Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
File: vh89wilTBsx9-HLO7M1olNDg6uY.mft (raw, json)
Hash identifier: oxWlDQz+8LA3VWD7ZlZyzYVnS/pLGWGbSQDDBbho4oQ=
Subject key identifier: 0B:7C:81:C7:5B:90:6A:C7:61:4B:A4:63:81:F8:62:9C:02:81:EE:3B
Authority key identifier: BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
Certificate issuer: /CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Certificate serial: 019E1F119784EAC16597C2BA751B1BEEDC30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
Manifest number: 0A25
Signing time: Wed 13 May 2026 02:01:46 +0000
Manifest this update: Wed 13 May 2026 02:01:46 +0000
Manifest next update: Thu 14 May 2026 02:01:46 +0000
Files and hashes: 1: 2BE8OL8UUysTCY2ZZS0Z-hyf26U.roa (hash: FNDNGh9+uGviPmZxVI3wwzrMpVPUZPSayc/06tScadg=)
2: RUhDge75ZRg2jm6GkiDeW_q_9R4.roa (hash: 1Rm1MMHk+9+hgPs8tOVkUq4dP1nGXvpDaYqmiRr/RDc=)
3: vh89wilTBsx9-HLO7M1olNDg6uY.crl (hash: ztFvnCpvzBZT9pu+Cj5CJ37haw8cLiAoTPwUmbu4t5s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:97:84:ea:c1:65:97:c2:ba:75:1b:1b:ee:dc:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Validity
Not Before: May 13 02:01:46 2026 GMT
Not After : May 14 02:01:46 2026 GMT
Subject: CN=0b7c81c75b906ac7614ba46381f8629c0281ee3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:57:5e:42:10:ad:09:65:a4:8c:59:88:c1:22:
47:91:6a:d1:02:f0:1f:9e:ea:52:0b:88:6c:a4:94:
0d:a4:c1:98:68:bb:df:c9:b5:15:f6:1e:7a:f8:dd:
64:57:79:7a:16:5f:6d:57:57:5c:72:bd:57:dd:a0:
14:fe:5b:b3:a1:b3:a8:9e:ad:75:6f:2d:1d:74:94:
34:f3:a4:74:8b:99:e5:50:13:0a:b9:39:40:50:40:
3d:17:5a:21:f6:a5:05:2a:78:bf:7c:09:01:10:b4:
7e:b8:92:18:de:23:3a:8a:9b:44:5e:f4:9a:ec:03:
d4:60:11:1d:f6:3f:e1:33:93:79:71:60:5a:30:91:
1e:a7:ba:20:41:ec:ef:23:a7:5d:fa:87:b5:0a:94:
9b:78:de:14:db:f8:fd:3c:0a:e6:02:08:a9:88:d8:
50:76:d5:8f:40:ee:9a:92:ce:c3:d6:c6:54:8d:2b:
77:72:e9:2e:25:ae:39:81:00:e2:ac:44:76:af:19:
09:dc:a4:03:49:fa:e2:d2:7a:a5:16:3c:19:91:dc:
14:fc:ca:15:46:48:a7:16:7e:e0:cd:99:cd:ff:26:
23:8a:b9:55:15:43:d1:15:a0:de:61:49:0f:26:ba:
e9:e3:49:a8:e2:f7:3e:6f:ed:90:f4:14:a5:47:ea:
28:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:7C:81:C7:5B:90:6A:C7:61:4B:A4:63:81:F8:62:9C:02:81:EE:3B
X509v3 Authority Key Identifier:
keyid:BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:c1:d1:3c:21:d9:91:e7:43:7c:0a:37:8b:4c:2d:4f:ad:4b:
5a:a1:82:87:11:4b:86:d7:e5:6d:d1:b3:0a:d6:4c:52:60:51:
a2:64:e5:c5:25:72:8c:c3:f5:60:b3:8c:70:89:50:6e:d8:ae:
fd:cb:90:fd:98:bd:c1:a9:97:22:49:90:81:83:3c:3b:f6:cd:
c2:e8:48:68:c0:96:d1:91:87:ad:30:48:5f:63:dd:c7:22:c1:
cb:1f:1f:15:93:a0:5b:40:7a:6e:0c:b9:f5:f6:fb:ba:1d:f0:
54:e9:98:ec:be:98:20:d7:ef:16:39:99:0c:b9:b2:90:2c:e7:
57:bd:67:46:2d:e3:2c:97:07:1a:6b:be:6f:0f:59:3d:2f:3b:
d0:7e:ec:ce:73:32:45:e0:81:ed:ef:4f:71:9e:17:09:c4:ff:
18:13:d2:99:f4:d8:32:a4:14:1e:92:4f:ab:e8:44:fb:38:8d:
53:14:94:dc:5f:a2:d8:72:1a:d6:47:19:67:0b:99:43:02:f3:
10:c0:19:62:df:86:a6:c8:8d:b4:4e:d6:87:c6:64:50:47:fe:
85:c8:f1:59:55:57:44:51:b2:8a:46:49:fb:49:0e:09:57:c8:
12:89:44:36:9d:3f:b2:08:10:28:e2:d5:79:a4:90:10:01:5e:
ef:b6:dd:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:06:25 2026 by rpki-client