Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
File: VytO2SaC1xio_ESIFAAnQGlgeV8.mft (raw, json)
Hash identifier: I2UYmjFPvUSryg+ekUnoXWIs3hDpiOWKEa1sT2QJ/t4=
Subject key identifier: A4:C1:EB:17:AA:9A:C2:4E:3E:EF:03:43:32:0C:AC:E3:DD:4B:85:47
Authority key identifier: 57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
Certificate issuer: /CN=572b4ed92682d718a8fc4488140027406960795f
Certificate serial: 019D3977C260BEAAC28F2A0FF1F287E60F9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
Manifest number: 0EED
Signing time: Sun 29 Mar 2026 12:00:42 +0000
Manifest this update: Sun 29 Mar 2026 12:00:42 +0000
Manifest next update: Mon 30 Mar 2026 12:00:42 +0000
Files and hashes: 1: VytO2SaC1xio_ESIFAAnQGlgeV8.crl (hash: 3hRm6xE8NoAbsNq+BLSQ7l8D7JnO7ih69ZcKoBLSc/A=)
2: ZDnCXrs2VTXwnUeyEGxx3aj0GCo.roa (hash: lCX2OIWetakZH0BDXor6ZmMOPfPeK+kN4Jw1mCD9ZF0=)
3: zMQYa_z0ETouvgoP-hRFa3Ez7Ms.roa (hash: eLkLQOUvRvhD6ZfGFzHN4nd/jJr/zq6oP4KeFHqbKSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 12:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:c2:60:be:aa:c2:8f:2a:0f:f1:f2:87:e6:0f:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572b4ed92682d718a8fc4488140027406960795f
Validity
Not Before: Mar 29 12:00:42 2026 GMT
Not After : Mar 30 12:00:42 2026 GMT
Subject: CN=a4c1eb17aa9ac24e3eef0343320cace3dd4b8547
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:01:39:c1:38:8c:e8:27:e8:c7:67:73:bc:3d:
89:37:8d:2b:6b:9d:2f:f8:e7:7d:ae:99:1b:5a:c0:
22:d7:09:e1:f3:58:a5:ca:62:06:ad:b3:8b:73:c7:
ec:1f:40:e0:1a:8d:d1:3f:d4:6d:fa:f7:83:5e:bb:
8a:43:6b:4c:32:62:60:a4:1b:82:40:1f:5e:1a:3c:
38:12:03:67:4d:98:79:f8:4d:25:6d:23:e4:48:44:
5e:30:a8:23:b2:04:21:b5:12:e7:ce:47:6f:3e:54:
32:dd:70:53:e8:6e:b8:70:6f:a5:6f:b6:d7:31:94:
f6:66:0a:d7:10:67:05:b7:49:83:eb:19:41:6f:81:
fc:5f:bc:30:02:4f:be:a0:c6:df:7f:40:82:6a:d4:
53:98:1c:d9:d0:f0:ad:50:69:6a:c3:7c:50:35:cd:
08:a4:7f:75:a7:66:1d:4f:83:d9:07:ba:cf:83:9a:
7d:fb:16:99:12:a3:09:88:26:9b:b8:df:5c:0a:a7:
f4:c8:6b:f0:a0:61:84:4f:50:25:1f:44:27:5b:c4:
a4:e7:3e:a2:c5:ea:42:5b:be:e3:ae:d8:11:2f:f5:
dc:78:82:ac:4b:dc:d5:5d:d3:a8:e1:2a:bf:43:97:
f8:5c:f7:c4:1a:42:7c:ab:22:87:3a:e6:ad:98:52:
09:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:C1:EB:17:AA:9A:C2:4E:3E:EF:03:43:32:0C:AC:E3:DD:4B:85:47
X509v3 Authority Key Identifier:
keyid:57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:9f:f8:74:db:78:17:de:5d:d0:eb:1a:94:95:75:75:26:77:
8e:c9:fa:ee:ea:c5:c9:bd:be:a0:a3:94:da:97:f8:a6:4f:63:
36:d4:f6:41:0b:d7:ad:cd:96:11:10:07:19:5c:87:65:37:47:
f9:c2:ca:fb:e0:36:ae:79:7d:8c:c7:8e:fd:00:57:99:23:98:
16:be:a4:b7:07:fd:8b:d3:c5:06:af:16:9d:46:01:0f:e5:eb:
65:84:bb:d2:f6:06:7a:fc:6d:e9:43:f1:48:88:a7:24:73:28:
49:c2:02:0b:b7:f4:1e:74:50:ac:53:9d:95:17:22:7c:4d:44:
9d:92:e1:37:5c:61:89:6b:e9:21:d7:95:2c:f9:d4:fa:37:2e:
6c:61:55:23:cd:d0:c7:44:a0:2f:2f:4c:97:07:e2:ca:d4:ad:
f3:f4:7b:4c:fa:8c:88:d9:a7:9c:34:07:2d:84:b6:63:c5:31:
2b:4d:9f:03:bb:41:f4:1c:5e:8e:30:8f:58:42:5f:4c:6e:e9:
d0:94:08:43:7d:0c:f0:aa:9b:0b:e3:f6:fe:e7:6d:78:e5:83:
f8:92:41:f6:e7:e7:0f:4b:cd:96:1d:4e:5f:c8:e2:0f:b5:40:
ea:ed:80:a5:8e:b0:78:e4:19:56:12:c0:08:02:08:07:8d:0e:
d3:fb:0f:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:12:28 2026 by rpki-client