Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
File: vyk4WQ4NABlyVmLUtK5Myew6c00.mft (raw, json)
Hash identifier: CCUp0KVe+0NmD1Brf+eMYvu54/28SUlN9t+YzRo4+Z8=
Subject key identifier: 09:7F:11:14:F1:EE:79:07:E8:54:0C:5B:8A:8F:BC:36:04:2E:21:4F
Authority key identifier: BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
Certificate issuer: /CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Certificate serial: 019D2816B9D451A1A644BBDC2A962169B498
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
Manifest number: 0B26
Signing time: Thu 26 Mar 2026 03:01:11 +0000
Manifest this update: Thu 26 Mar 2026 03:01:11 +0000
Manifest next update: Fri 27 Mar 2026 03:01:11 +0000
Files and hashes: 1: 1ct-Ix4vqSryVTwpOe2dk96HqOE.roa (hash: ZHQYlnog1xkIVPDyJbvsnZ9amnNHU1IoPvRVcPKPYG8=)
2: vyk4WQ4NABlyVmLUtK5Myew6c00.crl (hash: c6/4kHyrIdpDiwwTphcPfumxpJfBue/p4v/4fD/FxbQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:b9:d4:51:a1:a6:44:bb:dc:2a:96:21:69:b4:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Validity
Not Before: Mar 26 03:01:11 2026 GMT
Not After : Mar 27 03:01:11 2026 GMT
Subject: CN=097f1114f1ee7907e8540c5b8a8fbc36042e214f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:67:d3:18:4e:7b:e8:14:75:b4:e6:72:82:2f:
2a:78:a4:74:b3:3f:a5:9e:15:ff:c2:b0:1d:3e:8b:
ad:2a:1d:4d:b2:c1:af:33:23:6b:09:36:57:b9:34:
c4:84:84:50:52:45:d3:b4:e2:7a:d2:ce:42:5f:5b:
69:d0:69:33:d8:7b:74:61:bc:dd:96:dc:aa:85:8c:
98:3b:86:42:e0:94:fa:e1:b5:92:ae:56:07:62:92:
b6:e3:1a:28:dd:35:07:5e:ef:a8:42:a8:f9:50:f0:
0f:22:2b:c8:00:93:f1:e5:9d:14:83:48:a4:7b:ce:
e6:42:f4:01:39:22:fe:6d:79:bf:de:48:e5:cc:3c:
2c:1d:60:ff:a5:c5:92:07:d2:68:bf:43:63:da:7b:
3b:ea:37:fe:ec:58:69:d7:c9:fc:2e:5e:a0:88:a7:
96:05:65:4e:61:4a:b3:ac:f5:90:33:43:96:62:27:
dc:76:ed:cd:10:9d:e1:59:59:6f:97:c4:4e:63:0e:
08:4a:37:c2:b2:56:68:2e:da:7c:3a:b4:4b:1e:2a:
6e:0e:8b:47:75:0f:b6:b5:3e:07:34:f9:3e:e5:3d:
53:69:e9:97:cb:c7:22:e1:c9:3c:cf:94:50:9e:d5:
e8:99:bb:1d:c6:bf:da:fc:c2:cd:66:65:e2:e3:a5:
66:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:7F:11:14:F1:EE:79:07:E8:54:0C:5B:8A:8F:BC:36:04:2E:21:4F
X509v3 Authority Key Identifier:
keyid:BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:96:6d:8c:83:be:06:2a:63:40:f1:23:71:5b:64:e9:22:df:
9b:c7:c3:3d:ee:c7:b1:d3:33:67:9e:92:bd:f6:d9:77:46:3c:
