject: CN=883b9c706250b55975757cb8b81c8f2ef9f7ee02
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:ae:0f:c6:cc:04:bc:56:44:33:e8:20:cc:1c:
1d:a7:56:23:41:e7:fd:95:e3:bf:39:f0:96:5f:ad:
15:d9:5b:2f:88:77:95:29:6b:57:0b:db:3c:c4:61:
27:c3:b9:db:94:34:20:d0:7b:80:f4:00:4a:af:6e:
81:7c:14:ba:03:24:d7:cc:06:f4:3b:98:80:36:89:
86:65:0f:00:6c:e7:3f:a8:db:31:bb:d4:8b:79:50:
b8:fc:c0:08:0b:72:44:51:dc:2b:80:bb:40:b7:52:
10:62:1a:c1:6b:2c:05:95:e5:0c:f3:d2:a6:03:2a:
3a:a2:e2:58:b9:d4:1a:e8:b5:56:66:e1:65:24:0c:
5a:70:93:12:53:44:a9:b7:ed:8e:04:23:a1:df:3a:
d3:cb:12:87:cf:92:28:1f:56:73:1d:2b:29:17:c7:
73:4a:4e:60:0b:71:67:14:1e:bc:54:19:a7:46:65:
b5:51:92:37:48:95:2b:eb:0e:ae:f3:5d:c6:04:c9:
eb:86:60:70:88:48:ec:55:17:9d:ff:bc:99:c1:4c:
67:94:ce:07:c4:c9:5e:21:8c:35:ef:68:d8:7f:b8:
84:d7:17:06:8c:80:81:8c:6d:c1:58:fc:57:30:b4:
ee:b8:8f:f5:a7:4b:fd:99:b0:b6:ec:09:95:a7:69:
3c:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:3B:9C:70:62:50:B5:59:75:75:7C:B8:B8:1C:8F:2E:F9:F7:EE:02
X509v3 Authority Key Identifier:
keyid:BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:5a:26:b7:39:86:86:c5:3a:85:34:70:6b:5e:86:6d:90:de:
05:78:3a:c7:58:9c:dc:06:63:b9:f0:e3:6f:f9:48:e2:d0:2d:
03:22:52:d6:89:ef:79:b8:fa:13:e8:4c:a6:38:21:66:de:0b:
b9:c6:8d:c7:37:de:96:c3:eb:69:82:20:3c:22:20:f0:a2:45:
7f:d6:2f:d5:98:fb:d2:d7:2c:06:d3:bd:d3:00:ba:12:52:94:
73:93:b7:0e:29:99:b0:bf:e1:bb:53:ce:2f:a4:95:92:1e:58:
9b:e8:d7:e4:03:cd:05:99:50:26:d2:58:81:64:ac:4c:20:64:
a0:d3:37:9b:9c:dd:6f:73:0a:65:e8:0e:6a:4e:8e:d4:88:f4:
c4:2a:34:71:f8:79:44:d8:d7:88:b0:e7:b4:1b:f7:a3:c2:68:
38:e3:66:ab:b7:bd:5e:5c:0a:67:ac:74:62:07:46:2d:94:20:
ae:01:4d:fc:88:02:b9:01:9b:a8:d6:8b:b2:80:58:1d:4b:d5:
24:cc:6d:e0:1e:66:16:0a:d5:1a:35:10:b4:f0:bf:49:f4:e0:
3a:5f:78:1d:3f:68:13:02:28:04:b3:f1:e7:8f:57:f3:55:d5:
b6:20:1f:43:6f:56:65:a0:20:2e:23:43:9a:7b:39:93:9b:dc:
df:f1:ff:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:54 2026 by rpki-client