Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
File: VmHZZN9KhtuP-5mqiVgtpoowkIw.mft (raw, json)
Hash identifier: mWDlcY19ArwFUdAcMhRbBRXVUIWM5U5rRxZEPYmueW4=
Subject key identifier: 6D:19:C7:8D:D7:DC:F3:73:84:A5:11:86:49:95:88:52:A5:3C:3D:F3
Authority key identifier: 56:61:D9:64:DF:4A:86:DB:8F:FB:99:AA:89:58:2D:A6:8A:30:90:8C
Certificate issuer: /CN=5661d964df4a86db8ffb99aa89582da68a30908c
Certificate serial: 019CB1A470C9BE9225D23E15997162AB4E45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmHZZN9KhtuP-5mqiVgtpoowkIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
Manifest number: 03DF
Signing time: Tue 03 Mar 2026 03:01:09 +0000
Manifest this update: Tue 03 Mar 2026 03:01:09 +0000
Manifest next update: Wed 04 Mar 2026 03:01:09 +0000
Files and hashes: 1: VmHZZN9KhtuP-5mqiVgtpoowkIw.crl (hash: 6mFry++t2ay3VWu35BbkCapDn+0PXjtFLTZrbmFM26k=)
2: _Oo5q5cK7WylvggoJmoqFYskB4c.roa (hash: 5KMQiMGpqj0Z920Fo72+vT0buVYau5a+ocsxOU9eZ5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/VmHZZN9KhtuP-5mqiVgtpoowkIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 21:16:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:b1:a4:70:c9:be:92:25:d2:3e:15:99:71:62:ab:4e:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5661d964df4a86db8ffb99aa89582da68a30908c
Validity
Not Before: Mar 3 03:01:09 2026 GMT
Not After : Mar 4 03:01:09 2026 GMT
Subject: CN=6d19c78dd7dcf37384a5118649958852a53c3df3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:72:c2:5f:09:ff:1e:e4:33:71:0d:83:b4:ed:
29:bb:35:98:e2:22:15:33:db:b0:52:21:2f:cd:6f:
07:c3:d0:75:74:ae:66:24:fb:87:b1:c6:63:b0:63:
45:31:af:c6:e4:00:b9:a1:c1:a8:60:f2:16:45:25:
ab:27:1c:8d:42:3e:1b:71:db:6f:d7:07:1d:4c:35:
51:80:be:d5:47:34:45:98:5b:95:4c:e2:9a:b1:97:
c4:a2:c1:00:5e:14:e6:15:83:86:c1:34:53:6e:83:
70:c1:77:90:d0:cc:d2:80:9c:6c:71:48:2c:3a:7f:
7a:27:03:83:17:36:27:82:2c:3d:91:eb:0f:7e:d0:
cb:83:a4:39:0c:60:d3:97:cd:ce:51:c9:97:07:c7:
74:d0:7e:52:3a:3c:d0:75:42:c4:63:32:89:f1:66:
b9:56:68:29:bd:42:6a:39:d4:29:84:97:11:6d:bf:
3b:47:26:5e:72:0c:62:01:cc:80:44:c4:b0:8b:32:
4f:f5:79:4d:18:34:6d:18:ac:0e:a2:cb:1c:a2:c3:
26:65:ae:2d:b2:64:d4:bd:45:a8:5e:3b:e6:05:8b:
0a:cd:ed:12:8f:0d:97:ac:95:ac:89:fe:fe:5c:a6:
ab:1a:65:7c:5f:17:5c:04:a2:51:98:0a:eb:b9:b8:
c3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:19:C7:8D:D7:DC:F3:73:84:A5:11:86:49:95:88:52:A5:3C:3D:F3
X509v3 Authority Key Identifier:
keyid:56:61:D9:64:DF:4A:86:DB:8F:FB:99:AA:89:58:2D:A6:8A:30:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmHZZN9KhtuP-5mqiVgtpoowkIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:c6:8e:5b:de:bf:ce:ad:88:78:3b:0b:04:96:67:92:6b:b6:
e3:2f:73:94:99:b9:b3:a4:e4:aa:ec:9e:3e:eb:03:44:c0:fd:
71:ef:d5:ec:91:2d:3f:25:6d:dc:2f:3c:ca:5a:bc:21:a2:5e:
a3:53:12:98:39:f1:75:4b:fd:ae:3e:12:6f:a1:54:f9:20:09:
32:91:f0:6b:91:c3:09:a1:2c:cf:dc:b4:d9:77:6f:63:cf:6d:
78:1f:63:5e:0f:21:fb:24:47:41:73:45:af:ae:78:43:4b:a9:
f2:92:75:d1:83:07:20:b3:08:70:75:c9:93:6a:ca:f6:eb:dd:
37:6b:98:88:56:e1:a2:70:ff:e4:1a:aa:c8:be:99:cf:5d:71:
52:eb:6a:bf:8b:99:ef:07:6d:19:cd:f0:a8:89:4a:5e:c0:15:
ea:68:52:f4:d0:6c:8b:26:59:e1:f7:50:15:0c:d2:5c:ff:72:
d6:af:26:e1:bd:00:34:71:48:32:ec:41:2c:cb:ca:43:14:a3:
0b:4f:43:3e:a1:67:bb:68:7e:82:4f:94:ba:28:85:7f:39:9d:
dd:b7:5d:e4:22:ee:05:8a:e0:76:74:dd:8f:1e:57:c0:3a:52:
a4:ae:f9:05:5a:49:95:62:50:cf:22:07:6a:3e:5d:cc:3c:c8:
f8:dd:de:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Mar 3 05:30:15 2026 by rpki-client