Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: +YkP5GAelf5bV44ph+P6IKuSCp5nEay0zljPSRzN1rg=
Subject key identifier: 73:4E:77:3D:00:6B:53:49:EF:68:70:09:FA:7C:DD:C5:AF:95:98:61
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 019EC148DCD7AEDDA09BF2A83D700F707628
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0C85
Signing time: Sat 13 Jun 2026 14:00:38 +0000
Manifest this update: Sat 13 Jun 2026 14:00:38 +0000
Manifest next update: Sun 14 Jun 2026 14:00:38 +0000
Files and hashes: 1: 5TQ-JqFgF-IFdipnnBO-T6tTIiI.roa (hash: jvG5fPveO3vEmUkVM2g5EIXNmfe8tIUO+ydnKHanIQ8=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: +O2SdSgE84hlPyb+Uixz/AzIDIQ8w2+oea5BZyyFtnY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:dc:d7:ae:dd:a0:9b:f2:a8:3d:70:0f:70:76:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Jun 13 14:00:38 2026 GMT
Not After : Jun 14 14:00:38 2026 GMT
Subject: CN=734e773d006b5349ef687009fa7cddc5af959861
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:bc:ff:21:a7:b7:05:54:7a:3e:9d:6c:c1:5b:
b7:fb:b6:f4:17:fb:df:bc:59:b2:5a:f3:c4:0f:67:
ce:c9:c5:05:94:11:81:dc:3a:bd:38:6c:27:57:67:
c9:1d:2f:4d:6c:4f:52:2a:b1:c2:33:be:7a:06:1b:
31:fc:2a:22:8a:d6:15:68:7a:01:ba:b6:60:e4:b4:
78:51:b6:1c:d5:5c:21:ab:72:81:96:0f:0f:49:2a:
09:b5:af:14:98:73:bf:90:25:6a:a0:36:66:c9:25:
fb:87:77:02:ce:06:27:66:92:86:6f:5a:9d:52:f8:
3c:77:a1:be:9b:79:a8:1e:82:88:e7:a2:25:a4:ef:
fb:5e:55:a2:91:c2:af:07:c0:da:bb:12:0e:1d:39:
e9:c9:28:8f:fe:4b:3d:ea:66:45:3f:ee:3d:83:22:
34:9f:c4:e5:e8:17:e8:fd:79:c7:ac:c7:16:0b:ef:
46:de:76:31:26:97:db:04:e0:00:1f:3a:6a:8d:ca:
06:74:55:6b:fd:9b:b4:1b:e5:96:41:05:67:fe:d3:
9b:dc:8d:8c:9a:56:fc:e9:be:b5:6f:a2:f4:7c:b5:
a0:7c:5d:33:c8:c1:13:70:4a:3d:3a:f6:07:22:3c:
8f:bd:cf:b4:ff:3a:75:0e:d0:bc:e3:33:aa:41:35:
f1:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:4E:77:3D:00:6B:53:49:EF:68:70:09:FA:7C:DD:C5:AF:95:98:61
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:2f:03:80:c8:db:6d:8d:bd:c1:59:1d:ab:9a:07:d4:e1:c3:
86:ef:c8:f3:59:03:9a:40:8e:b9:d8:1d:e7:10:d1:4c:be:00:
ce:15:a9:b7:e8:cb:da:31:1c:54:ec:37:e5:fd:38:0e:a2:14:
e7:43:d6:f6:40:fe:7d:55:2a:a6:39:54:e5:bd:a0:bf:8e:9b:
57:2a:21:79:d0:75:17:96:c9:9e:5a:e4:af:8a:56:45:2f:4e:
4f:01:9a:19:17:0c:7e:e4:3f:60:39:38:09:8f:93:07:b4:b3:
6b:96:cc:24:11:1d:8a:5f:46:84:e4:87:e9:37:74:10:54:ee:
9f:12:c9:a1:ef:24:dc:3b:91:5a:5d:fa:6d:9a:c3:67:cf:bb:
14:60:fd:f0:96:11:9f:2e:f2:74:90:a4:6a:0b:d6:45:16:21:
56:6f:8d:3b:02:a1:53:6b:d9:ec:ee:f3:6f:4d:ea:19:e7:40:
7d:a1:c3:db:f2:0d:90:1e:ec:64:6f:a4:0f:8e:f0:72:c0:11:
7b:1a:7c:c2:aa:9a:96:8b:78:a6:ef:b8:6f:8a:92:49:71:68:
a9:bd:95:bf:2f:bc:dc:7b:c3:b4:a4:93:0d:aa:63:fb:78:3d:
29:6f:be:3d:b0:f5:a1:9d:19:4c:e5:31:cc:58:ae:79:f9:35:
94:90:3a:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:46:49 2026 by rpki-client