Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: XHso7qBJXgGIt1OFcgvE2T0W8Y/ho84SpTCgwU7VvLk=
Subject key identifier: 3A:E2:68:EA:8F:0B:A2:06:E4:D7:55:34:62:60:7C:0C:12:37:F9:F7
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 019D2704192F6C0E088B1A3C914899B95199
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 067B
Signing time: Wed 25 Mar 2026 22:01:13 +0000
Manifest this update: Wed 25 Mar 2026 22:01:13 +0000
Manifest next update: Thu 26 Mar 2026 22:01:13 +0000
Files and hashes: 1: 6EkJKay6ASec3Uw_czHATgEyfKA.roa (hash: 2c9WHQTBPJnNJtn4QC9p7CmncMVB1cW6dCt+0dg0vCE=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: Ur3SZIpK6RXEZJ0uIwZ4Rq/hJa+Y+Y3sA5kFHqWoGBM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:19:2f:6c:0e:08:8b:1a:3c:91:48:99:b9:51:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: Mar 25 22:01:13 2026 GMT
Not After : Mar 26 22:01:13 2026 GMT
Subject: CN=3ae268ea8f0ba206e4d7553462607c0c1237f9f7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:21:5e:f9:8b:33:1d:43:13:2a:b5:32:07:0e:
54:d8:bd:a8:07:c5:ac:72:21:88:b5:51:4b:c0:cc:
55:cb:35:31:5f:90:0f:f1:8e:88:fd:78:1c:59:c7:
5c:55:4f:b7:3e:90:1a:04:a0:ff:ab:23:18:8d:b9:
ab:cb:28:a0:46:c4:72:dd:48:76:30:2c:66:de:96:
7b:62:5f:60:5b:3b:bd:6a:be:ac:63:d8:8c:90:e5:
fe:9b:a3:4c:96:f3:a9:9a:4a:bb:88:10:d9:26:2f:
09:8a:ab:c6:a1:38:8a:18:a8:19:0f:3e:53:57:46:
a1:94:c6:d3:cf:52:62:41:f7:30:52:93:c3:ca:b7:
b6:99:8b:b9:ec:3a:04:d1:99:d7:a6:a3:3b:ec:81:
21:55:27:2c:f4:7a:f5:c4:bb:ed:12:23:59:22:84:
6d:50:f1:5d:9c:40:2e:10:e5:f4:f2:b9:84:6c:45:
20:15:37:6d:25:d2:dc:04:2b:1c:ad:ce:63:28:94:
bb:03:4c:7d:b0:88:0f:cf:19:1b:62:05:00:4a:d6:
c5:ec:ac:97:15:1a:81:df:37:85:4d:8e:0c:b9:8e:
b5:8a:07:f4:3e:ef:bb:01:d7:fb:c8:17:65:1b:ec:
c2:55:11:b4:28:38:0f:48:21:b0:09:b4:db:2b:15:
86:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:E2:68:EA:8F:0B:A2:06:E4:D7:55:34:62:60:7C:0C:12:37:F9:F7
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:c3:41:04:b7:18:97:cf:f1:07:73:31:d2:4a:60:61:a7:81:
c7:f0:bf:65:5a:42:72:8b:91:aa:2b:1d:93:8c:15:f5:d8:d8:
d3:a9:93:97:63:02:a9:75:fd:08:cd:cb:00:b4:67:1e:06:55:
c8:7b:9c:b8:05:9a:4b:74:61:cc:d8:19:56:33:f5:25:4d:6b:
2f:d3:06:90:07:ca:d4:6c:08:0f:4c:f9:76:38:ff:c0:95:c2:
a3:e5:d4:31:8d:bb:a6:b8:a7:6d:3f:45:cb:16:61:04:3e:35:
11:dc:03:f6:fa:a4:03:6a:61:f3:63:c2:bd:82:ee:f8:30:68:
37:98:ac:e4:32:01:76:04:d5:68:f3:22:fc:c1:92:ec:fc:16:
55:77:a7:fa:a9:9d:fe:0c:69:cb:d0:10:2b:15:be:fe:11:d6:
e8:55:66:bb:e1:4f:cb:51:da:12:fb:6f:7d:cb:32:99:c2:c1:
61:a2:37:b6:de:bf:ef:a7:ec:2f:b4:1b:6b:1c:53:81:67:dd:
d6:ea:e6:bf:84:77:e2:6e:41:f8:3a:41:04:88:81:9d:8a:79:
44:8e:99:0f:2b:d1:1a:51:20:6f:1d:de:37:76:12:2b:e3:2b:
40:e0:4e:c5:47:a3:49:8f:83:d1:8e:ea:03:79:f8:5e:f3:c5:
0c:f0:c7:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:59:44 2026 by rpki-client