Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: iqD+u6pj+1NnMQhv48rCNb610aJneHAzJyuwTnoFkSA=
Subject key identifier: 78:10:A1:7A:1C:43:53:4F:07:B6:CB:C3:87:22:B5:98:76:12:25:7D
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 019D9AE3A557346001D8ED3F0600AECEFEF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 06B7
Signing time: Fri 17 Apr 2026 10:01:43 +0000
Manifest this update: Fri 17 Apr 2026 10:01:43 +0000
Manifest next update: Sat 18 Apr 2026 10:01:43 +0000
Files and hashes: 1: 6EkJKay6ASec3Uw_czHATgEyfKA.roa (hash: 2c9WHQTBPJnNJtn4QC9p7CmncMVB1cW6dCt+0dg0vCE=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: r0esRcNbt2xsItAjHe6r37MEa+EB5bjwGbXk2dvYkZI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:a5:57:34:60:01:d8:ed:3f:06:00:ae:ce:fe:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: Apr 17 10:01:43 2026 GMT
Not After : Apr 18 10:01:43 2026 GMT
Subject: CN=7810a17a1c43534f07b6cbc38722b5987612257d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:71:2b:03:60:ba:bb:93:71:32:e3:06:2e:93:
67:f4:19:1f:77:65:96:7a:13:50:de:63:e3:15:aa:
de:a2:d5:25:bc:fc:62:2c:ed:a6:18:8f:ae:dd:e6:
cc:5c:aa:d3:d9:a7:b5:9a:c3:a0:ad:e3:d8:82:89:
31:66:f1:f8:a4:40:eb:5d:8f:36:d5:30:40:2a:a8:
cf:97:d5:ee:57:0f:41:3f:53:7c:e6:83:77:b5:35:
82:ed:69:c3:ad:b5:e5:bd:ab:20:f7:f5:2f:6f:c3:
27:c1:ac:6a:d0:1e:75:d6:eb:4e:03:04:41:84:b0:
ae:99:aa:3e:5a:05:5b:f8:91:43:41:28:33:f1:e4:
67:48:15:ed:75:b7:6b:12:23:a6:c8:1d:bc:f2:21:
b9:18:b8:c1:f0:66:08:37:86:55:83:bd:6d:b5:2c:
f1:ae:10:a3:70:d0:c6:91:c5:03:f8:cb:fd:b5:ce:
8c:c5:40:63:cc:b1:d3:f5:fd:4d:ee:55:18:45:58:
2d:3a:f9:f0:27:80:2b:c1:0b:28:9b:b7:8e:65:0f:
95:0d:f5:71:c0:f5:13:95:a7:17:a4:2c:5a:b5:c3:
cd:bb:a5:be:ef:58:91:87:91:a0:ef:64:3a:84:f8:
1a:e0:c8:68:d5:79:7a:84:be:d6:d0:00:bf:56:57:
6a:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:10:A1:7A:1C:43:53:4F:07:B6:CB:C3:87:22:B5:98:76:12:25:7D
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:2d:ca:05:d1:0f:70:14:7e:02:13:ab:78:0c:d4:29:78:fc:
b8:b1:b5:d2:38:b3:4f:73:c9:0d:cc:32:4e:31:e0:3b:8d:4d:
62:c5:82:ce:05:88:25:e8:19:a2:64:ef:d8:ab:e7:1d:04:a1:
56:d5:9f:9d:f6:17:a2:60:de:54:8a:8d:67:7e:86:88:33:a7:
20:16:1b:df:00:32:b3:12:20:dd:d3:f6:69:3b:25:c6:2e:d2:
f0:7c:41:a4:c1:b9:15:d8:30:51:68:5f:a1:3b:2e:9c:f8:7a:
c1:1d:dc:fa:9b:12:a0:71:59:e9:93:d2:f6:83:64:36:16:33:
09:e1:bb:99:b5:a1:e7:10:0f:a4:18:65:0e:bc:68:f2:e7:14:
b4:ff:70:9b:86:5e:e1:58:a0:35:dc:64:a8:c0:23:bc:bb:b9:
f8:4d:4a:48:37:a3:c6:dc:f5:32:38:a5:3f:81:70:30:d1:08:
91:63:90:ee:f3:25:f0:a1:f6:8a:8c:55:82:2d:12:4e:1c:7d:
98:04:e3:d6:2a:c7:a3:01:e1:72:8c:c6:da:10:d0:17:df:90:
e0:fb:b9:5f:dc:e0:d3:b7:8b:9e:63:39:ec:f2:80:7c:00:0a:
c8:a2:49:ad:15:a4:66:14:1f:3c:40:09:f0:c3:75:76:54:f5:
d1:cd:a2:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:41:46 2026 by rpki-client