Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
File: vtJXlaaCsRmplIBal2V4U9dUoFw.mft (raw, json)
Hash identifier: jPfsDoxv+ADcUpt+oJcKcw6PH45tY9Z7sK6dJckx+AY=
Subject key identifier: B4:1B:D8:9D:B8:8C:F0:0A:CF:08:9C:DD:A7:EA:D3:1A:0A:87:1C:A3
Authority key identifier: BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C
Certificate issuer: /CN=bed25795a682b119a994805a97657853d754a05c
Certificate serial: 019D9773A160B003AF4F92E58996C80DDD11
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
Manifest number: 0D4E
Signing time: Thu 16 Apr 2026 18:00:30 +0000
Manifest this update: Thu 16 Apr 2026 18:00:30 +0000
Manifest next update: Fri 17 Apr 2026 18:00:30 +0000
Files and hashes: 1: vtJXlaaCsRmplIBal2V4U9dUoFw.crl (hash: NaCOu/LzInlzeAXBbdlwXXH4mkeNC2Cz6eShq/8uyvI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 18:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:73:a1:60:b0:03:af:4f:92:e5:89:96:c8:0d:dd:11
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bed25795a682b119a994805a97657853d754a05c
Validity
Not Before: Apr 16 18:00:30 2026 GMT
Not After : Apr 17 18:00:30 2026 GMT
Subject: CN=b41bd89db88cf00acf089cdda7ead31a0a871ca3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:dd:06:29:92:08:71:fb:4a:f9:61:81:6d:4b:
b0:ee:26:7a:05:90:3f:75:16:3f:06:73:d2:d3:78:
3f:5b:b0:f7:be:a0:52:a3:e7:42:9f:92:ae:b2:46:
de:1b:68:d9:68:be:db:bc:45:27:ce:d3:53:a9:9f:
aa:b1:d6:34:3d:3f:1e:94:3d:38:61:0b:21:35:7f:
df:24:b8:c2:93:a8:f0:fe:32:e2:39:cf:f9:49:5a:
69:c5:09:5c:de:45:39:3a:cc:ac:ef:26:71:db:2c:
a1:dc:94:73:92:05:94:e4:7c:7c:1f:c8:11:bc:9c:
83:d6:48:fc:f3:a0:fc:50:f5:6b:7e:c8:58:98:31:
18:c8:07:c1:31:db:f6:ea:d2:3f:78:e7:a6:fd:d6:
51:c8:1b:cd:ef:36:de:2e:83:dc:45:3f:36:19:49:
b0:e6:91:eb:95:86:9d:09:50:1f:05:d5:0a:4c:8d:
63:2e:d6:10:b6:29:42:90:19:f7:93:ed:5a:6d:0d:
85:70:96:05:f6:4c:24:3d:f3:f1:0e:96:e3:e3:1e:
53:0c:85:18:c0:56:b8:0e:24:2a:7e:f5:0a:ec:5b:
a6:a7:56:67:1f:43:f3:74:0e:2e:f0:84:f0:6d:16:
1c:c5:93:87:c5:2b:79:6f:ae:6b:63:3f:0e:b3:9e:
75:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:1B:D8:9D:B8:8C:F0:0A:CF:08:9C:DD:A7:EA:D3:1A:0A:87:1C:A3
X509v3 Authority Key Identifier:
keyid:BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:93:bb:4c:5a:8c:0d:79:74:3d:95:d5:53:50:40:ff:e4:68:
60:fe:32:dd:48:4f:57:ef:8f:d1:62:87:4a:ca:dd:e1:63:c2:
48:fb:d5:75:f4:01:58:c7:66:20:e0:50:e9:a0:db:8e:93:ab:
34:d5:4c:01:26:f7:ce:7b:42:c3:49:6b:91:22:9b:ef:21:c0:
9d:a8:26:5f:13:3f:f9:e4:ce:29:4b:d8:70:3c:6a:96:85:fb:
bf:2f:af:f5:5b:44:c4:de:e3:c7:6f:b6:a5:a8:aa:12:e4:cb:
44:a8:c9:c7:19:40:d9:6b:cf:b0:cf:e8:95:5c:ff:45:87:32:
38:c5:5e:f2:56:14:6b:61:97:6b:e9:a2:24:9a:f4:2e:a5:3a:
63:c9:54:fe:26:0a:91:b9:5b:ea:5e:f9:c4:a7:ac:03:d5:ea:
c1:2a:19:39:6d:9a:54:c9:51:d3:03:f4:b3:3b:cb:f5:04:11:
25:81:3e:4c:7c:25:e4:69:b7:09:99:ae:0c:5e:23:c6:af:d7:
65:d7:b5:36:57:9f:09:46:28:7f:15:1a:fc:7b:cc:c3:26:9f:
d7:6a:8d:09:97:37:46:a8:51:b0:3f:7c:b0:5c:50:af:7e:51:
4d:2e:b6:55:43:60:a5:e5:e4:bd:66:8b:f6:28:78:f0:9d:e3:
71:b6:6d:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:42:25 2026 by rpki-client