Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
File: VytO2SaC1xio_ESIFAAnQGlgeV8.mft (raw, json)
Hash identifier: l0lcRRBRsEaC/eqjpyJW/SFsYcRmOf0WpqtkHnb093w=
Subject key identifier: 4B:A1:31:A3:49:67:4D:D7:00:1B:56:0F:33:B5:03:C7:C1:18:6B:5D
Authority key identifier: 57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
Certificate issuer: /CN=572b4ed92682d718a8fc4488140027406960795f
Certificate serial: 019E3297F0484D05D25454DB184BCE138BC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
Manifest number: 0F6E
Signing time: Sat 16 May 2026 21:01:18 +0000
Manifest this update: Sat 16 May 2026 21:01:18 +0000
Manifest next update: Sun 17 May 2026 21:01:18 +0000
Files and hashes: 1: VytO2SaC1xio_ESIFAAnQGlgeV8.crl (hash: 4OgBJj7mt/e12FVLQXGs4OmUvAYf7Gvvit3lLEN1Q7k=)
2: ZDnCXrs2VTXwnUeyEGxx3aj0GCo.roa (hash: lCX2OIWetakZH0BDXor6ZmMOPfPeK+kN4Jw1mCD9ZF0=)
3: zMQYa_z0ETouvgoP-hRFa3Ez7Ms.roa (hash: eLkLQOUvRvhD6ZfGFzHN4nd/jJr/zq6oP4KeFHqbKSs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:97:f0:48:4d:05:d2:54:54:db:18:4b:ce:13:8b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572b4ed92682d718a8fc4488140027406960795f
Validity
Not Before: May 16 21:01:18 2026 GMT
Not After : May 17 21:01:18 2026 GMT
Subject: CN=4ba131a349674dd7001b560f33b503c7c1186b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:09:20:8b:81:0b:1d:e5:0f:c3:3c:b4:64:22:
f5:1b:c9:00:db:87:4c:8f:02:3a:c1:ed:d8:43:ce:
92:be:52:c1:25:45:7b:99:d3:97:f9:03:89:a0:e9:
bd:3f:01:43:11:15:5b:3d:9a:d7:11:e0:c5:3d:15:
f5:69:8c:97:55:20:28:73:24:b3:94:63:21:24:83:
f9:1d:56:55:bc:0a:bb:77:a9:8f:53:d4:1b:20:5b:
01:8a:03:8c:41:cd:aa:dc:f6:9c:40:24:82:37:de:
42:cd:eb:48:26:cc:33:dc:35:10:f9:4a:75:40:79:
4b:0e:5d:9b:b8:3f:da:94:c6:96:a5:86:c6:bd:ae:
b5:a7:de:7e:18:2a:be:52:9b:d6:a6:ec:f2:a1:4a:
b6:bc:df:db:de:6f:66:bb:6f:a6:70:8d:9a:bd:a7:
b3:ac:ad:b2:fe:f4:a2:51:14:fb:1d:03:a2:2d:d6:
c5:2c:84:48:eb:bf:c1:e3:2a:52:18:70:6c:37:41:
b1:08:a3:94:cc:c3:4f:c1:ea:5a:a4:9f:bb:79:be:
01:bc:28:20:28:97:d6:de:26:e9:29:fa:a6:11:46:
ca:39:05:e7:c3:14:da:f7:84:c8:69:3b:4d:c8:7c:
3c:63:86:6d:7e:29:10:e8:87:2d:95:16:95:3b:d5:
29:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A1:31:A3:49:67:4D:D7:00:1B:56:0F:33:B5:03:C7:C1:18:6B:5D
X509v3 Authority Key Identifier:
keyid:57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:d6:61:4e:ee:d4:22:85:31:f6:ac:3e:7c:06:33:bf:e0:17:
66:fb:9d:e7:ad:e3:81:21:63:32:7e:e2:ca:7f:8e:ad:8e:ef:
c9:c7:05:c1:8e:55:cb:52:d2:1e:71:2a:51:f8:07:b3:4e:85:
84:a1:a4:cd:00:cb:9b:72:ec:06:c4:18:2e:ec:75:21:cc:5d:
47:ca:b5:e7:03:0d:44:d1:7a:8a:8b:b6:97:f9:a8:1b:28:a0:
d7:38:26:28:6d:dc:f6:e3:79:53:02:6a:65:81:a6:59:15:2e:
f7:ee:d2:03:7b:5a:39:28:d7:aa:6c:1e:7a:7e:2f:37:9f:8f:
02:06:ec:5b:0f:d9:f2:0f:0b:81:53:3b:23:a2:08:d3:49:9d:
6a:9b:90:90:1f:b0:d8:38:48:9f:ad:3c:f3:12:c6:c3:89:70:
f4:e3:46:3b:80:23:4c:d1:fc:8c:23:53:82:7c:bb:f9:e1:0b:
a8:38:73:70:aa:14:c7:bc:22:85:75:26:9b:c4:80:5f:9b:cd:
89:ba:81:d2:86:55:b4:17:30:cb:42:92:e5:ef:07:25:a9:a5:
2a:db:1f:92:57:5d:bd:8a:77:64:14:56:41:3b:77:1a:4a:cb:
6e:a1:ca:05:05:fd:d6:f2:28:fa:89:41:25:b6:b9:20:44:2b:
ad:a5:84:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 23:27:43 2026 by rpki-client