Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
File: vZALuaxgacUTtYLWH9gezNVhpWc.mft (raw, json)
Hash identifier: Thd/w49boy8/7xPSRLOToqM+b2EHog2+3e59qXAabkA=
Subject key identifier: 5E:24:18:AE:88:02:00:32:6C:EA:1E:3E:32:8B:F9:E9:9A:9A:34:FF
Authority key identifier: BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
Certificate issuer: /CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Certificate serial: 019CADC84784775ED53164D89BD5EBEB6ADD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
Manifest number: 17C7
Signing time: Mon 02 Mar 2026 09:01:49 +0000
Manifest this update: Mon 02 Mar 2026 09:01:49 +0000
Manifest next update: Tue 03 Mar 2026 09:01:49 +0000
Files and hashes: 1: Hj4v62AOdoRZqYCBUDTjMFLo8KI.roa (hash: YWbpGzjtAJu7tqoItoovhEd5x36ZXMAx6yUUYU//amY=)
2: vZALuaxgacUTtYLWH9gezNVhpWc.crl (hash: bmzp7Mcvpo0JMIlHtsoIxO0ROPS3oCZ8A6nWMeP0ptw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:47:84:77:5e:d5:31:64:d8:9b:d5:eb:eb:6a:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Validity
Not Before: Mar 2 09:01:49 2026 GMT
Not After : Mar 3 09:01:49 2026 GMT
Subject: CN=5e2418ae880200326cea1e3e328bf9e99a9a34ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:b7:d4:b0:11:ab:42:35:88:a1:d0:6c:66:f2:
bf:39:c8:dc:68:1e:3a:ca:c2:d3:0b:42:bd:0d:f0:
77:6f:4b:43:37:f0:ad:b0:4f:8d:7c:6d:d6:78:db:
56:b0:1e:83:c7:fb:fb:f8:c6:9c:57:73:92:a4:7d:
0c:14:41:9a:cd:57:6c:82:1e:8b:e4:ed:d5:dc:77:
0e:fd:61:2e:2b:be:74:10:6f:3c:54:f4:6a:41:80:
46:2b:92:e4:f0:c0:73:1f:59:89:b2:59:11:a9:24:
29:2e:b6:09:44:1d:11:aa:d9:df:41:79:4c:c0:2a:
dc:ce:70:a2:9b:70:0c:3c:6c:ba:78:16:b9:f5:82:
bf:e9:31:f3:45:5f:8d:6a:95:da:23:d4:2e:0a:e3:
9a:f9:47:75:7a:48:b5:27:1d:21:a9:ec:47:8a:53:
61:2e:16:b2:47:35:90:33:c8:b0:d0:84:12:ae:9d:
11:8e:28:65:5d:af:af:3d:cc:2c:20:df:43:72:9d:
6e:05:e5:b9:ff:eb:e7:22:33:1a:bf:b5:f7:7f:57:
e8:57:28:c0:59:05:45:63:04:1a:11:41:26:c9:91:
75:43:ba:c7:0f:77:31:76:38:30:d1:bc:51:ab:8f:
b7:2a:93:09:1e:7f:28:5e:7e:4d:60:60:3d:f6:5a:
c4:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:24:18:AE:88:02:00:32:6C:EA:1E:3E:32:8B:F9:E9:9A:9A:34:FF
X509v3 Authority Key Identifier:
keyid:BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:74:a0:70:9a:b4:b5:45:f6:5e:fe:11:11:d7:fc:b0:42:17:
be:ac:f2:7c:c9:61:0a:6b:c3:73:72:49:ab:88:69:0f:90:ae:
7a:6f:50:28:6d:f4:d6:93:7a:ef:12:d4:f1:c3:3a:cf:67:10:
56:1b:65:2f:15:31:22:2f:f4:92:84:7d:2f:94:41:bb:c1:6f:
73:5c:a2:15:1d:4c:58:d8:b7:30:77:f6:a0:7b:33:9a:f2:21:
4e:c1:25:34:b0:20:e1:51:c4:72:6c:45:56:de:23:ba:6b:b4:
3a:ad:48:18:90:fb:7d:d4:5d:04:29:4b:cf:18:fa:25:57:2a:
bd:bf:a5:ac:f8:15:5b:e2:a8:da:fe:37:d3:24:3b:dc:20:a8:
49:25:23:47:57:57:ec:a8:21:77:48:96:ba:17:5e:35:81:61:
7c:5c:81:e0:42:e7:b0:9c:78:44:9d:95:4e:ee:02:77:80:e7:
cf:56:64:7f:dd:5d:d7:7e:45:38:ec:8f:bc:24:4d:f4:f1:d2:
78:0e:d1:10:43:01:e7:ca:4e:7e:8d:b6:94:16:1f:6f:44:08:
3f:fb:a6:80:58:e2:40:e4:12:0c:f4:f2:d3:a7:b7:30:7b:0c:
55:bd:0c:e7:27:ee:81:d6:4f:19:5f:33:c2:e7:18:79:9a:fc:
39:c7:3b:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:41:21 2026 by rpki-client