Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
File: vJldFVAngKzfe25qGGXttaDn3Es.mft (raw, json)
Hash identifier: rHpbfTTF9cOluKRjlFmp0w+aHyZR/NjnkwbxOQyAMco=
Subject key identifier: CD:8F:D7:07:FC:E3:26:55:07:BE:DF:9F:46:C5:42:9B:31:C3:22:C5
Authority key identifier: BC:99:5D:15:50:27:80:AC:DF:7B:6E:6A:18:65:ED:B5:A0:E7:DC:4B
Certificate issuer: /CN=bc995d15502780acdf7b6e6a1865edb5a0e7dc4b
Certificate serial: 019D9774B399BCB356670CD4FAFA33D206D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
Manifest number: 0676
Signing time: Thu 16 Apr 2026 18:01:40 +0000
Manifest this update: Thu 16 Apr 2026 18:01:40 +0000
Manifest next update: Fri 17 Apr 2026 18:01:40 +0000
Files and hashes: 1: LgX3EnuU8OfYYtzP7MkhOHIuG6k.roa (hash: tdx965ReIy+ujDSCSzvpO67kGikMuRqJQAFubursvgs=)
2: gzoeZ2AgO1ey7ZNcukJz3zjT1LY.roa (hash: argro5YsxjIunpkmHi4BZRWmPpTrNV/wF+jpyXPN3DM=)
3: vJldFVAngKzfe25qGGXttaDn3Es.crl (hash: +7Z8vIUpMixo7fvYPh10wHahKE2VfqwAYTSIuJcZPoA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 18:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:74:b3:99:bc:b3:56:67:0c:d4:fa:fa:33:d2:06:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc995d15502780acdf7b6e6a1865edb5a0e7dc4b
Validity
Not Before: Apr 16 18:01:40 2026 GMT
Not After : Apr 17 18:01:40 2026 GMT
Subject: CN=cd8fd707fce3265507bedf9f46c5429b31c322c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:22:e1:9e:47:ca:89:76:38:aa:42:21:21:5b:
91:1f:e2:0e:cd:cb:f5:0f:f0:65:eb:2d:7f:c7:4b:
57:8d:58:d8:f2:da:54:7a:30:7d:c4:5b:10:8f:dd:
9b:84:d2:37:e1:42:d6:04:b1:19:a5:51:23:4e:50:
7c:12:a0:25:15:44:26:d0:86:00:35:67:bc:e5:8a:
d7:9f:b4:f8:e2:d5:ba:23:75:c3:91:24:1b:f8:e9:
a2:82:2e:b8:ed:f7:cf:90:02:49:73:ee:ab:57:c2:
17:43:2c:a9:ee:b0:29:8c:36:66:36:a9:89:95:67:
84:ce:e3:75:e1:b0:56:52:7f:6f:e5:43:40:14:aa:
94:d7:d4:e0:a1:44:e0:67:44:8f:2c:b5:9b:c9:aa:
a4:b0:fa:df:73:69:bb:26:cb:06:f6:24:16:8e:5b:
c5:4a:cf:5e:92:fb:71:93:5c:c6:66:e1:72:af:0f:
1e:e7:cd:e5:cb:25:90:1b:b5:a4:82:7e:cd:d2:8f:
0b:05:a0:ed:2f:45:09:e2:7c:e7:47:76:cf:53:d5:
34:4c:c1:9f:5e:ac:fa:d3:2a:ee:fb:e5:63:4a:ad:
78:39:89:10:a9:e4:49:70:be:9b:68:bb:40:38:cd:
b9:06:0d:4e:bd:ea:9c:4c:61:e6:9c:36:28:5f:be:
86:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:8F:D7:07:FC:E3:26:55:07:BE:DF:9F:46:C5:42:9B:31:C3:22:C5
X509v3 Authority Key Identifier:
keyid:BC:99:5D:15:50:27:80:AC:DF:7B:6E:6A:18:65:ED:B5:A0:E7:DC:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:89:45:3c:e5:91:59:60:8a:77:4c:ad:90:56:50:7f:c0:1e:
f0:6d:93:b2:12:a5:60:95:ea:6e:bd:76:3a:07:fd:e8:fe:0b:
35:4d:be:bd:6c:46:1e:d4:fc:78:30:08:b4:0d:a8:88:08:60:
46:93:88:d1:b5:69:cf:17:25:64:36:bc:3e:d4:bd:83:e2:0b:
f3:59:54:4a:d4:1e:bd:e8:c3:2e:90:ef:bb:28:42:fe:bd:16:
c7:d2:f0:3b:d8:45:a0:17:16:5a:f2:6e:b0:ba:78:e8:8b:fb:
56:e4:91:01:f6:2d:55:ef:47:0b:fd:bc:c1:bc:2a:aa:68:80:
1f:38:af:fa:db:ec:15:c1:41:e0:89:2c:9d:12:26:e4:47:72:
2c:eb:b5:fd:7a:a5:e8:16:89:b8:6c:dd:89:df:4c:f9:1c:19:
dd:68:80:f9:b4:08:e5:a8:03:f0:2c:33:f4:d6:11:20:58:a9:
3f:94:ca:30:c4:fc:81:74:6a:b5:9a:b4:c6:e8:77:a9:39:5a:
38:3b:f2:1f:da:6c:7d:7b:2a:17:70:15:9e:c5:36:4d:33:38:
ed:50:27:2a:c2:eb:f6:85:ba:b1:31:e4:6c:e8:4c:5f:2c:7e:
10:d2:39:60:08:a3:16:ea:4d:86:98:71:7e:c0:ea:b9:b1:79:
2a:f0:95:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:43:05 2026 by rpki-client