Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
File: VmHZZN9KhtuP-5mqiVgtpoowkIw.mft (raw, json)
Hash identifier: 9DtY5tKOl+3NttguL8XTJ9CJFUoUdQGNGDClnCqf+Fw=
Subject key identifier: 54:E1:12:1C:E1:D4:06:80:42:CF:97:61:98:A5:1E:A4:77:DB:24:96
Authority key identifier: 56:61:D9:64:DF:4A:86:DB:8F:FB:99:AA:89:58:2D:A6:8A:30:90:8C
Certificate issuer: /CN=5661d964df4a86db8ffb99aa89582da68a30908c
Certificate serial: 019DA4F948669231F16A1CDB1DF47BB04B05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmHZZN9KhtuP-5mqiVgtpoowkIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
Manifest number: 045D
Signing time: Sun 19 Apr 2026 09:01:33 +0000
Manifest this update: Sun 19 Apr 2026 09:01:33 +0000
Manifest next update: Mon 20 Apr 2026 09:01:33 +0000
Files and hashes: 1: VmHZZN9KhtuP-5mqiVgtpoowkIw.crl (hash: aVgclz0Bhsu24Ci4kCsSnVB35H6R+4ZdBdBraBlGxgc=)
2: _Oo5q5cK7WylvggoJmoqFYskB4c.roa (hash: 5KMQiMGpqj0Z920Fo72+vT0buVYau5a+ocsxOU9eZ5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/VmHZZN9KhtuP-5mqiVgtpoowkIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f9:48:66:92:31:f1:6a:1c:db:1d:f4:7b:b0:4b:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5661d964df4a86db8ffb99aa89582da68a30908c
Validity
Not Before: Apr 19 09:01:33 2026 GMT
Not After : Apr 20 09:01:33 2026 GMT
Subject: CN=54e1121ce1d4068042cf976198a51ea477db2496
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:9d:84:92:3e:00:fc:b2:79:d0:09:38:45:3b:
3d:7d:bb:f0:16:fb:b3:2c:84:38:30:05:75:a3:49:
d0:2d:3a:e9:97:ea:4d:cc:24:3a:8e:90:e3:ca:fa:
b5:6b:88:a1:0d:b4:67:61:03:67:61:0c:01:ed:80:
34:5b:11:45:c2:f8:12:75:93:df:36:81:05:da:e0:
78:ef:31:2b:ae:a6:2f:cc:28:a4:ea:e2:ef:de:92:
59:05:97:6e:5e:24:21:b1:8a:b9:5e:00:e5:c7:dd:
ef:f6:3d:94:c8:7e:49:dd:68:68:d9:b0:99:90:cb:
2f:09:78:5f:3d:83:78:d5:16:02:6c:1a:aa:d9:f4:
27:bd:f6:73:d9:92:9d:11:88:89:f1:d5:97:e8:50:
d1:78:40:77:4b:6e:5f:9a:17:10:d6:61:2d:38:62:
5c:3f:a8:ea:8d:26:0d:c7:00:5d:3a:1f:d7:c3:f9:
32:21:ff:25:59:e5:59:19:66:31:bb:67:f1:cd:4f:
40:00:e1:8e:10:9f:d5:26:13:1f:bb:81:19:07:07:
d2:21:2c:a6:ac:da:4c:68:90:24:71:f5:0c:bc:ed:
f5:f6:5e:de:0c:25:c0:26:d2:cc:05:02:31:ce:62:
e8:97:2b:d1:76:fe:89:45:7e:f3:ec:8a:59:43:c3:
f0:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:E1:12:1C:E1:D4:06:80:42:CF:97:61:98:A5:1E:A4:77:DB:24:96
X509v3 Authority Key Identifier:
keyid:56:61:D9:64:DF:4A:86:DB:8F:FB:99:AA:89:58:2D:A6:8A:30:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmHZZN9KhtuP-5mqiVgtpoowkIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:c1:69:24:ca:7e:e3:a6:b7:c6:c8:a0:78:43:d3:a7:70:14:
5d:b8:c0:80:12:fb:5b:0b:52:1f:78:25:86:e5:43:45:96:f1:
e3:a2:ee:29:b0:b0:27:f1:a4:19:b4:43:2a:ec:3e:28:4b:52:
b5:bd:b6:80:3e:c8:f8:bb:ec:98:08:53:4a:64:58:a7:cd:bf:
31:98:0d:07:8f:08:9a:ce:78:13:8d:62:1e:35:8e:54:27:eb:
13:13:01:c1:64:82:2e:a4:d5:27:64:70:f9:0b:e4:5f:87:83:
2f:1d:75:9e:f5:e0:b5:e8:fd:1f:e0:41:9c:97:85:94:57:6d:
43:ff:c3:a9:e5:6e:c7:cf:f5:16:d6:2a:5a:7c:7c:d1:ea:d2:
9a:40:e5:b5:33:32:e3:8a:53:76:ea:a7:50:13:43:83:ed:4c:
84:6b:d4:c9:4b:38:d9:a8:e1:14:b4:50:61:72:56:3d:9c:23:
9d:d1:9b:3a:39:61:13:75:4f:c0:41:f2:2f:6b:65:85:a4:29:
0c:72:f7:c2:0b:55:ee:26:d0:82:7e:03:a3:f2:91:d9:b7:f6:
5e:9d:39:0b:21:00:40:06:1f:6c:c1:54:07:cc:1f:90:5f:59:
99:bc:0d:2a:19:e6:da:07:a3:13:48:49:1c:84:c5:00:70:ef:
00:bb:cf:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:07:22 2026 by rpki-client