Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
File: vklD9SA9Q0YKE61OqdfVuVDGE80.mft (raw, json)
Hash identifier: nZTofNidDQhj5GwjVUi7JR0Z35iacQETFr9pyUaVyt8=
Subject key identifier: 2E:7D:69:B3:E9:D0:C6:23:95:CD:62:4E:0D:B0:E1:62:60:DC:9F:19
Authority key identifier: BE:49:43:F5:20:3D:43:46:0A:13:AD:4E:A9:D7:D5:B9:50:C6:13:CD
Certificate issuer: /CN=be4943f5203d43460a13ad4ea9d7d5b950c613cd
Certificate serial: 019CAC47582610C8536C78F197AFB32FA03C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
Manifest number: 172F
Signing time: Mon 02 Mar 2026 02:01:22 +0000
Manifest this update: Mon 02 Mar 2026 02:01:22 +0000
Manifest next update: Tue 03 Mar 2026 02:01:22 +0000
Files and hashes: 1: SDu33Jeh8c7arCHbWi8vSsrtoRg.roa (hash: mOOpOXQQCP8piIIEBcEgAzeCzN5EN9HiWhAzdTUbVms=)
2: kOyZYgSX80CsRnrKhHMAejR73Kw.roa (hash: /AadyvBuTOLqb+dP0xaY/xt4sTbRJkvJBZZOyXanfbw=)
3: vklD9SA9Q0YKE61OqdfVuVDGE80.crl (hash: J0gndm5vXXxFx3ew0bzoVCS63qWomspK4gkSo5v+7Dw=)
4: wH_YLSDY4b5XgVUcKfrsKH4Px0s.roa (hash: KLtMxNZ5FPCN1sTLToHlbj9Dq8r/htuRuv+o2DrmCdI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:58:26:10:c8:53:6c:78:f1:97:af:b3:2f:a0:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be4943f5203d43460a13ad4ea9d7d5b950c613cd
Validity
Not Before: Mar 2 02:01:22 2026 GMT
Not After : Mar 3 02:01:22 2026 GMT
Subject: CN=2e7d69b3e9d0c62395cd624e0db0e16260dc9f19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f2:06:96:98:92:f2:a1:0e:9c:5e:38:df:95:0b:
1c:04:b8:5e:e2:a3:3b:78:80:7a:89:0f:31:80:94:
c4:e6:fc:61:4a:8b:2b:b9:d1:f6:5f:ec:8f:b6:fc:
b4:d2:44:f0:c4:9d:2e:78:87:19:8a:9e:2b:9f:50:
7a:8a:4e:fb:ca:2a:18:e6:b9:43:70:25:49:87:ac:
09:7e:c4:1d:e7:74:83:b6:b7:8a:9c:6e:f7:66:b3:
20:5c:57:82:76:40:18:74:df:98:1f:c1:a1:61:8b:
12:73:b1:48:9c:16:ee:23:c8:4a:d5:e1:6b:ad:05:
c3:42:20:b2:5e:36:1c:e6:62:0c:36:f4:a6:0b:5b:
6c:8c:f8:d8:2a:dc:9f:8f:73:3f:cc:77:57:da:c6:
e7:bc:d8:fd:f7:e3:1a:ab:43:39:e8:70:90:31:a0:
0f:d8:41:2e:28:da:b1:ab:00:e9:35:57:c4:3e:4c:
aa:44:49:4d:09:10:df:99:7b:c8:ec:b2:fb:97:fb:
43:52:5f:3c:b3:ac:85:de:bd:a0:f4:96:1b:cb:7d:
a8:3e:02:04:94:3a:57:1b:47:eb:ba:1e:eb:1d:ed:
1b:ff:2b:c7:9c:12:af:04:ff:64:95:57:37:ee:ac:
69:ad:59:fc:64:97:15:d8:4d:3a:31:ba:5b:de:f3:
93:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:7D:69:B3:E9:D0:C6:23:95:CD:62:4E:0D:B0:E1:62:60:DC:9F:19
X509v3 Authority Key Identifier:
keyid:BE:49:43:F5:20:3D:43:46:0A:13:AD:4E:A9:D7:D5:B9:50:C6:13:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:3b:78:26:27:64:71:e6:c9:db:6e:08:85:d6:65:67:bd:bb:
32:bc:af:60:4c:2a:3d:b2:28:6c:7b:f7:6b:57:e0:82:c3:b1:
cc:4f:98:47:70:e9:d8:db:ff:9f:e4:be:05:f3:07:97:db:db:
b5:22:5d:9b:b3:ec:d6:87:6f:80:e1:4a:20:dd:e9:54:81:52:
4a:e9:9a:80:92:ae:f0:b7:a5:13:e1:15:72:d1:1e:5d:c2:3c:
32:9a:e8:84:7a:69:64:4c:5e:97:7c:36:71:42:d3:66:68:33:
0f:4b:a0:68:8c:da:30:db:d8:0b:09:dc:d0:4e:bd:92:18:11:
8c:c2:5d:49:28:d9:d4:ad:75:08:65:e9:1b:a7:e8:ba:9e:c7:
f3:3c:eb:4e:fa:f7:f5:d4:e2:9c:f9:96:41:cc:52:35:f0:68:
55:31:e6:97:f0:8e:83:54:0a:fd:9f:5b:45:40:3a:da:0b:2e:
9d:86:cf:fd:3f:7e:e9:5c:19:b1:46:ca:41:f4:1c:76:4a:fa:
bd:43:49:69:bb:56:4a:3c:2d:d2:17:6c:b1:87:9e:36:99:ea:
18:0c:69:98:d0:91:a3:b4:3f:23:f5:f2:c8:0b:1e:a8:a2:16:
cf:af:3a:27:51:95:e1:be:64:36:4b:e3:34:96:83:34:16:e1:
2c:74:c1:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:22:38 2026 by rpki-client