Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.mft
File: VmHcWpFRx4ITkPT3C-dorNd7taI.mft (raw, json)
Hash identifier: Tb25R2+LVYextjAOEy5urrZTbHbhl+lriy5NHD4moJk=
Subject key identifier: 03:8D:C3:43:E6:F3:AC:25:72:19:70:5F:F4:26:C0:1A:7B:0C:BA:A3
Authority key identifier: 56:61:DC:5A:91:51:C7:82:13:90:F4:F7:0B:E7:68:AC:D7:7B:B5:A2
Certificate issuer: /CN=5661dc5a9151c7821390f4f70be768acd77bb5a2
Certificate serial: 019D2696255403623D99BFCA512473B57179
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmHcWpFRx4ITkPT3C-dorNd7taI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.mft
Manifest number: B1
Signing time: Wed 25 Mar 2026 20:01:07 +0000
Manifest this update: Wed 25 Mar 2026 20:01:07 +0000
Manifest next update: Thu 26 Mar 2026 20:01:07 +0000
Files and hashes: 1: MF6MLfWJPwV-yPLIF_0nZ7bOwsM.roa (hash: 6dApg/Qg1KQtk7rezLH61i3WO99VCx8PzPPW1oB5WB8=)
2: VmHcWpFRx4ITkPT3C-dorNd7taI.crl (hash: 4j17Bi4fPDhQB3Q+3Ura4TEqL7nFFzCY7pKFmSWEMaw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.mft
rsync://rpki.ripe.net/repository/DEFAULT/VmHcWpFRx4ITkPT3C-dorNd7taI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:25:54:03:62:3d:99:bf:ca:51:24:73:b5:71:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5661dc5a9151c7821390f4f70be768acd77bb5a2
Validity
Not Before: Mar 25 20:01:07 2026 GMT
Not After : Mar 26 20:01:07 2026 GMT
Subject: CN=038dc343e6f3ac257219705ff426c01a7b0cbaa3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:c4:03:9f:82:40:7b:a6:6f:21:57:7d:d8:2e:
f7:f6:48:2c:18:4f:53:1b:d2:ba:93:8f:96:58:3b:
91:4f:01:f5:03:f6:c8:97:6f:ed:15:c1:01:ee:ec:
44:41:e1:6b:18:76:29:ad:ba:7c:7c:5c:61:c3:3f:
37:02:ef:39:49:e5:a7:d5:a6:8e:18:2c:f3:6a:a1:
95:28:7e:10:e1:40:3d:58:9b:d6:10:d9:a2:82:a0:
f3:c4:11:f3:73:c5:22:64:91:12:9a:9e:2d:ca:be:
c2:f4:61:41:f6:9a:04:38:4f:e2:e1:c7:d9:e6:b2:
7e:ce:b6:1c:6b:e4:dc:62:ca:c5:15:f1:04:da:3f:
09:c2:3c:71:6c:37:31:e9:f2:6a:e4:e9:3b:9f:64:
b5:7d:55:8a:17:8b:53:39:fa:be:b3:6a:1d:23:c1:
e5:02:8c:05:ff:32:55:47:a0:f3:ac:2f:98:8c:7b:
8d:ed:fb:8e:29:7f:89:84:64:3f:81:67:d2:2f:34:
8b:13:2b:d1:6f:54:19:9e:96:92:9b:79:ae:1b:07:
fb:f6:38:56:e7:41:19:b9:6c:2f:87:91:cd:85:21:
c9:9d:bc:40:d6:ac:3d:7e:e4:1b:01:a6:a6:e4:53:
65:36:c1:99:03:4d:69:fe:f4:34:12:f3:7e:61:05:
83:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:8D:C3:43:E6:F3:AC:25:72:19:70:5F:F4:26:C0:1A:7B:0C:BA:A3
X509v3 Authority Key Identifier:
keyid:56:61:DC:5A:91:51:C7:82:13:90:F4:F7:0B:E7:68:AC:D7:7B:B5:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmHcWpFRx4ITkPT3C-dorNd7taI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/9f9ea1-5f53-4e2b-bc63-536e9c63469b/1/VmHcWpFRx4ITkPT3C-dorNd7taI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:5d:f2:7a:85:39:ab:64:67:78:0f:5b:4e:5e:0b:45:e6:5d:
42:d8:81:c0:0f:14:80:c5:fb:4f:f2:03:97:d6:6b:ee:9d:1d:
f4:a4:14:97:39:0a:45:ca:a4:38:17:a2:43:d5:1b:6b:35:3e:
e6:0e:88:50:57:5a:b3:75:06:59:d0:d8:9f:d7:26:9f:f4:e5:
5c:8f:8e:14:b8:17:07:77:b4:cd:ad:3a:f4:91:4c:15:c7:76:
de:ff:96:cd:32:d5:2c:48:e2:c4:55:ad:66:8f:fd:de:bc:60:
bc:86:33:c8:e2:4e:cb:6b:26:57:6a:fe:5b:45:a1:96:c5:34:
64:fb:62:8d:85:cc:66:5d:c1:d7:89:d7:8e:ff:85:63:1a:be:
a4:dd:00:5d:41:5f:0e:13:9a:7c:57:a4:13:1d:cc:69:79:3c:
82:65:84:9a:d7:df:b7:cd:4f:b7:3f:34:75:2c:47:62:51:15:
84:a3:ca:a2:04:81:0e:21:d1:83:f2:d8:e1:2a:16:c4:3d:65:
f0:2c:8a:af:7a:fa:15:00:36:74:a2:73:b7:f9:45:c3:29:de:
05:a4:07:cb:7e:00:cc:d0:9f:aa:2a:86:dc:8d:62:b6:a5:4c:
6c:fc:6c:26:09:49:51:4c:da:0a:85:3a:9a:05:77:13:83:7d:
ff:76:fc:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 01:59:07 2026 by rpki-client