Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
File: VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft (raw, json)
Hash identifier: TjHWsCHBGBqex3ApYnJdZI3Zhd2mGbxT4Dm5J5o49aU=
Subject key identifier: B9:A8:D1:37:9E:AA:54:DA:91:DC:C3:1D:E1:F1:3C:8E:A1:B3:18:D7
Authority key identifier: 54:A6:C4:6D:7D:90:FE:B4:A7:28:AF:0F:8A:E1:1B:FA:0D:4F:8C:B1
Certificate issuer: /CN=54a6c46d7d90feb4a728af0f8ae11bfa0d4f8cb1
Certificate serial: 019D36E470C40E46E051A16D9FBA18946DCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
Manifest number: 0BDD
Signing time: Sun 29 Mar 2026 00:00:33 +0000
Manifest this update: Sun 29 Mar 2026 00:00:33 +0000
Manifest next update: Mon 30 Mar 2026 00:00:33 +0000
Files and hashes: 1: GrwS7z5skQLr1kWHFgshe5BTW1o.roa (hash: y+YqbBQOH20V6aaG8Rd/FbsV1PT5JFszmedwpyqgIUM=)
2: VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl (hash: xy0ln/u2mJdKtPlgneOLOyfc+pmuOPd4fQqNnNi2Xvo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 00:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:36:e4:70:c4:0e:46:e0:51:a1:6d:9f:ba:18:94:6d:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54a6c46d7d90feb4a728af0f8ae11bfa0d4f8cb1
Validity
Not Before: Mar 29 00:00:33 2026 GMT
Not After : Mar 30 00:00:33 2026 GMT
Subject: CN=b9a8d1379eaa54da91dcc31de1f13c8ea1b318d7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:6f:e9:03:5d:3f:85:bd:0e:44:93:a7:66:ca:
4e:c6:e3:85:81:29:94:f0:6f:43:c3:a7:da:d0:c4:
0f:5e:f2:be:92:c4:f3:b1:50:5b:00:97:4c:f5:53:
27:1d:af:2f:19:88:9c:14:e7:d6:6f:77:69:d6:7f:
7b:3b:3d:2d:c7:79:bb:7c:c1:25:f3:06:48:58:f4:
82:6a:54:9e:6e:22:44:6d:64:b4:44:9b:57:2e:1d:
4a:6d:c5:07:af:eb:bf:89:3b:93:db:20:8e:36:29:
ce:e1:8e:c0:30:b5:62:52:4f:fc:1b:c3:cd:28:62:
a2:4f:67:a6:2a:95:62:d1:67:2f:fb:8f:de:64:74:
b7:8a:46:25:d8:65:19:35:d0:15:26:4e:8a:3b:84:
40:aa:eb:a1:25:76:c4:64:3c:91:84:0c:ab:c0:8f:
38:28:a3:2c:5c:9b:0e:63:77:17:98:53:13:5d:dc:
11:08:3a:4c:95:24:00:c5:bf:0c:e4:4f:88:f6:cc:
df:56:5a:0e:47:a0:82:e2:76:5a:4e:5c:50:29:92:
b4:a6:79:bf:5a:73:6b:21:c7:57:79:04:f0:ce:d0:
48:a4:8f:18:f3:52:5d:ee:4f:74:e8:ee:57:43:32:
2e:61:e4:12:71:f9:9a:d6:bd:c7:ad:5a:ef:c4:da:
2d:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:A8:D1:37:9E:AA:54:DA:91:DC:C3:1D:E1:F1:3C:8E:A1:B3:18:D7
X509v3 Authority Key Identifier:
keyid:54:A6:C4:6D:7D:90:FE:B4:A7:28:AF:0F:8A:E1:1B:FA:0D:4F:8C:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:49:44:83:92:67:6c:9e:da:e1:9f:50:a2:6b:be:79:2f:41:
17:47:75:1e:d8:e2:24:c3:f5:e4:3a:e4:5a:94:96:dd:68:a7:
28:d6:54:a6:9e:7a:49:2d:03:4a:10:47:62:05:37:0d:11:dc:
3e:3f:89:2e:12:d5:9d:e2:cc:11:41:c1:5a:10:f2:c9:c1:e6:
63:ed:38:ad:68:70:94:e8:45:27:34:ca:b8:93:62:be:34:ac:
3e:69:0e:05:79:7e:57:d6:d8:c9:d9:fb:5d:45:f4:34:a2:26:
ca:ed:f1:17:1f:96:9a:e1:d8:2b:68:bb:8a:39:7c:95:f7:35:
b9:de:51:84:79:65:47:1b:b2:94:46:e7:bf:e9:78:fb:e1:02:
2a:a4:cf:8a:9f:1c:40:af:c4:c6:ec:7a:ed:33:44:53:13:69:
c2:d6:e8:37:ac:78:78:12:bf:39:f7:8e:8c:e7:7a:88:39:5c:
e0:95:84:6d:7c:c4:b7:64:fd:98:69:d1:b1:18:a4:11:43:0d:
cc:8f:4d:76:8e:07:bc:bc:97:49:8f:c2:40:17:1e:ed:23:02:
ba:21:5f:5f:3c:c3:66:f1:b7:0f:9d:83:65:4a:9a:ee:27:0b:
d6:3f:c4:30:38:83:c4:2a:dd:dd:59:a1:72:bc:ae:1d:b5:4a:
3f:9d:7c:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:20:20 2026 by rpki-client