Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: SkTp5GObfTPRme+lfN8Kl8vf1xN711U87xVTwVojgkI=
Subject key identifier: E5:1E:45:38:BB:BE:48:86:CF:80:60:42:2E:DF:4F:95:5D:C1:CC:A9
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 019CAD599DA6B3A5AB60DCDADAF887322D28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 063C
Signing time: Mon 02 Mar 2026 07:00:57 +0000
Manifest this update: Mon 02 Mar 2026 07:00:57 +0000
Manifest next update: Tue 03 Mar 2026 07:00:57 +0000
Files and hashes: 1: 6EkJKay6ASec3Uw_czHATgEyfKA.roa (hash: 2c9WHQTBPJnNJtn4QC9p7CmncMVB1cW6dCt+0dg0vCE=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: oF5O1Qsv+UjKxSquJ4iqfzPS+g4FpKKc2nirc8MNPkc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:9d:a6:b3:a5:ab:60:dc:da:da:f8:87:32:2d:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: Mar 2 07:00:57 2026 GMT
Not After : Mar 3 07:00:57 2026 GMT
Subject: CN=e51e4538bbbe4886cf8060422edf4f955dc1cca9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:38:2f:3c:48:ae:df:59:0d:82:4e:76:f9:61:
62:c3:21:e5:43:7b:f7:d1:63:d3:f2:c7:68:25:4f:
17:39:7b:61:ff:67:e5:97:e0:39:30:04:5a:e0:e9:
68:1a:9a:6d:54:c4:01:e5:bc:e1:50:72:e7:19:ea:
5b:4d:db:67:bb:6d:62:e7:4e:22:71:cb:89:42:54:
e7:47:b3:4d:02:e8:a6:79:73:ec:9a:bc:60:09:e5:
e5:84:cf:9d:3e:82:f0:1b:eb:bc:40:04:bb:ee:7a:
d8:e1:8a:22:03:04:8f:ad:e9:6b:4e:7a:f1:54:eb:
b8:8f:f6:ac:cd:c1:ee:f8:fb:f9:9a:40:8a:a8:ee:
58:6e:0d:80:48:6a:c9:fd:97:69:7a:3a:dd:72:10:
18:5a:87:68:ec:a2:9e:c3:e1:ec:30:53:a7:48:ff:
d2:f3:19:d7:89:dd:fb:c6:aa:af:54:4c:a8:68:9a:
ce:8f:e2:d2:db:9a:ef:aa:f0:cd:12:04:88:cd:59:
3b:af:46:a4:70:ba:59:da:a8:24:b4:2a:de:71:47:
61:e5:cd:3d:de:0f:96:bc:51:cb:43:2a:f6:7f:e4:
d7:d1:9e:f5:37:fa:6c:26:11:12:d1:4d:6d:4d:80:
a6:24:90:44:65:e6:37:dc:84:96:af:8e:b9:50:9e:
2f:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:1E:45:38:BB:BE:48:86:CF:80:60:42:2E:DF:4F:95:5D:C1:CC:A9
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:d6:2f:a4:79:3d:e6:aa:39:8d:ea:66:ea:4c:75:54:66:eb:
03:b6:0b:6b:52:a7:69:9c:27:b3:be:5f:96:1d:30:c3:a2:74:
8a:5f:e3:89:d3:ba:4e:96:bf:e3:02:12:8f:0f:a8:27:30:a0:
d5:c7:a4:c5:ec:fb:2d:1b:ac:d0:9b:19:03:9e:d3:fe:a8:8f:
11:54:08:69:7c:85:f3:cd:78:c9:c0:21:51:13:ff:56:0b:49:
f6:99:49:cb:86:c6:d2:04:48:9a:66:d6:89:57:16:36:4c:d5:
06:3e:e0:95:96:dc:d3:7a:28:d2:c0:93:db:a3:bb:0a:53:45:
f4:8e:33:dc:4d:23:54:5e:7c:b0:b0:cc:59:38:5d:0a:6a:8d:
47:44:0d:cc:f6:42:01:f5:70:d6:a6:bc:84:ef:f6:3f:94:f6:
55:25:2f:78:51:3d:52:b0:19:22:9a:6e:e8:db:ca:2e:b4:3c:
3f:5f:a0:01:c4:92:49:cd:81:cc:41:4d:b7:da:5f:84:43:6e:
3d:ab:48:46:e4:d2:45:d0:fa:bd:83:ca:0f:23:e1:03:47:1d:
ac:0b:d1:26:3b:2c:24:b0:f0:99:a7:e9:ff:d4:97:ac:b9:86:
cb:7d:c4:8b:bc:f2:2c:b0:5f:0a:d7:82:5c:6b:c7:11:67:12:
37:32:f4:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:50:43 2026 by rpki-client