Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: uz0dvqX7CXVhknozXUqe6A2R4sGaHIxnMHA7Jbu749Q=
Subject key identifier: BD:B2:74:C5:F5:6B:1F:D4:19:FE:E1:1B:F3:96:4C:07:DA:57:EE:A2
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 019CAC46A1A1ADC8B0C958F0669473A5097E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0B71
Signing time: Mon 02 Mar 2026 02:00:35 +0000
Manifest this update: Mon 02 Mar 2026 02:00:35 +0000
Manifest next update: Tue 03 Mar 2026 02:00:35 +0000
Files and hashes: 1: 5TQ-JqFgF-IFdipnnBO-T6tTIiI.roa (hash: jvG5fPveO3vEmUkVM2g5EIXNmfe8tIUO+ydnKHanIQ8=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: XLgcnLNBImUbc8+zXi3zYMndANbDXaCClmmhItd2T+c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:a1:a1:ad:c8:b0:c9:58:f0:66:94:73:a5:09:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Mar 2 02:00:35 2026 GMT
Not After : Mar 3 02:00:35 2026 GMT
Subject: CN=bdb274c5f56b1fd419fee11bf3964c07da57eea2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:3f:6b:28:68:a4:80:8a:de:91:9a:6c:14:47:
5a:1b:aa:e7:cb:57:0b:11:78:a0:b4:da:74:9e:1a:
1e:ac:ea:70:b3:ec:78:af:18:48:e3:99:e3:11:73:
e3:cc:96:4b:fa:42:8b:3c:e0:e0:37:b8:2c:f2:e5:
d8:c6:76:a4:9b:43:3d:67:73:56:13:d2:5a:08:3a:
15:55:65:45:b6:df:2e:5d:5a:29:c1:bf:a4:09:55:
1d:17:f3:d3:01:a4:0a:43:ae:8e:40:12:94:83:80:
6a:89:df:06:5d:4f:81:13:8f:d5:c7:81:0a:51:7a:
44:97:9b:2a:ec:bf:6b:be:a2:55:9b:5d:7a:e8:55:
d3:b2:4c:fa:94:11:a1:ad:12:49:82:26:da:46:45:
ff:61:03:a0:65:05:31:7a:01:48:5c:98:cc:c2:48:
1c:dc:11:20:13:e6:28:2e:d0:8f:ff:3c:00:95:82:
49:cc:da:af:dd:fa:20:91:02:37:0b:d0:21:e7:31:
cd:f9:73:3b:ca:5b:8f:44:55:a0:6a:0a:e2:3d:f9:
6a:fe:56:b1:16:0b:84:26:70:a2:8a:03:44:8c:0a:
81:36:5c:c9:25:fa:87:6d:79:88:3d:70:0c:96:72:
2e:35:5f:48:9d:2e:71:da:63:cb:57:6f:88:0c:dc:
9b:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:B2:74:C5:F5:6B:1F:D4:19:FE:E1:1B:F3:96:4C:07:DA:57:EE:A2
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:00:95:b5:85:64:e3:d3:fa:1a:f5:6b:2d:99:fc:26:24:5c:
cd:a8:d7:5b:39:7a:aa:84:92:a9:71:bf:84:c1:de:46:3b:9b:
47:a3:39:46:49:2a:73:c0:34:99:4b:0a:26:40:db:97:c0:68:
d6:93:a5:95:bd:b5:2a:4c:2c:08:e8:59:4b:dd:64:01:58:26:
09:89:07:3f:1e:8f:cc:7d:58:55:03:38:85:c6:2b:1a:cd:ce:
c6:69:e8:3f:34:8b:9e:53:e0:ba:fb:b0:d0:a5:cf:82:f7:cd:
be:c3:db:4e:43:cc:a7:a6:69:d3:c5:57:ec:62:ca:3b:c2:a7:
d8:a9:d8:84:a2:e5:ed:99:fd:64:d0:2f:f2:cc:a5:ad:70:72:
97:bf:9c:95:87:34:9a:51:fa:c5:90:3b:05:03:83:53:0a:db:
67:77:62:70:52:f7:02:a2:3a:d7:31:96:e1:8b:4f:30:11:6a:
6e:61:2c:09:f0:5c:0d:db:01:d6:84:e9:83:ef:10:6d:55:fa:
35:91:2a:21:d7:f4:57:7f:ea:c3:c2:c8:f2:fc:31:f5:f7:00:
f4:cf:4c:90:0a:e8:9c:c5:43:d9:e1:47:11:39:e1:d3:23:42:
5a:22:04:0c:be:8d:c3:c0:16:e9:1a:c0:0e:b9:bd:7a:70:4f:
87:82:f2:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:20:07 2026 by rpki-client