Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: jaCCjWxlqwRhnDdh9AVy4zaAkyC810I3AZnXIvuBLSU=
Subject key identifier: A6:69:0F:37:9E:87:14:3F:7A:73:EB:A7:E5:D1:D6:EB:77:EA:54:3B
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 019D99D068CCC5B75A871CE656203AFCA612
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0BEC
Signing time: Fri 17 Apr 2026 05:01:05 +0000
Manifest this update: Fri 17 Apr 2026 05:01:05 +0000
Manifest next update: Sat 18 Apr 2026 05:01:05 +0000
Files and hashes: 1: 5TQ-JqFgF-IFdipnnBO-T6tTIiI.roa (hash: jvG5fPveO3vEmUkVM2g5EIXNmfe8tIUO+ydnKHanIQ8=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: JkQw+KkJe//NoSAB06XHsFID05Q3H3ZM9TbwK+l9oBE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:68:cc:c5:b7:5a:87:1c:e6:56:20:3a:fc:a6:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Apr 17 05:01:05 2026 GMT
Not After : Apr 18 05:01:05 2026 GMT
Subject: CN=a6690f379e87143f7a73eba7e5d1d6eb77ea543b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:e6:72:7b:d2:0f:1c:84:da:4d:85:96:0c:b4:
25:eb:79:b8:79:1d:dc:c8:75:d6:db:1f:be:f3:5f:
c5:af:6e:56:8a:9c:ec:87:f9:77:3b:5c:d6:4d:7b:
e9:7b:5a:31:94:6a:0e:99:71:9d:9d:58:57:59:92:
0b:06:e1:1b:a4:1a:5b:d1:d6:93:28:0b:26:fe:72:
ac:9a:fa:9a:18:19:a5:52:e4:38:62:a3:44:16:4a:
87:25:f7:e0:66:83:a1:fe:4f:ad:9c:b5:a6:95:8a:
2f:8e:1b:d0:14:5a:bc:49:a6:11:50:35:e1:38:e6:
68:8f:a7:68:4e:20:6e:5c:2c:78:23:66:55:0d:70:
0e:8a:81:4e:36:3e:7e:4a:9e:3e:6b:23:21:8b:8d:
b1:ae:2f:91:95:5b:e8:bb:67:db:93:2c:e5:40:67:
08:b9:6d:10:1e:86:0a:42:5e:a0:32:65:48:50:4f:
7b:60:8a:d4:89:e2:e8:26:1b:ea:9d:a5:5c:78:8f:
d2:98:2e:0f:1e:d8:c7:bc:63:42:6b:fa:72:ce:d5:
94:07:f1:0b:b4:e5:fc:68:af:b0:67:42:be:18:08:
0f:7d:d0:ec:2c:17:f5:89:94:d0:97:78:e5:a8:d8:
4d:2d:43:24:b4:30:ec:02:05:3a:2b:a2:b9:79:20:
93:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:69:0F:37:9E:87:14:3F:7A:73:EB:A7:E5:D1:D6:EB:77:EA:54:3B
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:3b:87:75:50:16:78:a3:1f:5c:79:41:51:f2:36:e1:f1:c4:
a5:c2:1e:4b:cf:00:95:30:84:b3:8e:c2:d3:08:f0:cf:b9:64:
fc:1f:71:48:f8:19:a3:7d:5d:e7:6a:51:10:74:0f:0c:86:cd:
39:79:e0:f7:03:1a:dc:28:82:c2:96:cf:c4:29:27:1e:a0:51:
51:33:cc:47:10:a9:dd:6f:c0:9e:a2:d9:ac:61:aa:db:cd:d4:
2e:35:12:13:1b:af:30:8a:e7:8a:7a:ae:84:97:cd:32:e5:dd:
ff:be:fa:75:b1:c0:fa:d4:cf:02:79:42:5d:2b:f2:ea:be:ac:
b0:e2:ca:f4:75:47:12:37:33:20:31:ab:bb:bf:14:b9:d1:75:
2f:31:16:fa:bf:3a:4f:c5:df:b7:c0:d6:42:b5:71:fd:c9:65:
75:90:37:97:fd:6e:ff:19:5c:62:f6:18:5b:0d:71:3b:1a:71:
4b:6f:98:9e:d9:6d:e1:96:42:58:d4:5f:09:cf:51:9e:1d:d5:
0d:ab:d4:c7:3e:53:42:9d:05:06:a0:20:d3:6c:4f:52:48:53:
80:aa:32:8c:af:77:66:c2:1b:35:b4:dc:46:c0:a3:92:75:e0:
cc:88:61:41:a4:28:ee:17:cd:fe:32:77:38:37:a1:2f:35:38:
5a:a1:4a:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:24:37 2026 by rpki-client