Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
File: vSUqdclhrTOP2RFH1GHdiz0gz1E.mft (raw, json)
Hash identifier: zi4veJNFv6ZKGNs56FVgJhQasYR6sKyEIRzzWvixecI=
Subject key identifier: 81:65:B7:0A:5B:83:A0:B5:5C:57:E7:EF:6D:C3:25:0B:F0:85:8C:DA
Authority key identifier: BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
Certificate issuer: /CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Certificate serial: 019D284DA1996BAE8F423AEBC9A2B32D5A65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
Manifest number: 188F
Signing time: Thu 26 Mar 2026 04:01:09 +0000
Manifest this update: Thu 26 Mar 2026 04:01:09 +0000
Manifest next update: Fri 27 Mar 2026 04:01:09 +0000
Files and hashes: 1: GJIEMFvCXOGxwMSx43guQFRPh8M.roa (hash: oeNhpu1q2YVhaNJfdDI1KC0StxYU+WfFhgtlfHrXwlM=)
2: N7xp5A4irg8DKzqXWFOFM39t3u8.roa (hash: qInCZHWCOK/PbCu1c+rmFecdDUSwXaQ9cyfT/I5HPdo=)
3: hTMMYpMuqGPoG2J1CKhmES38yHA.roa (hash: rvTmRXH6/6D95X7iHQWTgs6oiDZA0aQ3QNoQMnR5ayw=)
4: vSUqdclhrTOP2RFH1GHdiz0gz1E.crl (hash: rAH7KVLsFzlNtERdyzHxGuefy1SRfBO1FUaiKqvMRf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:a1:99:6b:ae:8f:42:3a:eb:c9:a2:b3:2d:5a:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Validity
Not Before: Mar 26 04:01:09 2026 GMT
Not After : Mar 27 04:01:09 2026 GMT
Subject: CN=8165b70a5b83a0b55c57e7ef6dc3250bf0858cda
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:4d:d5:f5:18:5b:ea:b3:d8:72:83:5b:71:df:
2b:55:00:d5:e8:2e:65:7a:6d:9c:23:b7:83:ab:60:
4c:32:3c:cc:6f:76:ec:6e:6b:02:9a:9f:dc:9f:de:
7a:0f:92:90:0c:88:30:40:57:6f:79:b3:d7:6e:9f:
b4:74:55:22:e4:27:f4:48:cd:dc:c8:2f:6f:66:8a:
c0:32:ab:16:99:37:e4:46:e9:25:e8:81:2e:72:b1:
2a:3c:a3:59:c6:7f:30:e1:be:cb:9c:38:e9:f9:c2:
d6:e8:60:7c:d9:a3:d6:b0:32:a4:23:a0:ca:5c:6c:
79:f9:b2:1c:45:37:8c:a7:79:27:53:82:31:2a:9c:
c4:7b:7a:8e:25:0d:e6:5c:f9:19:66:ad:41:85:68:
19:70:fa:c1:e4:5c:51:98:03:27:9c:70:d3:f9:90:
75:88:3e:26:25:5a:53:1b:6a:38:0c:e4:80:2c:02:
c9:04:ca:1c:be:be:5e:11:32:1a:63:4c:f1:15:20:
66:30:bd:b3:2d:26:37:db:85:a1:37:e9:e7:0e:19:
12:43:63:64:a3:ee:f0:94:14:94:71:be:4c:75:3e:
b2:4e:3b:5d:a1:64:f4:e9:c3:06:d3:97:28:db:ad:
f6:20:7f:95:5a:58:ae:00:ff:44:2d:37:d1:a8:91:
32:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:65:B7:0A:5B:83:A0:B5:5C:57:E7:EF:6D:C3:25:0B:F0:85:8C:DA
X509v3 Authority Key Identifier:
keyid:BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:6b:76:ac:f7:a7:40:1c:ea:d5:f6:43:6a:31:1a:95:20:0e:
60:d1:90:07:e9:39:e7:35:c6:1d:c7:e5:fe:8c:4f:fc:32:a6:
d5:71:c2:09:1a:94:77:d8:3a:35:d1:10:c9:21:59:1f:50:c6:
86:c2:8b:27:74:1d:82:60:3f:1c:ab:4f:2c:4d:6a:f6:06:4b:
40:b2:6a:c5:e8:a8:1a:ce:8c:11:05:50:c5:40:8d:13:f7:69:
2d:0b:ac:28:de:93:a7:71:e6:7a:82:6e:96:db:5e:ca:41:f1:
c5:d6:4c:cb:d5:a6:1b:eb:40:80:53:9f:62:b1:b1:92:1f:d3:
af:23:55:d4:99:58:bd:2a:e3:78:8a:88:82:f4:8a:2d:2a:86:
26:82:a4:11:14:5c:7b:c0:7f:0f:bc:40:9c:2b:6b:12:30:88:
29:ad:4f:c4:6a:f1:64:d3:df:71:5e:de:73:34:f5:9f:ac:d4:
ea:20:6c:01:dc:fa:8c:e1:cc:c2:4e:56:8e:47:36:f3:83:a3:
6a:a7:02:4a:58:01:ed:fd:6b:eb:5b:3f:b1:64:d0:a6:b0:07:
7b:e2:7a:9c:c2:c0:48:38:83:01:25:fb:53:45:50:0e:72:78:
54:4f:ca:dd:48:09:ec:da:e0:2d:d3:78:62:64:be:b6:c5:2f:
ca:8e:e7:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:06:20 2026 by rpki-client