Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
File: vklD9SA9Q0YKE61OqdfVuVDGE80.mft (raw, json)
Hash identifier: CkiTVGw5S6c1rvmh+LShL0h3a7w7qERBQW62Naf5r+g=
Subject key identifier: AD:5E:53:62:0F:BE:7D:D9:29:99:87:4F:E2:75:36:D5:27:94:51:D5
Authority key identifier: BE:49:43:F5:20:3D:43:46:0A:13:AD:4E:A9:D7:D5:B9:50:C6:13:CD
Certificate issuer: /CN=be4943f5203d43460a13ad4ea9d7d5b950c613cd
Certificate serial: 019D99D0AB96527021AC5C35A5897D2BA838
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
Manifest number: 17AA
Signing time: Fri 17 Apr 2026 05:01:22 +0000
Manifest this update: Fri 17 Apr 2026 05:01:22 +0000
Manifest next update: Sat 18 Apr 2026 05:01:22 +0000
Files and hashes: 1: SDu33Jeh8c7arCHbWi8vSsrtoRg.roa (hash: mOOpOXQQCP8piIIEBcEgAzeCzN5EN9HiWhAzdTUbVms=)
2: kOyZYgSX80CsRnrKhHMAejR73Kw.roa (hash: /AadyvBuTOLqb+dP0xaY/xt4sTbRJkvJBZZOyXanfbw=)
3: vklD9SA9Q0YKE61OqdfVuVDGE80.crl (hash: fcUSX+n6eEjqcUI2mFXE+LumBQhnCSxQqFOaVnfv4ws=)
4: wH_YLSDY4b5XgVUcKfrsKH4Px0s.roa (hash: KLtMxNZ5FPCN1sTLToHlbj9Dq8r/htuRuv+o2DrmCdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:ab:96:52:70:21:ac:5c:35:a5:89:7d:2b:a8:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be4943f5203d43460a13ad4ea9d7d5b950c613cd
Validity
Not Before: Apr 17 05:01:22 2026 GMT
Not After : Apr 18 05:01:22 2026 GMT
Subject: CN=ad5e53620fbe7dd92999874fe27536d5279451d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:fd:1c:1b:b5:ba:7b:18:c8:3d:0c:d9:52:a9:
ee:ab:89:4d:b9:4c:01:a8:52:60:00:d6:58:d9:15:
9c:13:a1:bd:8a:7a:13:69:8f:68:10:3c:44:1a:8a:
4b:e4:0b:16:68:22:3c:b2:eb:24:5d:29:15:f5:fa:
57:8c:e5:2b:6e:a2:6f:c2:aa:d2:5c:e8:c9:45:16:
54:3e:b3:61:1e:72:e8:43:61:2e:c6:b8:d2:c8:ac:
83:e8:6d:4b:e4:dc:67:4e:c1:f6:d3:5d:21:d2:cc:
79:b7:c2:00:54:77:12:62:41:46:dc:cc:ac:69:96:
51:de:28:e2:50:40:31:d5:ea:a4:80:59:40:02:ec:
58:fe:b3:f0:dd:50:37:e7:35:46:33:11:89:f3:c3:
0e:08:26:4e:ff:8a:81:f9:ce:07:30:8c:6a:20:d7:
dc:89:e0:5e:ee:cf:5a:b6:ea:0c:ce:6d:c9:ee:21:
e6:ec:b5:c2:3e:36:31:cc:fc:7c:91:ff:c9:5c:90:
ab:a5:71:53:64:2b:0b:f0:2e:f2:ce:3c:e1:f7:b5:
ba:d5:ea:65:19:7c:e8:ab:e1:06:c6:2e:bc:50:86:
b1:a7:bd:2e:49:6c:4e:76:05:f3:46:23:68:37:21:
42:02:79:4c:88:84:a8:8a:17:c1:f2:3e:ba:af:93:
13:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:5E:53:62:0F:BE:7D:D9:29:99:87:4F:E2:75:36:D5:27:94:51:D5
X509v3 Authority Key Identifier:
keyid:BE:49:43:F5:20:3D:43:46:0A:13:AD:4E:A9:D7:D5:B9:50:C6:13:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:c7:d2:d5:c5:2d:18:2a:fc:98:fe:76:56:6c:3f:30:11:59:
fe:7a:7c:ef:cb:7b:c1:44:46:ae:0d:b8:f1:49:d2:7a:40:9e:
30:8c:87:b6:84:a7:01:b7:3f:33:4f:5d:0d:8c:09:3b:92:93:
54:a8:a4:33:47:69:c3:38:71:40:27:ec:54:b4:78:63:7d:2d:
d5:f5:ef:49:23:de:7d:2d:d5:61:93:b2:b3:ea:c4:50:c6:f8:
21:86:78:b3:1d:12:b3:38:bf:4f:a5:d3:10:f0:c2:32:0f:4c:
d4:1b:4e:1a:5e:76:b7:30:b7:b9:6a:f8:bd:e7:73:4f:5c:c7:
ce:61:f5:ac:0d:63:b5:b7:21:fa:fc:67:7c:73:41:5e:64:5b:
5b:ea:8a:2f:8f:e9:61:0a:d2:ec:9a:8d:09:8d:35:31:d0:e1:
7f:cf:f4:19:f6:41:7f:7f:71:1d:86:08:75:d0:23:da:40:6d:
88:ac:fa:94:2c:b4:7b:ed:ca:0b:2d:87:78:0a:72:9b:fe:d9:
ea:07:1f:ec:65:c3:79:5f:de:21:98:9c:3a:9a:b1:79:d1:28:
ec:10:b8:04:ab:90:7d:7e:b9:00:8d:21:d6:83:b1:8b:29:15:
47:01:04:b3:a2:3d:52:e3:f7:52:b3:16:26:9a:bd:c5:28:90:
23:46:c7:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:42:24 2026 by rpki-client