Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
File: vzrHIKEXt01NE8Jj95R3kp7btLw.mft (raw, json)
Hash identifier: jypJRn7rYKaKspdiNMsORv8DTH0/X3HdE4W+8sGQNVI=
Subject key identifier: DF:BA:2B:90:54:89:F2:61:00:4A:48:88:AC:E5:9A:D6:0E:3C:2F:1D
Authority key identifier: BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
Certificate issuer: /CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Certificate serial: 019D9B19BEEF040B6D218DDA0FEDBE98ACEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
Manifest number: 06AC
Signing time: Fri 17 Apr 2026 11:00:48 +0000
Manifest this update: Fri 17 Apr 2026 11:00:48 +0000
Manifest next update: Sat 18 Apr 2026 11:00:48 +0000
Files and hashes: 1: jshUcB9xo_4UjMSMpv_Atyyty9w.roa (hash: An++hrgldtP3cS4PiEwsT48K4V8iq3LI6SDvvL0nHOE=)
2: vzrHIKEXt01NE8Jj95R3kp7btLw.crl (hash: VKZbcqqeHHYanloaLyGdF3pDQudWglCEh0DvgNjOQUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:be:ef:04:0b:6d:21:8d:da:0f:ed:be:98:ac:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Validity
Not Before: Apr 17 11:00:48 2026 GMT
Not After : Apr 18 11:00:48 2026 GMT
Subject: CN=dfba2b905489f261004a4888ace59ad60e3c2f1d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:3d:05:7a:ea:54:7f:d9:8b:7b:9e:0b:f5:1b:
29:bf:37:68:28:da:4e:2e:c3:5a:a4:8b:b7:ed:65:
5f:64:df:66:57:a7:6a:55:e9:ec:94:39:1f:b9:cc:
ef:05:64:e4:88:29:87:2f:a9:73:9e:bc:de:97:b4:
d4:18:9e:44:6e:9c:0a:f3:7a:79:1f:77:df:fa:97:
56:5c:d2:8e:31:4d:0f:40:dc:03:86:4b:b6:9b:88:
bc:35:56:a3:71:36:79:e8:bf:bd:0a:24:63:bf:b1:
ed:50:de:36:fe:bf:5a:a0:89:0a:e3:60:a6:a8:e1:
bf:37:f6:e0:18:71:8e:e6:5a:ad:28:e3:fc:9e:6e:
be:44:da:b8:72:6d:87:49:1b:71:07:75:c2:52:dd:
bf:45:52:c0:63:9e:c1:09:08:cd:90:8a:cd:66:61:
b6:3d:72:23:ce:e9:74:64:0c:e0:a3:87:80:e6:74:
49:02:80:91:62:d7:4b:15:3d:77:f3:8a:b0:aa:08:
7e:bc:41:d5:ee:22:34:5e:fb:da:fc:15:e1:c5:25:
d8:30:61:95:34:fd:b4:f4:84:ec:79:b4:f6:1c:31:
f4:29:58:a4:bf:0c:c2:88:e3:a5:73:63:19:76:d1:
4e:17:a4:da:8d:ba:d0:19:a5:e4:09:e6:35:47:52:
48:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:BA:2B:90:54:89:F2:61:00:4A:48:88:AC:E5:9A:D6:0E:3C:2F:1D
X509v3 Authority Key Identifier:
keyid:BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:2f:b9:02:82:d5:2b:03:2f:9a:74:6f:26:84:ed:6d:25:19:
38:49:e0:0b:60:a8:be:8e:fc:40:55:61:75:72:6e:d0:85:ef:
e0:54:7b:7b:36:5f:f0:65:10:c3:55:b6:22:cd:0b:6d:8e:9c:
de:a4:31:a0:65:03:b4:00:6b:69:2e:b4:e5:76:ff:dc:20:a0:
09:86:32:d3:d2:ab:f3:ea:e6:02:16:d8:02:b6:ed:d4:14:15:
80:43:57:71:55:aa:76:09:a3:6a:81:f2:1e:fd:eb:10:56:f1:
68:e0:6a:a1:d4:cf:06:7d:80:20:a4:58:bc:50:4c:6e:ef:65:
94:b0:90:86:cf:7e:8f:28:a1:e2:c7:46:4f:bb:d1:88:d6:cf:
50:79:ee:c5:b4:1e:dc:f9:8d:34:51:86:2c:f7:8a:e2:90:69:
2b:8b:d5:cb:72:f9:c1:ef:e5:41:4d:6a:88:3f:7c:94:35:94:
99:92:53:ef:3d:a7:90:55:4d:94:09:59:21:5c:f2:e3:28:4e:
71:23:1b:1d:2b:9c:d2:cb:45:0d:ac:9c:f8:2b:0c:e4:19:fe:
1d:f5:be:02:e4:72:37:21:37:1c:c3:48:7f:b8:cf:13:39:bc:
e8:74:ab:bd:4c:c3:0d:ee:09:55:d8:d5:18:99:39:8b:37:c4:
b5:06:6d:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:40:40 2026 by rpki-client