Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
File: VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft (raw, json)
Hash identifier: DM0uXO1+zl5IFC+PC0WnMgpAXGCXFXYSqIS5zRWdGjk=
Subject key identifier: 20:2B:C0:23:F1:38:D2:BC:A6:58:EF:C4:80:D0:34:46:D9:E8:93:18
Authority key identifier: 54:A6:C4:6D:7D:90:FE:B4:A7:28:AF:0F:8A:E1:1B:FA:0D:4F:8C:B1
Certificate issuer: /CN=54a6c46d7d90feb4a728af0f8ae11bfa0d4f8cb1
Certificate serial: 019EB732D3EE675333014AA063D9B7B1F873
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
Manifest number: 0CA4
Signing time: Thu 11 Jun 2026 15:00:21 +0000
Manifest this update: Thu 11 Jun 2026 15:00:21 +0000
Manifest next update: Fri 12 Jun 2026 15:00:21 +0000
Files and hashes: 1: GrwS7z5skQLr1kWHFgshe5BTW1o.roa (hash: y+YqbBQOH20V6aaG8Rd/FbsV1PT5JFszmedwpyqgIUM=)
2: VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl (hash: CfCQdJrNqrbJiGx1q0JTqh2qnRn9zXp8hs8dSdPIs6M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 15:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:32:d3:ee:67:53:33:01:4a:a0:63:d9:b7:b1:f8:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54a6c46d7d90feb4a728af0f8ae11bfa0d4f8cb1
Validity
Not Before: Jun 11 15:00:21 2026 GMT
Not After : Jun 12 15:00:21 2026 GMT
Subject: CN=202bc023f138d2bca658efc480d03446d9e89318
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:59:63:01:7e:c5:e9:e1:b3:c0:29:1e:d4:9a:
8b:f0:57:04:76:5c:4a:d6:85:d9:d1:b0:02:32:02:
8d:31:ba:48:dd:b3:96:cd:c7:6b:4d:76:ee:7c:24:
14:81:ec:8a:b4:bb:c8:b5:48:0b:64:09:8c:42:30:
8e:60:8f:79:d0:74:cf:0b:91:f5:fc:c4:fc:0b:c3:
0d:68:2e:60:25:78:a7:08:18:00:1a:dc:27:0c:9e:
1e:27:c9:9d:3b:76:dd:78:58:f8:43:5b:0b:06:7e:
84:ec:96:a6:ca:4b:74:07:ac:6e:4e:c2:a2:53:13:
3b:6c:e2:08:b7:5f:b5:89:77:e5:f3:33:0a:21:e1:
6e:8c:e6:26:72:de:fe:29:57:4e:df:0a:60:f4:ff:
85:0d:95:d5:ae:e8:ea:4d:aa:ed:1b:35:17:86:c9:
44:16:e4:bc:19:8d:3a:d1:af:82:b1:40:c1:4c:69:
2e:9e:bf:36:7f:32:51:ac:53:a7:30:5b:09:c5:ef:
02:d7:29:ab:cc:0c:fe:01:07:6d:8b:2d:04:e1:df:
e6:70:38:5e:8c:95:c6:b5:ac:71:3a:c1:a6:32:39:
f7:0c:69:db:65:7f:55:8f:e6:c7:56:b3:07:80:59:
77:e1:03:13:a5:b9:4c:bc:5c:ee:d2:8e:fc:09:3d:
0b:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:2B:C0:23:F1:38:D2:BC:A6:58:EF:C4:80:D0:34:46:D9:E8:93:18
X509v3 Authority Key Identifier:
keyid:54:A6:C4:6D:7D:90:FE:B4:A7:28:AF:0F:8A:E1:1B:FA:0D:4F:8C:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:cd:2a:a5:a8:be:29:16:6d:7f:a0:4b:21:7f:44:61:a3:3d:
4d:0a:7c:63:31:cb:97:fd:78:16:b5:13:f0:40:87:28:44:cd:
14:5d:c3:c1:7a:44:14:dd:62:da:2f:58:85:ec:d2:c3:b0:80:
d8:22:c7:ce:33:5e:48:da:52:6b:ee:c5:77:a0:0b:54:44:9a:
7c:98:bc:d4:e4:b2:b8:62:b5:0e:70:e3:84:c8:47:7f:70:8e:
e4:85:7a:9a:4c:32:89:9b:cc:ad:69:57:74:83:59:dd:17:c0:
1d:38:d5:f9:7b:4f:11:f4:96:a3:c5:cb:d4:71:d6:4c:20:71:
15:5f:05:81:bf:54:8b:06:65:ba:8e:a0:2a:32:e4:af:5f:e5:
42:fa:af:88:88:72:b0:5f:fa:b0:12:4e:c6:c5:df:19:71:03:
4f:f6:21:5a:36:32:0b:37:9c:f8:bb:83:5f:20:e2:df:76:00:
80:10:ed:d2:f4:f0:28:4b:91:42:a4:0f:17:25:9c:f7:5c:b4:
6b:55:18:b6:fc:f1:e8:34:83:a1:66:0d:d0:1a:7e:6c:04:11:
a4:ce:a5:de:a7:2c:1a:45:4d:85:23:23:51:da:e0:4b:c1:54:
c0:29:a9:78:6e:b2:38:a0:d9:72:97:7f:40:6b:b4:07:cd:85:
3c:82:61:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:46:51 2026 by rpki-client