Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.mft
File: veOk-yaB2yi1w_Xx1GotNZlg-qQ.mft (raw, json)
Hash identifier: f8FKylX3C3dWa5/69TLRLHiBfxkkgNCPNN5ZlTLaPpo=
Subject key identifier: B5:9E:95:E9:9D:B8:3E:0E:8F:B1:20:8F:E2:BC:AB:B9:35:99:E1:68
Authority key identifier: BD:E3:A4:FB:26:81:DB:28:B5:C3:F5:F1:D4:6A:2D:35:99:60:FA:A4
Certificate issuer: /CN=bde3a4fb2681db28b5c3f5f1d46a2d359960faa4
Certificate serial: 019D3AC21C5036A82A764DDC146148F5CAF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/veOk-yaB2yi1w_Xx1GotNZlg-qQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.mft
Manifest number: 14E1
Signing time: Sun 29 Mar 2026 18:01:32 +0000
Manifest this update: Sun 29 Mar 2026 18:01:32 +0000
Manifest next update: Mon 30 Mar 2026 18:01:32 +0000
Files and hashes: 1: veOk-yaB2yi1w_Xx1GotNZlg-qQ.crl (hash: URFF3t1glN5RPWN3a/tDK06vF9IURaMGzOhGeXln0jo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/veOk-yaB2yi1w_Xx1GotNZlg-qQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:c2:1c:50:36:a8:2a:76:4d:dc:14:61:48:f5:ca:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bde3a4fb2681db28b5c3f5f1d46a2d359960faa4
Validity
Not Before: Mar 29 18:01:32 2026 GMT
Not After : Mar 30 18:01:32 2026 GMT
Subject: CN=b59e95e99db83e0e8fb1208fe2bcabb93599e168
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:8b:0e:70:d6:d1:19:c3:e0:3d:f7:bc:28:cb:
6e:10:aa:2d:36:87:b3:b3:a2:b6:69:7a:67:60:f3:
d8:d7:82:51:29:93:c0:34:82:29:00:0b:d3:e1:17:
7f:20:c0:76:1b:1e:24:08:ef:9b:c5:84:3b:df:f8:
da:f5:b6:0c:98:96:b0:5d:63:ab:b7:52:a0:d2:7f:
d9:b0:dd:04:24:e5:44:33:54:cc:cd:07:36:e8:46:
62:55:b4:5f:1d:ee:4d:f5:03:97:b2:4d:03:b9:cf:
52:95:aa:03:a1:ea:ce:5d:ea:3e:5c:c7:07:40:b5:
6a:e8:e1:ac:8c:a4:4b:ee:52:31:c6:d1:a9:4b:b5:
4b:10:e4:7a:8e:ad:a3:e9:e4:a0:fd:43:1e:4d:82:
43:38:2d:ca:04:4a:aa:a9:4e:9e:d5:2f:a4:c5:aa:
13:c7:0d:3d:ba:f8:5f:03:f8:02:e6:bf:a4:4d:a4:
6a:45:d5:79:8f:1e:12:2b:e2:52:7c:c9:9b:b6:92:
a3:96:4e:5e:10:1d:0f:15:f7:7f:99:77:5f:41:81:
a9:47:82:ea:8f:33:55:65:b1:bf:83:1b:ee:2d:5f:
1f:41:15:4f:69:4d:0a:58:16:65:d4:af:f3:ac:ce:
33:34:28:78:e7:22:40:45:01:ca:10:e1:fd:47:2e:
35:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:9E:95:E9:9D:B8:3E:0E:8F:B1:20:8F:E2:BC:AB:B9:35:99:E1:68
X509v3 Authority Key Identifier:
keyid:BD:E3:A4:FB:26:81:DB:28:B5:C3:F5:F1:D4:6A:2D:35:99:60:FA:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/veOk-yaB2yi1w_Xx1GotNZlg-qQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/21de67-4975-47a8-846c-808feaaf987d/1/veOk-yaB2yi1w_Xx1GotNZlg-qQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:3d:5a:c7:61:0a:37:55:80:e4:2b:20:b3:8b:d7:8b:87:0d:
78:34:a1:1a:3e:51:56:d4:f1:30:65:76:b8:96:2f:8e:2e:f6:
ae:7e:2a:35:be:ab:4f:41:31:70:81:03:ba:0f:87:61:66:ac:
11:c2:71:a4:67:42:e5:e0:87:76:cb:2f:f5:ef:dd:25:16:02:
a4:83:df:10:d9:01:57:fb:f3:bb:41:98:b9:78:62:af:c8:20:
04:17:0a:4b:b9:d3:c4:14:b3:bd:28:f3:5a:30:2c:31:fb:39:
92:fc:8d:be:76:41:15:c3:6b:ce:69:16:bf:8b:d1:b4:f3:3f:
ed:eb:77:83:e1:9e:b1:12:7e:80:fe:a7:ef:34:79:4a:60:d2:
e1:93:07:8e:1b:8c:fb:17:01:0f:9b:35:a6:d0:0c:2a:66:da:
6c:b1:3f:2a:7a:1d:46:cd:cd:12:73:1e:ca:83:9f:1b:7d:c5:
97:73:5a:2a:ac:c9:d3:d1:06:cc:d1:6e:fb:a8:0a:dc:9e:fd:
93:49:fa:36:c5:11:98:a6:e7:3f:4f:71:7c:46:6e:e2:52:8f:
e9:16:eb:f1:11:d4:93:2c:e7:83:1c:19:39:6b:f7:1d:9b:2a:
4d:d0:c2:18:46:db:8c:0d:d3:75:8f:9d:e1:e0:2b:65:9c:87:
21:99:16:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:01:59 2026 by rpki-client