Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
File: vZALuaxgacUTtYLWH9gezNVhpWc.mft (raw, json)
Hash identifier: 3+nRQt3LcOzqsOUhLr8D6Ifl34pdCoUn7s/xV4n2sXI=
Subject key identifier: AF:36:B4:72:73:96:7B:97:D1:C8:19:D6:47:00:55:DD:A8:C1:97:8B
Authority key identifier: BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
Certificate issuer: /CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Certificate serial: 019EC0DB993F31F956898628F3049EB1A178
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
Manifest number: 18DA
Signing time: Sat 13 Jun 2026 12:01:17 +0000
Manifest this update: Sat 13 Jun 2026 12:01:17 +0000
Manifest next update: Sun 14 Jun 2026 12:01:17 +0000
Files and hashes: 1: Hj4v62AOdoRZqYCBUDTjMFLo8KI.roa (hash: YWbpGzjtAJu7tqoItoovhEd5x36ZXMAx6yUUYU//amY=)
2: vZALuaxgacUTtYLWH9gezNVhpWc.crl (hash: dRaxfX9Qcj4iZ28Se9FL/tH/drMkxbR3bZsQv4tz64w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 12:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:99:3f:31:f9:56:89:86:28:f3:04:9e:b1:a1:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Validity
Not Before: Jun 13 12:01:17 2026 GMT
Not After : Jun 14 12:01:17 2026 GMT
Subject: CN=af36b47273967b97d1c819d6470055dda8c1978b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:ec:60:e8:f1:17:50:c5:d2:e2:7f:6b:1d:4d:
c9:e5:c5:07:1c:92:04:74:a3:5f:7b:65:38:0e:5c:
60:22:ff:33:52:62:9d:96:bb:e3:57:20:d1:ed:b0:
b3:25:85:d5:6d:26:3d:f1:e7:a4:04:e4:dd:c3:d8:
40:b5:d3:04:b5:0b:0c:87:48:91:f6:ca:a6:a2:a8:
66:a9:10:f1:a6:dc:94:c5:90:af:15:1e:bd:8f:32:
7f:6c:5c:09:f7:ec:b6:6c:f4:e6:1e:b3:42:d3:10:
3e:3f:f8:14:d2:60:3b:88:3a:37:36:8a:2b:35:3c:
a5:12:90:59:31:cf:dc:b1:73:24:74:a1:85:61:09:
87:b9:45:54:1a:39:04:43:48:de:c4:16:fb:39:a2:
5a:e1:28:75:a2:aa:c2:72:9f:aa:2d:6e:2e:80:c7:
fb:21:e4:33:84:d5:83:15:c9:ce:41:99:1b:03:f0:
93:cc:5e:d4:52:e9:76:17:ab:b4:2f:cb:7f:3f:49:
41:ff:6f:7a:19:64:d1:dc:6b:cf:6c:8e:c8:b4:c0:
d9:a9:34:da:4e:7f:62:49:07:27:1a:2e:2c:43:70:
3e:09:c5:15:a7:16:47:8d:9b:84:ef:d5:05:bc:e6:
2c:d3:5a:0d:31:53:3c:5b:48:c2:ca:00:45:22:84:
18:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:36:B4:72:73:96:7B:97:D1:C8:19:D6:47:00:55:DD:A8:C1:97:8B
X509v3 Authority Key Identifier:
keyid:BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:d9:4c:9e:83:bf:db:5d:04:c7:76:b4:ff:34:93:a1:ea:a6:
d3:98:c5:a0:63:0b:7f:61:0b:75:7d:02:59:d7:c4:fa:43:95:
4f:df:1b:34:34:f6:f1:80:ab:fd:9b:4b:d9:08:c0:41:3d:bf:
54:b0:92:ba:39:08:53:f9:3e:20:cc:67:df:a7:56:c9:5f:6d:
f7:48:6b:5c:31:87:bf:ff:d5:19:34:ea:da:b4:84:ee:28:74:
36:28:b5:20:32:b6:34:31:0c:79:44:e1:f1:ef:b3:5d:63:66:
ec:a5:61:46:cc:90:c8:d3:31:c4:43:ea:6d:23:0c:91:16:3d:
ce:83:37:9e:fb:54:31:6c:ca:0e:bc:86:31:75:d3:6d:28:e5:
b2:c3:c5:3e:3a:76:96:ca:0f:be:bc:ee:b9:9a:ce:a8:94:ca:
9f:61:4a:55:1a:1e:b4:6e:32:f8:82:fd:e2:37:59:19:8a:02:
73:38:45:e7:7a:0e:67:51:c0:c5:21:32:b2:fc:f1:90:7a:37:
f0:3b:23:d6:12:e9:1a:e4:93:e4:ea:27:33:e6:5a:92:41:5d:
92:9d:b2:09:f6:5e:ff:ca:31:72:65:d1:c7:8a:41:3d:2a:2c:
7e:18:dc:ff:f5:cb:b7:25:75:1c:ee:b2:18:ce:4c:81:11:09:
20:4d:06:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 21:56:34 2026 by rpki-client