Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
File: vX2BeM7FzTdlSKkEkRf0acCnQxw.mft (raw, json)
Hash identifier: 5gh6Xp+VIbDnl6oKC3WmWv5NtNWmwnN0+UC2PoC65/Y=
Subject key identifier: 28:F3:5F:EB:08:8D:3A:20:78:2D:12:E1:8F:FE:C2:80:25:4E:4A:23
Authority key identifier: BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
Certificate issuer: /CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Certificate serial: 019E1EA2D20ED50553F3EC11ED71BB75322D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
Manifest number: 1919
Signing time: Wed 13 May 2026 00:00:47 +0000
Manifest this update: Wed 13 May 2026 00:00:47 +0000
Manifest next update: Thu 14 May 2026 00:00:47 +0000
Files and hashes: 1: 5OsbbnnHwhVNORbPHv-OJIeuoGI.roa (hash: XRJA8VpJASXYSnFu9o5yKclI6PUgREHgPT2bBiqSOmk=)
2: XiD6lDrgMPuS8eayCDVkIbui-4s.roa (hash: SBkJkhDft5A8cF6t/KuhZfif5su+kzjqoUhMEaiSsSk=)
3: pBECGuvlqI1JRG7h1KFoBdoLOQQ.roa (hash: g1yrRU6vVwlNdEkW9jmsyPMMiYUAGVw0ecH5Z2RUhlM=)
4: vX2BeM7FzTdlSKkEkRf0acCnQxw.crl (hash: ffbsu9eXtEDCyKDy0Ubw/nSBeWbt4SPleK133n0yT3c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:d2:0e:d5:05:53:f3:ec:11:ed:71:bb:75:32:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Validity
Not Before: May 13 00:00:47 2026 GMT
Not After : May 14 00:00:47 2026 GMT
Subject: CN=28f35feb088d3a20782d12e18ffec280254e4a23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:e7:f8:eb:61:ca:a1:2f:02:78:46:be:58:9b:
6a:39:b7:89:d7:f0:4c:36:e7:ff:cb:0f:24:66:14:
53:6d:13:df:60:67:aa:d6:32:fd:83:4c:5a:d8:3f:
20:5b:49:03:73:11:b8:4d:62:ee:86:1c:32:15:5d:
77:83:02:39:09:7a:2b:6f:a2:95:23:12:f7:b7:0f:
46:f4:ed:ed:d0:62:d5:76:b2:18:55:1b:6d:ac:14:
4a:25:68:2c:70:6b:f6:4f:ff:03:12:16:58:63:3f:
ba:d1:5f:ca:3f:dd:63:19:f1:dc:5e:5b:da:d3:80:
72:a5:01:80:bc:ec:20:51:2d:2f:c2:ba:9f:95:33:
9f:de:64:10:46:e5:59:69:15:ed:21:31:11:8d:af:
93:39:68:3b:35:c7:31:00:a1:b7:fc:27:58:dc:88:
60:87:cf:aa:6b:bb:d4:be:51:95:1b:a3:d6:a2:93:
b4:3b:e2:83:bc:8c:54:41:3b:27:8d:14:21:a2:af:
e3:e4:6d:de:c3:b5:24:a1:4d:3e:e8:41:96:fd:af:
5b:71:de:5e:79:1d:ae:6c:8a:70:6b:db:b8:1f:3a:
38:e2:c3:cf:df:d8:c5:32:29:bf:8d:fc:8e:73:a5:
2e:55:62:61:7e:bf:54:be:19:99:1d:a1:5b:4e:d2:
38:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:F3:5F:EB:08:8D:3A:20:78:2D:12:E1:8F:FE:C2:80:25:4E:4A:23
X509v3 Authority Key Identifier:
keyid:BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:f8:fa:f5:8d:c8:9d:2a:40:6f:0f:bf:55:ed:9f:b7:fb:59:
b2:72:c3:08:ee:7a:5b:3e:6f:b6:b9:c0:11:2d:01:eb:10:0f:
36:f4:92:ff:eb:aa:21:d8:8b:ba:22:5f:0b:f4:88:08:ce:9d:
92:5e:c3:c7:60:53:65:5e:80:d2:f1:20:c7:a6:a2:82:17:fe:
a8:0d:4e:33:f4:65:28:73:77:cf:4b:05:e5:a2:6c:8e:e6:1e:
1e:47:b6:ab:27:cc:29:66:6d:1f:4e:e8:5b:3c:b2:05:09:22:
bd:d8:e9:b1:c0:8e:09:22:61:b9:1e:d5:31:2a:33:b6:f9:d6:
f2:ce:28:61:dd:6e:98:bf:12:7d:9b:7b:46:55:1d:e5:8c:6d:
3a:77:99:95:fc:c0:75:12:b8:44:05:f9:ed:fc:1d:2d:5e:09:
84:74:61:22:05:03:43:dc:de:04:8f:d7:64:92:48:06:d9:c3:
e1:03:3c:7f:d4:21:42:1b:36:15:72:6a:95:6a:b8:b2:56:22:
03:a0:94:ac:62:53:ab:bb:35:47:3d:2f:a7:f0:cd:77:67:9e:
67:64:ba:ba:8c:88:48:06:8a:98:c3:58:60:27:bc:c5:70:82:
8f:e1:fa:a0:5e:ac:fc:2f:f6:4e:8e:ae:6d:99:a6:fb:e7:1b:
67:a5:5d:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:36:00 2026 by rpki-client