Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: u6o8/DVcOnurMnrlrDKNChhbqiYXYdNbPC3wT+5nUqI=
Subject key identifier: 48:02:85:7A:B3:7F:C9:BB:26:67:E9:F3:D7:33:78:CD:26:20:33:0F
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 019E202462BB3E3E0412D9D1514D3C751861
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 06FC
Signing time: Wed 13 May 2026 07:01:55 +0000
Manifest this update: Wed 13 May 2026 07:01:55 +0000
Manifest next update: Thu 14 May 2026 07:01:55 +0000
Files and hashes: 1: 6EkJKay6ASec3Uw_czHATgEyfKA.roa (hash: 2c9WHQTBPJnNJtn4QC9p7CmncMVB1cW6dCt+0dg0vCE=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: h5xBNCM3360YdNXVMg+fjPVzKZLxGIabZPfVptpEICk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:24:62:bb:3e:3e:04:12:d9:d1:51:4d:3c:75:18:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: May 13 07:01:55 2026 GMT
Not After : May 14 07:01:55 2026 GMT
Subject: CN=4802857ab37fc9bb2667e9f3d73378cd2620330f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:f0:26:8d:f3:01:02:b2:96:09:c3:27:b8:ad:
32:e1:ca:77:39:9f:19:2e:05:88:00:f6:17:97:3c:
3f:ab:fe:0b:34:26:fd:50:9f:c7:05:50:db:5a:fd:
ba:11:7e:ab:80:5d:23:34:a3:c8:13:87:3a:e6:54:
cf:a9:58:d5:3e:09:a2:aa:87:8a:86:3d:d6:b3:bc:
43:c0:9e:42:4a:9b:33:fa:38:e4:a1:02:c1:95:09:
c0:b8:f3:c4:a3:30:f7:7f:41:e6:92:7e:dc:d0:d7:
e9:23:37:a3:3b:27:fe:fb:ee:3c:f3:c1:60:c9:ed:
64:5f:9c:fa:1a:b2:18:f6:4c:98:94:f0:c2:29:60:
de:b9:eb:2b:a4:24:c8:d0:af:c0:88:2d:15:67:a8:
c8:a9:30:2b:e0:02:43:f7:33:12:47:8b:80:0c:1f:
0f:b5:79:15:04:e5:94:37:65:78:d1:c2:2e:e2:03:
e0:4d:07:0b:76:18:d4:18:19:c6:5f:95:84:e1:e8:
02:df:7c:73:05:83:d4:63:30:70:e5:38:dd:a8:d6:
e8:e3:61:49:62:85:5b:f4:08:f6:f1:c1:74:f7:55:
0f:6a:91:7b:73:f5:3c:2e:a5:15:1f:cc:8d:8e:8d:
7e:dc:b1:d5:40:2b:a8:68:be:42:79:f4:af:fc:1d:
22:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:02:85:7A:B3:7F:C9:BB:26:67:E9:F3:D7:33:78:CD:26:20:33:0F
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:d1:58:43:b4:49:18:7c:1d:65:38:67:ec:5c:51:8b:f9:df:
db:44:a1:00:9b:4a:47:6b:fc:23:03:5c:b7:cb:3e:d0:4f:b8:
4e:fe:c9:c2:55:36:67:2b:38:00:a9:31:c1:24:23:28:4a:d8:
36:ed:4d:0a:30:96:f7:68:28:72:90:5c:c1:f9:f5:2c:38:2f:
3b:54:25:24:e4:d8:ae:ee:5f:22:00:26:74:ef:d9:fd:89:6c:
b5:59:23:4d:1d:3e:d5:3c:a5:ec:33:9a:41:50:f5:d9:26:ee:
aa:30:7c:83:8a:f0:2c:c6:55:3b:f1:a9:c1:f6:d4:10:33:7d:
29:b5:f8:ae:66:85:ee:a3:7f:3c:4b:27:3b:e7:11:53:09:86:
ba:40:21:e2:c7:56:bc:0a:03:d2:5f:00:48:79:43:66:6f:97:
04:ea:a3:35:7d:b3:ad:fb:86:a1:b5:44:0c:bd:76:88:65:33:
1a:0c:61:4a:30:cf:52:00:70:a5:06:37:b9:5f:7d:fd:18:0f:
cc:ea:6b:aa:2b:27:9b:fd:4e:5b:7c:ff:60:9f:ba:f6:2f:c2:
5a:27:00:21:0b:a5:95:9f:49:ad:cd:24:d2:e9:35:05:62:73:
14:0a:af:08:0e:96:f4:ec:c4:71:e4:9e:91:08:09:c7:b5:c5:
cf:b5:2a:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 15:51:53 2026 by rpki-client