Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
File: vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json)
Hash identifier: 57WQVZO3zElVq8lz+w8eJPMEoMuqKqq6yQNk84D5vmQ=
Subject key identifier: E3:81:8D:9D:6F:F1:A0:04:15:BB:03:45:0E:5A:3F:3C:74:A1:8A:F1
Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
Certificate issuer: /CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Certificate serial: 019D2960EF0935367B4F862AAA1A686C2F1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
Manifest number: 0AB3
Signing time: Thu 26 Mar 2026 09:01:51 +0000
Manifest this update: Thu 26 Mar 2026 09:01:51 +0000
Manifest next update: Fri 27 Mar 2026 09:01:51 +0000
Files and hashes: 1: FvWk7ZFUzYMXdurfDb5I7qSsm-w.roa (hash: qTbl4NTq62nI1e2eOQ+PRcMBLw7F9yXGF00ckT1wuOc=)
2: R5pzlcYLmm00OeDBY2AdET0Wb1k.roa (hash: xiJIdXt0KmJ/0CjuwN0kq1hka28S9GJuEKhJVLZ1i5s=)
3: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: pWA+fsu3JEEUSMvq8BxoxbywUhGbjUWwx3kFeYei7XY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:ef:09:35:36:7b:4f:86:2a:aa:1a:68:6c:2f:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Validity
Not Before: Mar 26 09:01:51 2026 GMT
Not After : Mar 27 09:01:51 2026 GMT
Subject: CN=e3818d9d6ff1a00415bb03450e5a3f3c74a18af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:08:3e:91:7d:7f:fb:e2:d2:17:d2:c3:a7:57:
f3:2e:bc:ae:3b:f3:88:27:6c:90:6c:75:85:97:df:
6e:4c:98:f5:2e:41:e9:31:2e:d4:19:18:2f:e2:ce:
65:49:cc:08:8a:04:2e:4f:a7:fe:af:e9:0e:26:23:
06:a7:b6:1d:0d:7c:be:e5:64:56:cb:03:46:05:1a:
6a:fe:70:60:3b:e2:56:76:b4:75:12:39:fd:9b:a3:
c1:ed:71:df:af:ef:0e:75:eb:7b:20:9b:cb:07:50:
ee:c9:98:21:21:38:6e:50:63:ad:ea:3d:05:77:41:
98:a5:df:0e:57:30:48:9f:c0:b1:57:a7:fb:5b:88:
e9:e3:5c:46:08:f5:ca:91:d2:db:ab:07:67:3c:dd:
f4:d5:d3:be:1c:4b:de:f1:50:1a:15:6f:19:c8:cf:
6a:01:5b:dc:c0:f6:64:aa:52:e3:98:a2:50:f9:1c:
30:93:0f:56:1c:90:b5:84:53:b4:67:0b:3d:a5:73:
4a:37:52:ad:58:3b:08:a0:f6:97:f5:a6:99:e7:96:
f9:c2:01:00:e6:f4:17:a2:0e:7c:44:0e:28:53:93:
bf:28:4c:ec:f5:18:90:7e:78:e7:78:4d:d4:4f:7a:
94:68:6a:f0:12:b7:44:68:c0:33:9d:a1:f3:83:21:
d0:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:81:8D:9D:6F:F1:A0:04:15:BB:03:45:0E:5A:3F:3C:74:A1:8A:F1
X509v3 Authority Key Identifier:
keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:f6:13:d0:51:ce:f1:0f:5b:02:83:a2:c9:5e:a3:f7:2b:a7:
e4:20:91:9b:94:7f:bf:6e:4f:4f:af:82:7d:45:66:57:31:b2:
0c:5d:c3:34:d1:89:85:d2:a4:47:a4:c3:2d:46:4f:f9:73:eb:
59:13:d6:00:21:26:8c:92:75:3a:d3:36:c8:26:bf:64:de:a4:
0b:22:f6:85:c1:06:bf:aa:6f:eb:36:50:87:fb:84:89:2b:2e:
61:c8:f4:59:ae:3a:bc:b7:b2:ea:21:88:9c:86:e5:49:fe:98:
4f:cd:3e:d7:b8:35:7b:0d:eb:a2:2b:05:ee:8f:ba:af:8e:c3:
f6:1c:d0:91:4b:cb:2d:c3:dd:be:74:68:39:1a:9e:9d:50:d9:
fa:9a:a4:ee:24:45:ff:d0:36:76:5f:da:e9:1d:cb:a4:32:6b:
18:98:7e:f4:9f:e4:cd:7c:9f:df:e0:14:85:ed:61:0e:8a:f1:
29:37:a6:bc:83:7d:a2:af:2c:32:95:cc:0a:f1:67:9a:6d:26:
a6:5e:c3:86:e6:0b:28:eb:09:f7:48:a7:17:40:de:cc:ae:6e:
e8:69:01:df:36:e2:86:90:35:9a:1b:c6:8f:03:4d:8c:94:3e:
0b:c3:f6:d9:7d:8a:88:58:20:6d:df:b1:e6:5e:b2:f0:a6:e4:
b9:9d:60:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:53:50 2026 by rpki-client