59:68:99:0e:e1:e5:3c:3b:62:b1:45:c6:0e:e4:5c:00:23:79:
07:d4:ce:cb:2e:82:fb:1e:0e:af:b9:21:8b:f6:bc:90:c6:36:
45:a7:17:0e:02:66:4d:26:0e:ad:5b:d7:9c:f3:9a:fd:aa:17:
cd:11:e3:09:c6:3e:cc:10:82:84:a6:a9:79:3e:0f:7b:85:f8:
29:42:ca:b5:49:df:a7:bd:39:48:ff:37:06:58:52:1f:dd:3c:
24:e0:19:e1:f5:5e:d6:df:8a:55:6c:e3:0f:0e:81:98:66:1c:
e1:94:cd:44:1b:83:1a:23:37:ea:8d:96:07:d3:68:63:e8:ba:
dd:a0:22:d0:4c:16:26:6c:02:e6:64:2b:82:91:29:38:1c:a3:
3a:e8:0f:25:40:a6:a1:a7:28:9a:d8:f2:6a:c0:53:1c:8e:4b:
bd:f4:0a:d8:2f:90:03:bd:28:10:b0:4c:89:e4:b5:25:c0:2e:
88:25:34:35:5c:e8:f5:43:06:08:19:2e:53:b2:6e:11:1c:99:
1f:3d:37:91:3a:6a:b2:f7:ba:6b:3e:c2:a5:d1:f7:a8:00:27:
21:1f:b4:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0oFrnUUaGmRLvcKpYhabSYMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmMjkzODU5MGUwZDAwMTk3MjU2NjJkNGI0YWU0Y2M5ZWMz
YTczNGQwHhcNMjYwMzI2MDMwMTExWhcNMjYwMzI3MDMwMTExWjAzMTEwLwYDVQQD
EygwOTdmMTExNGYxZWU3OTA3ZTg1NDBjNWI4YThmYmMzNjA0MmUyMTRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2fTGE576BR1tOZygi8qeKR0sz+l
nhX/wrAdPoutKh1NssGvMyNrCTZXuTTEhIRQUkXTtOJ60s5CX1tp0Gkz2Ht0Ybzd
ltyqhYyYO4ZC4JT64bWSrlYHYpK24xoo3TUHXu+oQqj5UPAPIivIAJPx5Z0Ug0ik
e87mQvQBOSL+bXm/3kjlzDwsHWD/pcWSB9Jov0Nj2ns76jf+7Fhp18n8Ll6giKeW
BWVOYUqzrPWQM0OWYifcdu3NEJ3hWVlvl8ROYw4ISjfCslZoLtp8OrRLHipuDotH
dQ+2tT4HNPk+5T1TaemXy8ci4ck8z5RQntXombsdxr/a/MLNZmXi46VmAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAl/ERTx7nkH6FQMW4qPvDYELiFPMB8GA1UdIwQY
MBaAFL8pOFkODQAZclZi1LSuTMnsOnNNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnlrNFdRNE5BQmx5Vm1MVXRLNU15ZXc2YzAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy84MzNhYTItYWYwNC00ZjEwLWExNjct
NmFjZDg2Njg2ZTg1LzEvdnlrNFdRNE5BQmx5Vm1MVXRLNU15ZXc2YzAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy84MzNhYTItYWYwNC00ZjEwLWExNjctNmFjZDg2Njg2ZTg1
LzEvdnlrNFdRNE5BQmx5Vm1MVXRLNU15ZXc2YzAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdZZtjIO+
BipjQPEjcVtk6SLfm8fDPe7HsdMzZ56SvfbZd0Y8WWiZDuHlPDtisUXGDuRcACN5
B9TOyy6C+x4Or7khi/a8kMY2RacXDgJmTSYOrVvXnPOa/aoXzRHjCcY+zBCChKap
eT4Pe4X4KULKtUnfp705SP83BlhSH908JOAZ4fVe1t+KVWzjDw6BmGYc4ZTNRBuD
GiM36o2WB9NoY+i63aAi0EwWJmwC5mQrgpEpOByjOugPJUCmoacomtjyasBTHI5L
vfQK2C+QA70oELBMieS1JcAuiCU0NVzo9UMGCBkuU7JuERyZHz03kTpqsve6az7C
pdH3qAAnIR+0bg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 06:45:39 2026 by rpki-client