Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
File: vkjMNUiL2ebzErIPx2oQJy8M3to.mft (raw, json)
Hash identifier: XyOtdRw7UxyXLZEDWLKYEZ8fh+qJ3Sof7s3t+GEoP3o=
Subject key identifier: B1:89:BB:AC:8E:68:1D:D1:0D:68:71:B3:24:69:E1:76:4E:9D:D2:93
Authority key identifier: BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
Certificate issuer: /CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Certificate serial: 019D3865F900B0FC71DB92460D71BF37A103
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 07:01:40 +0000
Manifest this update: Sun 29 Mar 2026 07:01:40 +0000
Manifest next update: Mon 30 Mar 2026 07:01:40 +0000
Files and hashes: 1: 1-jVMWvCo1Ia8-NPvjqSraY5h6j8.roa (hash: UbgB51BsUdBtKMnN7GLkK8Ly1Wmd/yhJ431EUB3j0ds=)
2: vkjMNUiL2ebzErIPx2oQJy8M3to.crl (hash: +efUGZpVou7NoFLJXbiXa8UezoEwYbZoifeKcZIqIXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:f9:00:b0:fc:71:db:92:46:0d:71:bf:37:a1:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Validity
Not Before: Mar 29 07:01:40 2026 GMT
Not After : Mar 30 07:01:40 2026 GMT
Subject: CN=b189bbac8e681dd10d6871b32469e1764e9dd293
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:b5:d9:10:0d:7b:a1:f5:bf:6f:f9:7f:66:5d:
4d:f8:09:d7:4d:a0:7f:c1:02:5c:08:b5:13:13:45:
4c:42:b3:be:9e:f0:3b:c6:a6:9b:89:fa:5c:01:14:
f8:17:ab:a6:50:03:1e:82:6a:fc:c7:81:c1:b2:bd:
a3:ff:08:1c:ad:ea:15:01:b6:4f:b9:e7:b6:e2:c3:
ab:5a:16:f7:f7:77:b7:c9:e9:73:d0:f0:da:84:ed:
88:d6:0e:68:4b:eb:81:f9:2f:91:c8:85:81:5b:36:
2d:a5:c0:ef:cc:bb:c0:b7:09:ab:fb:d5:0e:44:33:
5e:be:98:33:93:f9:49:8b:16:05:df:16:55:72:9d:
9b:a8:7d:f7:9d:ed:d5:5b:0d:9f:3a:ed:f5:35:e9:
2b:58:de:1a:4b:4e:57:f5:2f:54:70:c6:a2:97:fb:
1a:00:76:13:40:91:f4:80:46:97:79:4b:f3:14:67:
30:02:aa:2e:1e:7b:88:3c:fc:ca:9b:ee:46:7d:4a:
e2:a1:c9:6c:e1:75:48:7c:29:00:d6:c4:2a:fd:7a:
76:91:e4:4a:92:4c:6e:8c:a9:9c:01:f0:55:f7:6c:
0b:7b:46:69:af:23:bb:95:04:ba:48:d2:27:ee:55:
02:a5:de:67:bb:52:b6:49:1a:9e:5e:ab:78:96:63:
3c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B1:89:BB:AC:8E:68:1D:D1:0D:68:71:B3:24:69:E1:76:4E:9D:D2:93
X509v3 Authority Key Identifier:
keyid:BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:c2:eb:97:36:d4:51:12:45:6a:d6:a8:97:0d:73:1d:57:4d:
ff:04:ac:95:79:75:e6:12:c1:b4:20:b0:dd:46:83:81:32:80:
3a:32:46:0e:c2:d5:83:57:76:07:64:0b:f9:25:99:f3:68:4f:
fe:f1:6f:e3:09:55:41:9a:1e:c1:41:eb:31:4c:71:dc:9d:2e:
7d:bc:fc:46:07:85:c7:bf:e5:4b:4d:2f:59:8c:c3:fd:75:4b:
fb:17:a3:97:30:54:73:12:f1:62:82:aa:5c:40:6a:18:bd:62:
cb:cd:8a:fe:26:a1:49:1b:7a:0c:a7:cf:9b:3a:b0:10:85:1a:
f5:ae:2b:28:31:aa:e5:f1:57:8e:a5:b4:a4:c1:85:db:1e:6d:
ba:75:fd:e5:90:11:00:fa:5f:de:d4:8e:1a:81:10:5c:d7:b2:
51:76:c8:38:19:6f:5e:07:dc:6e:30:a6:18:cb:b2:c5:2e:ea:
eb:8f:6a:53:6c:af:95:5a:a7:9c:b5:53:0e:03:20:1c:f4:98:
94:7d:ca:d3:8e:7e:c0:b7:5f:b2:86:96:13:55:6e:d3:24:75:
89:f8:4b:1f:5f:56:f5:4c:2a:ec:5f:d8:a9:50:18:7c:fb:49:
ea:5e:72:14:0e:3e:61:e8:1d:e2:b2:93:f9:d6:af:72:9d:5e:
38:be:74:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:47:54 2026 by rpki-client