Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: BH5LkNqLCsdSw0LsTuLkILFNyj2wQcQLcSh+pxwotCU=
Subject key identifier: E7:8F:A9:2F:4B:40:A7:96:87:1D:38:F9:33:BC:08:60:DB:BB:B0:61
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 019D27E01FB0B8E52CAE727CE7695EBDDC71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0BB1
Signing time: Thu 26 Mar 2026 02:01:32 +0000
Manifest this update: Thu 26 Mar 2026 02:01:32 +0000
Manifest next update: Fri 27 Mar 2026 02:01:32 +0000
Files and hashes: 1: 5TQ-JqFgF-IFdipnnBO-T6tTIiI.roa (hash: jvG5fPveO3vEmUkVM2g5EIXNmfe8tIUO+ydnKHanIQ8=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: bnvYeesl0Vo2lDczWaE2RJkoQFMrf6coSzHAaUHZ0ZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:1f:b0:b8:e5:2c:ae:72:7c:e7:69:5e:bd:dc:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Mar 26 02:01:32 2026 GMT
Not After : Mar 27 02:01:32 2026 GMT
Subject: CN=e78fa92f4b40a796871d38f933bc0860dbbbb061
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:d5:49:1b:1b:cb:cb:17:ec:a9:5a:cc:94:96:
48:11:f2:30:7b:71:25:1b:b3:64:c3:36:ad:25:fd:
e4:8e:44:d3:22:e3:9e:65:92:c0:db:49:6f:7c:77:
67:09:0a:61:56:33:44:d3:0a:22:90:55:05:37:59:
18:48:e2:59:4b:27:a4:08:4e:de:6d:b1:f2:fb:ba:
5f:b3:33:45:74:3c:7f:86:26:a5:df:5f:ad:5a:ae:
51:62:55:96:5f:8c:0d:7e:38:93:d5:f5:39:9e:b9:
e1:d0:dd:91:9e:3c:97:b6:5a:aa:a9:cd:aa:a1:da:
6f:09:4b:aa:83:95:c7:27:d9:4b:95:aa:7d:ca:57:
89:0f:67:e6:91:e1:ae:93:7b:b3:ce:2e:a2:21:f0:
0f:cc:b4:da:62:6a:af:89:5f:de:a5:3a:37:20:02:
20:d2:01:40:62:62:84:90:87:13:f0:7d:27:d5:95:
7c:8b:c8:00:2b:68:a1:f7:9d:ff:eb:30:c0:e7:11:
ba:50:e5:ab:15:19:dc:16:f3:7e:44:35:bc:74:e8:
1b:05:91:65:9d:45:e4:3a:1d:4d:1f:a2:66:54:df:
09:33:67:7a:46:fc:1d:26:cd:d6:49:33:dd:81:88:
b3:f3:86:02:85:19:33:ba:62:be:53:83:7b:b7:cb:
7e:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:8F:A9:2F:4B:40:A7:96:87:1D:38:F9:33:BC:08:60:DB:BB:B0:61
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:de:06:6d:cd:bc:4d:1d:c4:da:5a:30:dd:d5:9c:e0:6c:78:
a9:f9:21:a5:65:67:05:59:51:1c:01:98:cf:0f:59:b1:10:d0:
a8:59:89:da:9d:cb:2b:44:63:11:7b:b5:24:2c:01:17:a8:43:
ff:fc:d1:ce:fd:b0:d0:ba:e1:99:c0:d3:32:e2:75:f0:94:66:
7b:0b:0f:df:12:bb:d0:41:e9:97:2b:40:85:7f:db:3d:9e:51:
c9:35:62:4e:8c:74:a8:4e:2a:0d:91:b3:21:10:73:6f:52:36:
cd:08:3b:4b:ed:1e:61:c3:65:f8:f8:fe:8f:31:24:86:bc:e0:
b4:20:ef:3e:40:28:63:b7:b1:67:9c:e7:a9:41:a0:f9:4e:73:
93:c3:39:7b:1b:b3:8c:79:cc:b5:94:06:84:d2:8f:52:af:48:
0e:9f:ac:f2:38:6c:d0:81:36:6d:24:ea:d6:22:9b:9f:cf:31:
71:89:8d:e4:07:20:2d:64:7e:ad:42:bd:5d:d8:77:4b:e3:39:
91:4c:4a:0d:09:ec:de:57:05:6e:f3:6f:80:38:7b:dd:7b:ed:
81:06:a2:c3:8a:ba:02:d8:f8:4e:16:23:d5:8f:e3:05:8b:f7:
e7:a2:f7:53:60:c2:0c:28:8c:5f:dd:bc:fb:22:13:bf:08:13:
42:c2:03:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:26:32 2026 by rpki-client