Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
File: vZALuaxgacUTtYLWH9gezNVhpWc.mft (raw, json)
Hash identifier: gRpeXzMyzcCHa7zUkXxiwFAh92eJ8ujVJ88HlOF7vCs=
Subject key identifier: 8B:ED:03:42:87:1D:34:A8:7E:20:19:AE:F6:26:99:6D:20:F9:62:EC
Authority key identifier: BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
Certificate issuer: /CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Certificate serial: 019DA30A9B6163CA9E76DA43A6C68C0CBC28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
Manifest number: 1846
Signing time: Sun 19 Apr 2026 00:01:14 +0000
Manifest this update: Sun 19 Apr 2026 00:01:14 +0000
Manifest next update: Mon 20 Apr 2026 00:01:14 +0000
Files and hashes: 1: Hj4v62AOdoRZqYCBUDTjMFLo8KI.roa (hash: YWbpGzjtAJu7tqoItoovhEd5x36ZXMAx6yUUYU//amY=)
2: vZALuaxgacUTtYLWH9gezNVhpWc.crl (hash: UvVvoCqMTdOV7buks8b/gspM9e4BG9Fkc+4wMsQ8g/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 00:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:0a:9b:61:63:ca:9e:76:da:43:a6:c6:8c:0c:bc:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Validity
Not Before: Apr 19 00:01:14 2026 GMT
Not After : Apr 20 00:01:14 2026 GMT
Subject: CN=8bed0342871d34a87e2019aef626996d20f962ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:23:27:82:d8:91:34:07:61:cd:f2:94:5e:ad:
6f:83:4a:cc:12:3d:8b:69:f6:fa:0b:94:dc:4c:bb:
1f:b0:90:e1:a3:73:f0:2b:7e:b5:67:c2:96:46:e9:
fc:ec:ee:5e:f0:4d:ab:bf:3b:90:d9:d5:dc:18:16:
5b:ef:bc:ce:73:86:90:72:d4:b1:cc:02:7f:b8:9a:
32:2f:3c:8f:2c:d5:39:3f:27:07:12:8e:59:88:6b:
81:48:21:22:09:dd:a8:64:15:db:fd:5a:21:9c:4d:
35:39:13:e6:62:e5:7a:5a:28:57:21:7a:33:09:5d:
6a:30:f7:44:75:e8:ac:4c:02:a5:c2:e6:8f:27:86:
6f:e9:9d:cb:fa:4e:31:15:af:9f:ac:69:67:55:32:
94:f4:f0:89:1f:81:92:6d:ed:96:f4:3c:ca:cf:1b:
2c:4d:16:32:72:aa:d7:31:08:03:65:50:ff:42:c8:
ea:a6:b2:1e:69:4d:bf:4a:8f:ca:ba:5b:04:f0:22:
b4:de:ef:2b:d4:b2:2b:a7:8e:4e:19:bc:6b:94:cd:
4e:eb:9b:9f:8b:0e:93:a4:87:ae:1a:e4:c6:05:3a:
1e:95:f3:cf:5b:18:93:4c:11:a6:a4:0c:34:31:d8:
6a:43:7d:54:d6:97:de:01:7b:c2:88:c8:25:10:4f:
be:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:ED:03:42:87:1D:34:A8:7E:20:19:AE:F6:26:99:6D:20:F9:62:EC
X509v3 Authority Key Identifier:
keyid:BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:f7:e8:19:45:15:67:e0:54:41:a3:16:6a:32:41:14:37:f2:
5c:ab:d4:0b:ca:e3:b7:45:ef:d1:db:23:ac:9c:ef:79:88:4d:
3a:38:7b:9d:2a:22:45:65:22:c4:75:39:e1:ab:df:19:76:c7:
1b:26:cf:8a:79:11:76:8e:bb:55:21:c6:7a:db:4f:ff:7f:5d:
7d:76:04:d8:63:28:7e:e7:a6:2b:3d:c2:f5:51:90:ba:b1:40:
f2:aa:ca:f8:f2:bb:4a:3b:6d:64:48:1d:29:0c:4e:fe:7b:89:
74:1b:65:dd:17:8c:89:a9:a7:c3:88:da:2a:58:2d:3e:82:e6:
0e:d5:79:70:c7:f0:29:ac:15:94:f4:7b:e4:6d:0f:23:09:3c:
7d:e6:b1:de:4a:c4:af:1c:6a:58:74:27:df:64:ee:f2:e1:76:
e3:4c:51:20:41:a2:06:ff:94:78:76:3c:19:a8:17:fa:5e:d0:
99:9b:2d:a4:5d:bd:a3:66:dd:48:fd:da:75:1d:43:e3:3f:cc:
46:e6:4f:3a:c1:ba:20:f8:4d:fd:a1:f4:a3:b2:78:b2:e5:f9:
c5:c9:59:ee:29:50:6f:27:0f:a4:52:62:b6:47:c6:f6:26:c5:
a3:ed:1d:2d:91:af:34:e7:ab:0d:da:a7:31:2a:a6:e5:f5:a3:
b4:c4:17:2c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:01:16 2026 by rpki-client