Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
File: vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft (raw, json)
Hash identifier: GS0aiNlsazGpa7GNjDJawZ/uaoFMgC3T90/I6Jg+V2s=
Subject key identifier: 04:50:09:35:9D:06:31:BB:1A:76:2C:A5:B4:48:30:BA:26:28:E1:7F
Authority key identifier: BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
Certificate issuer: /CN=be722a99732c9c3cbc20b0a47292a823782603ac
Certificate serial: 019D99D09662E4FD9C3C15D35397778132BE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
Manifest number: 1853
Signing time: Fri 17 Apr 2026 05:01:17 +0000
Manifest this update: Fri 17 Apr 2026 05:01:17 +0000
Manifest next update: Sat 18 Apr 2026 05:01:17 +0000
Files and hashes: 1: J9YAUFwPteiNE41P-B9PZesABw4.roa (hash: aWHkIvoqLm8EJJK/XFEsvikfiT0fdWpAKa84pZKqHPU=)
2: vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl (hash: vTJDomadD+iMMKDq9UfBDfAws3nBP/uJrr6H+FUcTk8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:96:62:e4:fd:9c:3c:15:d3:53:97:77:81:32:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be722a99732c9c3cbc20b0a47292a823782603ac
Validity
Not Before: Apr 17 05:01:17 2026 GMT
Not After : Apr 18 05:01:17 2026 GMT
Subject: CN=045009359d0631bb1a762ca5b44830ba2628e17f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2b:7b:f8:ec:7c:6f:74:c1:d8:7b:28:d8:a5:
12:43:7d:50:20:a8:d5:2a:a4:fe:c4:31:4b:49:f1:
36:41:e1:1e:38:09:d0:f6:11:88:99:2d:83:cb:09:
44:06:2c:27:fc:d9:a4:06:e6:7f:59:dd:a5:b0:52:
73:9d:61:19:fa:34:62:c3:4d:92:58:89:fa:9f:53:
10:5c:61:0a:52:a1:3c:af:8d:78:68:d1:26:40:07:
1c:ee:98:3f:02:b1:28:7e:93:ed:62:a6:5d:f9:9f:
8e:35:2a:ad:b1:be:14:12:4e:54:70:f9:7c:d2:3b:
f2:45:dc:76:6c:de:dc:11:2f:6a:b8:04:84:7a:db:
29:bf:b7:14:22:e3:a9:14:fc:57:9c:22:8d:da:7f:
85:e8:81:0b:23:55:2f:c9:1b:40:81:2d:2f:3f:0f:
a5:c7:05:dd:22:02:ed:93:76:4d:77:a5:c8:f9:64:
66:66:2f:bb:d8:01:4c:c1:b3:0a:26:7f:4b:ea:9f:
56:17:20:a9:fb:1b:85:8b:d2:05:05:aa:8c:eb:00:
e1:ae:fe:7c:00:3f:1d:9c:21:87:68:d2:ba:13:7f:
0c:0c:1a:c7:65:53:38:fa:c7:1e:e2:69:c4:9b:8c:
f3:fd:58:5c:92:5a:76:c6:6e:6e:d1:7c:4b:e2:94:
23:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:50:09:35:9D:06:31:BB:1A:76:2C:A5:B4:48:30:BA:26:28:E1:7F
X509v3 Authority Key Identifier:
keyid:BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:36:bd:78:be:e1:86:ef:45:28:dc:14:2e:f4:19:06:39:37:
9d:6e:85:09:fb:bf:e7:3c:c4:b9:e9:53:a6:d7:c0:c2:c7:78:
89:83:e6:38:15:7b:cb:55:85:eb:8e:e3:eb:2c:de:d2:bd:a2:
1a:d0:96:5a:73:e8:11:e6:9a:86:7b:0e:c2:c3:9c:f5:12:9f:
3f:26:a1:88:75:46:56:8c:8c:48:e6:29:62:09:bf:47:27:16:
44:8a:88:e6:25:4b:07:50:04:b8:4f:68:cb:eb:d3:06:41:6e:
35:34:46:6e:b0:9d:43:89:1d:e6:97:5f:00:d2:80:42:ea:09:
b1:28:6b:ec:39:83:2c:b8:9b:e4:9f:44:6e:0c:8e:38:41:c8:
ab:61:13:1a:4a:cc:15:b9:a1:0a:d2:ef:7e:82:b0:87:b9:80:
64:3e:cc:52:39:65:af:66:01:c0:38:24:e3:3a:d2:bc:2d:55:
a8:36:57:1b:c9:de:c7:95:08:64:84:7e:b6:a9:6c:b3:a9:5f:
88:08:62:66:5f:af:2a:1b:54:8b:b1:5f:ca:04:7c:f2:8c:23:
4e:e0:fa:fb:9d:fa:e8:20:06:8f:b1:4a:3a:d0:5d:94:de:1d:
d4:1c:b3:a2:04:13:6a:08:02:c6:04:79:5f:0c:9b:c6:1f:a3:
77:c8:58:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:02:56 2026 by rpki-client