Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
File: vZALuaxgacUTtYLWH9gezNVhpWc.mft (raw, json)
Hash identifier: R4i7WFdNtD9g/1knv/cov+zOkcZQJP5MOD8pvPq2zqU=
Subject key identifier: 90:26:8C:58:88:28:9F:F5:79:E9:EB:2E:A5:2D:56:F6:20:69:33:40
Authority key identifier: BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
Certificate issuer: /CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Certificate serial: 019CAFB57B441BE20D42773629249E61A7A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
Manifest number: 17C8
Signing time: Mon 02 Mar 2026 18:00:32 +0000
Manifest this update: Mon 02 Mar 2026 18:00:32 +0000
Manifest next update: Tue 03 Mar 2026 18:00:32 +0000
Files and hashes: 1: Hj4v62AOdoRZqYCBUDTjMFLo8KI.roa (hash: YWbpGzjtAJu7tqoItoovhEd5x36ZXMAx6yUUYU//amY=)
2: vZALuaxgacUTtYLWH9gezNVhpWc.crl (hash: YqziqTs1KWJq8k9ScUjbGyKlN8dYnShMLePevnxdfNA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:05:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:b5:7b:44:1b:e2:0d:42:77:36:29:24:9e:61:a7:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Validity
Not Before: Mar 2 18:00:32 2026 GMT
Not After : Mar 3 18:00:32 2026 GMT
Subject: CN=90268c5888289ff579e9eb2ea52d56f620693340
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:62:96:74:0c:dc:0b:48:bf:92:f0:7f:78:99:
dd:bd:2a:48:f2:c1:a5:c6:ad:91:80:c1:e9:4a:d9:
a0:6a:b4:26:1c:4a:f7:13:db:0d:65:7b:52:b7:80:
d7:88:97:9f:9c:4d:aa:56:9f:5b:51:7d:3e:01:b7:
17:8a:f2:8e:40:28:51:97:30:81:ef:48:f7:6c:4f:
40:08:76:d5:da:31:16:92:61:6c:32:7b:18:06:07:
01:3c:46:d0:eb:cf:58:3a:64:d1:53:46:80:6b:d0:
d2:ec:cc:08:a0:ac:0a:dc:16:7b:86:b8:5c:6b:26:
a1:ba:67:7d:03:22:84:81:6b:27:98:73:b9:ea:86:
5d:89:cc:e0:26:97:40:3b:77:b9:ca:0f:50:88:c2:
af:07:33:93:c4:6a:07:8a:9a:ab:c9:31:0f:24:0f:
e1:63:f8:1b:77:7b:5f:12:60:76:c8:28:59:da:e9:
9e:80:cd:c2:66:30:7a:bf:e3:28:cd:f5:d7:c0:63:
82:49:c0:e2:4f:71:58:8d:58:d7:4a:68:f3:45:84:
f6:4d:8c:dc:3d:6c:b8:75:67:98:36:b7:e4:2f:31:
2c:a9:2f:f3:2c:f7:3f:c9:7b:7c:50:e5:41:91:a7:
e9:60:c1:65:3d:f1:81:1a:5e:36:f0:dc:55:66:40:
86:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:26:8C:58:88:28:9F:F5:79:E9:EB:2E:A5:2D:56:F6:20:69:33:40
X509v3 Authority Key Identifier:
keyid:BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:c2:c2:61:0e:be:9c:28:20:1f:c3:af:1e:cd:dc:d6:d8:39:
ca:6d:68:53:90:d2:85:19:d6:35:b8:31:be:ed:43:2e:60:74:
fe:10:7f:8f:20:c3:c5:cc:0e:e9:bf:73:63:1f:86:3f:e5:be:
32:94:b9:17:14:55:8c:78:57:1d:5d:65:3b:07:2a:39:7a:7a:
9a:a1:24:ad:f3:7d:b1:7c:95:49:fa:cb:ef:a1:cc:d8:23:5e:
ed:87:cb:dd:e2:10:a5:2f:66:e2:51:69:e1:c4:cb:a6:f8:17:
cd:0a:45:b3:47:08:c0:2f:53:72:4f:50:b4:e2:e5:6f:fa:a5:
d1:b1:68:e7:b6:6c:17:0d:9a:27:9d:e8:96:8d:02:14:f9:b1:
27:20:b5:4b:c2:ee:cf:73:7d:76:78:14:2b:8b:3d:6b:47:31:
31:d1:2f:13:b2:36:31:e0:4d:e5:51:b6:63:23:88:f9:c9:cf:
42:96:9c:b8:bf:7d:c7:c7:44:95:8e:42:a3:74:0e:29:12:9a:
bb:43:35:59:e7:1a:2a:c4:bb:21:b3:ed:24:98:ef:cf:60:00:
86:94:a6:ec:81:39:9e:dc:19:9c:4a:b0:75:a9:c3:a9:8a:df:
a4:1e:66:cb:c5:13:1c:61:88:87:5c:d0:3b:16:81:02:b6:65:
dc:9b:51:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 21:11:22 2026 by rpki-client