Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
File: vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft (raw, json)
Hash identifier: OfAxGWayJzadQigcbMHUBuq9AYTSQEY4/LfiqM9TeXY=
Subject key identifier: FD:95:95:AB:88:69:22:8E:91:BC:77:F4:44:44:28:18:B5:46:6E:C7
Authority key identifier: BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
Certificate issuer: /CN=be5539afe925db80b415efb14c631b2d82c8cedd
Certificate serial: 019D2996E510AAA8FA000BFAE00F6B8DC406
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
Manifest number: 0464
Signing time: Thu 26 Mar 2026 10:00:48 +0000
Manifest this update: Thu 26 Mar 2026 10:00:48 +0000
Manifest next update: Fri 27 Mar 2026 10:00:48 +0000
Files and hashes: 1: vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl (hash: U9oOL/27SweBW+QLuTLbrEmrSwvbMEcAgsEPXQpldfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:96:e5:10:aa:a8:fa:00:0b:fa:e0:0f:6b:8d:c4:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be5539afe925db80b415efb14c631b2d82c8cedd
Validity
Not Before: Mar 26 10:00:48 2026 GMT
Not After : Mar 27 10:00:48 2026 GMT
Subject: CN=fd9595ab8869228e91bc77f444442818b5466ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:29:65:39:82:63:31:b9:f6:1f:0c:8d:36:92:
cb:f3:66:01:44:47:ab:a3:3a:1a:ff:de:93:5b:7b:
3d:fa:8f:cb:44:47:6a:d0:6e:9f:d1:64:97:48:84:
9f:1a:3c:8d:a6:b1:4f:70:2a:a8:3a:7b:92:8e:c3:
15:74:1c:0b:c6:2f:5f:61:f8:3b:99:c5:56:43:00:
9a:e4:3d:b7:6e:8f:8c:78:d3:2c:86:3e:fb:39:bb:
b0:7e:6c:68:8d:69:aa:1c:42:dd:40:54:fc:31:d0:
2d:5d:9d:12:68:da:05:39:56:30:d5:f3:5a:f0:6f:
24:df:63:07:a3:72:43:f0:3a:ff:8e:b6:00:2d:99:
99:47:87:6d:eb:03:f7:33:f9:5e:4d:d6:3c:9a:e1:
47:7f:6b:c0:1c:08:00:34:ea:9f:55:4a:54:34:ed:
f9:a3:b9:52:43:fc:32:4a:5c:40:88:2f:11:97:50:
2e:6d:50:3c:5b:dc:8b:f8:b0:07:6f:16:04:0f:73:
76:c8:2e:91:6c:08:3b:e0:9f:7d:bf:fb:86:0c:39:
60:6a:16:cd:f0:97:29:91:23:58:a0:1b:3a:5d:bf:
3d:bf:81:50:fb:cc:2f:12:a0:bb:c5:58:05:d2:fe:
d5:29:18:74:00:cd:4c:ef:88:23:08:85:f8:a1:61:
b3:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:95:95:AB:88:69:22:8E:91:BC:77:F4:44:44:28:18:B5:46:6E:C7
X509v3 Authority Key Identifier:
keyid:BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:b7:bf:6e:45:16:32:68:53:7f:1c:54:2d:88:19:41:28:f2:
a0:a3:a6:c8:87:8f:2a:b1:2c:17:57:b2:c1:88:89:c3:a4:d2:
0a:5f:de:52:13:4b:68:8b:d9:aa:05:07:48:6b:d0:f4:a3:3b:
2b:f9:53:e5:37:59:cd:08:97:d0:c1:be:86:11:5d:36:a0:1c:
1d:7d:23:ad:d7:62:13:85:96:65:7e:c5:5b:43:07:99:63:e1:
08:78:41:72:7d:55:2d:14:3b:cd:dc:b7:85:c8:33:89:7e:7c:
3b:27:90:07:54:b9:e5:6f:3d:4b:aa:c1:09:79:b8:02:b7:00:
62:30:2a:9e:8c:b4:1d:a0:59:02:85:a9:bd:b0:09:c1:0a:b3:
9b:12:2b:d5:ae:bc:ac:96:2a:ee:4c:c3:2e:ef:f1:a7:d5:6a:
89:57:27:89:94:ca:64:01:2a:6d:65:85:43:0a:eb:7e:05:77:
0b:33:45:06:40:9e:4f:d2:fa:e2:c2:a3:5d:bb:96:63:53:6e:
51:86:80:84:2a:b3:72:94:ac:41:e9:62:77:04:5d:c7:91:ca:
a3:0e:61:51:a4:7c:6b:bf:a9:d6:32:7b:86:13:e0:88:1e:de:
39:15:73:a0:79:22:b6:26:16:f3:87:ae:14:05:01:58:55:28:
88:7f:f8:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:41:42 2026 by rpki-client