Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
File: vhji2fUJydO0VREqoojTNhhYAaA.mft (raw, json)
Hash identifier: mBTHTz08GOAqgilKjuAMmcDqSd4l8X70Loxc5cIRCOA=
Subject key identifier: 53:F2:D1:1F:0D:F3:D1:E1:AD:21:F1:07:6E:D9:66:2A:E6:DA:81:43
Authority key identifier: BE:18:E2:D9:F5:09:C9:D3:B4:55:11:2A:A2:88:D3:36:18:58:01:A0
Certificate issuer: /CN=be18e2d9f509c9d3b455112aa288d336185801a0
Certificate serial: 019D33E331A88AC7A0967256C189773140AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
Manifest number: 1270
Signing time: Sat 28 Mar 2026 10:00:20 +0000
Manifest this update: Sat 28 Mar 2026 10:00:20 +0000
Manifest next update: Sun 29 Mar 2026 10:00:20 +0000
Files and hashes: 1: bbz47osIb4c7uoiyZJGPaxcYxu8.roa (hash: yDftJ0V1zP6tNWS59D23nQ4A6wYjaRjcaKzcMkYk8QQ=)
2: vhji2fUJydO0VREqoojTNhhYAaA.crl (hash: r0dghxJNRuo/boouCnX1yBVfXysrTEUfWLaEwM1gd+A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:e3:31:a8:8a:c7:a0:96:72:56:c1:89:77:31:40:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be18e2d9f509c9d3b455112aa288d336185801a0
Validity
Not Before: Mar 28 10:00:20 2026 GMT
Not After : Mar 29 10:00:20 2026 GMT
Subject: CN=53f2d11f0df3d1e1ad21f1076ed9662ae6da8143
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:ca:8b:27:28:38:73:02:31:ed:c8:4a:fd:a5:
9f:9b:36:f3:e6:e3:06:0a:86:d3:9d:6f:57:1a:d2:
43:37:77:50:b5:81:5e:9f:30:6c:44:43:19:fd:b5:
6d:c9:55:f2:47:4e:a4:ae:ea:51:a3:c7:1e:28:e3:
0e:15:35:05:9c:78:ad:83:37:41:ce:f2:bb:b6:be:
89:be:b0:a3:a2:eb:d7:2f:8c:2d:ce:c7:bd:5a:92:
d8:2e:05:71:b2:58:cd:a9:c5:5b:5b:8c:ce:03:e4:
5e:28:d3:e3:e6:7e:3e:26:74:f0:d3:72:ba:1a:b2:
1a:e3:6e:7c:36:86:05:56:e3:3d:39:c7:97:6b:6f:
c2:bc:ce:d1:97:0d:37:75:62:13:34:ac:c1:b9:5d:
53:78:90:00:00:d0:a7:79:0c:56:09:e1:cb:79:e4:
0b:22:95:3c:ae:93:91:45:a7:bc:ca:b6:b1:9b:1c:
8d:5d:3f:aa:41:11:bb:61:50:e5:99:9f:fc:51:26:
2d:34:1d:0b:40:6c:3a:6a:c1:31:2c:3b:fb:0d:f8:
d4:0f:54:e1:cb:e4:9b:84:ec:76:3a:3e:ec:97:20:
0a:b3:ad:eb:c7:82:6d:fd:33:8d:2c:d5:18:3c:a4:
79:fc:35:35:37:be:35:19:58:60:c9:36:fe:c1:81:
81:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:F2:D1:1F:0D:F3:D1:E1:AD:21:F1:07:6E:D9:66:2A:E6:DA:81:43
X509v3 Authority Key Identifier:
keyid:BE:18:E2:D9:F5:09:C9:D3:B4:55:11:2A:A2:88:D3:36:18:58:01:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:de:19:b6:eb:c5:2a:6e:fc:92:43:ea:f5:f9:f0:31:56:d7:
c9:f3:b5:12:80:85:d1:2d:6d:18:6c:c4:61:28:73:61:96:cb:
51:c2:dd:e6:5c:dc:7c:78:c7:6d:e9:44:56:d3:7d:e9:69:c0:
4a:14:20:9a:64:d3:ad:a7:8c:b5:df:33:9f:99:a8:e2:20:1a:
e5:7a:4c:17:f3:ed:9b:06:0a:d3:b8:58:b3:7f:bd:35:ea:ef:
15:35:21:2c:5b:b5:07:67:97:31:2a:91:97:16:6c:b0:27:64:
40:8d:f2:ee:7e:eb:72:72:4e:75:b5:0d:2d:53:15:09:9b:93:
f5:9b:fb:fd:1b:ae:a5:50:1f:c8:85:3c:03:9d:32:05:3a:79:
d3:11:17:ca:82:26:1b:da:f9:88:eb:29:24:81:46:bb:7d:af:
1a:be:e2:48:76:35:f7:62:40:9b:89:2f:3b:c1:b3:f7:21:f9:
f8:96:cd:04:31:08:37:ff:3d:27:5f:60:84:57:60:50:1c:c0:
1e:c7:a7:b6:1d:86:dc:42:26:81:1e:a6:32:34:04:c4:75:89:
c9:d9:8f:f9:02:1a:0e:a7:3a:90:8a:b8:30:1a:c1:95:37:2a:
1a:8f:d0:96:a2:a3:56:ae:74:1e:7b:40:7f:90:5d:de:ae:73:
c4:16:20:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 15:56:02 2026 by rpki-client