Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
File: vqe2d3e5poMpM1dkl7RqmxYwTNk.mft (raw, json)
Hash identifier: iwPOZsTtVLyU03fLpHdvftoXCEmkhzAJ9MDXsF0c5Z4=
Subject key identifier: BE:91:D1:E6:17:38:BB:C8:D1:6E:F8:F5:BB:41:1B:7C:4E:F5:0A:06
Authority key identifier: BE:A7:B6:77:77:B9:A6:83:29:33:57:64:97:B4:6A:9B:16:30:4C:D9
Certificate issuer: /CN=bea7b67777b9a6832933576497b46a9b16304cd9
Certificate serial: 019D3940E3C9805DA68117479E27B80D978E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
Manifest number: 16D1
Signing time: Sun 29 Mar 2026 11:00:46 +0000
Manifest this update: Sun 29 Mar 2026 11:00:46 +0000
Manifest next update: Mon 30 Mar 2026 11:00:46 +0000
Files and hashes: 1: srq9Ha0TjuLwEjYRk51fxTPdbjI.roa (hash: a6vYm4uCbtYNDd3vfHwRhBRwXJqAYeklTcm+jwdPPv4=)
2: vqe2d3e5poMpM1dkl7RqmxYwTNk.crl (hash: otwaVI5j4vuHjydVnD+6vUKtu3cPNJAjqoY5s66MQmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:e3:c9:80:5d:a6:81:17:47:9e:27:b8:0d:97:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bea7b67777b9a6832933576497b46a9b16304cd9
Validity
Not Before: Mar 29 11:00:46 2026 GMT
Not After : Mar 30 11:00:46 2026 GMT
Subject: CN=be91d1e61738bbc8d16ef8f5bb411b7c4ef50a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:73:f3:68:c9:77:a4:37:a1:ba:1e:cb:b8:57:
1e:17:1d:f0:79:48:c7:c7:cf:90:0e:80:ab:d1:74:
06:a6:04:99:f2:30:af:0b:50:f1:df:b5:51:1c:78:
c7:7e:1b:c3:5b:88:94:c3:76:eb:2f:2f:29:bf:13:
98:b9:af:39:48:35:38:2b:9c:22:27:78:46:b1:85:
2d:d2:47:52:82:3e:c8:94:ee:6d:c8:45:31:d1:dd:
29:05:84:39:95:a5:79:a8:46:31:2b:fb:ba:e0:10:
65:f4:e3:ae:c4:f2:b4:8c:7b:35:85:89:82:11:f9:
6f:b2:42:47:f5:42:30:f4:88:36:38:ef:aa:b5:dc:
69:ba:f4:8e:c9:b5:c6:f5:c2:18:00:4c:88:85:9c:
e1:83:c6:2c:08:c3:05:fd:b6:87:e3:48:d4:0c:c0:
b2:b8:ff:12:83:85:29:09:9a:68:aa:a0:c6:6a:91:
75:81:dc:59:fa:66:4c:36:f7:f4:7c:c4:70:89:e2:
68:c3:85:b7:fe:65:30:f4:bc:68:3c:23:10:16:02:
0b:1d:28:38:be:ab:9b:86:c1:9b:5d:c8:27:f0:f1:
66:7e:0d:95:c5:4e:55:d4:30:4a:de:cc:0f:6d:f0:
d5:35:80:45:18:30:d2:f0:e8:65:0f:fd:90:7f:79:
fa:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:91:D1:E6:17:38:BB:C8:D1:6E:F8:F5:BB:41:1B:7C:4E:F5:0A:06
X509v3 Authority Key Identifier:
keyid:BE:A7:B6:77:77:B9:A6:83:29:33:57:64:97:B4:6A:9B:16:30:4C:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:52:f5:c4:8e:d2:59:6f:1b:13:03:a9:d9:9b:b1:1f:a6:6c:
58:a7:d4:30:e8:15:ca:5a:72:75:03:4f:8d:1d:0c:39:77:06:
4b:d8:2d:50:34:aa:fc:f0:d8:9f:29:00:6f:5f:ae:91:5d:a7:
4c:9d:d7:c5:6f:f0:f7:36:82:11:9c:bc:f7:8c:d1:61:c5:21:
4c:1c:32:60:2c:50:94:4f:dd:4a:03:5f:b6:57:0b:f0:25:6e:
dd:61:7c:42:74:16:a2:db:9d:87:2d:b9:95:cc:2d:9c:e8:14:
9e:62:3f:48:45:91:7c:9a:5d:66:64:84:bd:fd:4a:3f:c2:3d:
fa:41:a4:40:6c:d1:8f:70:9d:97:96:e7:72:59:c0:81:d3:ec:
89:bd:dd:46:59:88:55:a1:5d:d7:21:9b:3d:99:47:55:e8:04:
25:2a:1c:50:70:83:52:14:40:ed:e7:2d:de:c9:14:58:35:ee:
8d:98:44:fc:ef:1b:13:0a:0c:d4:b1:87:9d:71:ea:45:42:90:
da:68:ee:fb:12:29:c6:24:c8:4d:eb:83:be:6c:87:a0:f9:4b:
e4:74:cd:c5:13:3e:f1:be:ca:b6:77:2d:a7:f1:3e:7b:41:58:
cc:35:6f:5d:fb:18:52:a9:35:1b:5b:da:39:2a:73:81:da:b4:
98:eb:6c:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:21 2026 by rpki-client