Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.mft
File: VHdrhI_CS9SRduL0-cR0MkrycLU.mft (raw, json)
Hash identifier: pOKrrKXjimWdoYNNHkJiUb3WM8ESAaHw3DHu1I3T6+U=
Subject key identifier: EF:CA:2B:BC:77:1F:BA:91:42:85:41:E6:F5:25:64:AD:5A:22:27:14
Authority key identifier: 54:77:6B:84:8F:C2:4B:D4:91:76:E2:F4:F9:C4:74:32:4A:F2:70:B5
Certificate issuer: /CN=54776b848fc24bd49176e2f4f9c474324af270b5
Certificate serial: 019D270421BEEF3F59C3E1B23C7D0072925F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VHdrhI_CS9SRduL0-cR0MkrycLU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.mft
Manifest number: 1883
Signing time: Wed 25 Mar 2026 22:01:15 +0000
Manifest this update: Wed 25 Mar 2026 22:01:15 +0000
Manifest next update: Thu 26 Mar 2026 22:01:15 +0000
Files and hashes: 1: VHdrhI_CS9SRduL0-cR0MkrycLU.crl (hash: I/gl8ZLAOlzzLrYTd4nYUl+c2nXf2icAgAIgpf6DU9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.crl
rsync://rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.mft
rsync://rpki.ripe.net/repository/DEFAULT/VHdrhI_CS9SRduL0-cR0MkrycLU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:21:be:ef:3f:59:c3:e1:b2:3c:7d:00:72:92:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54776b848fc24bd49176e2f4f9c474324af270b5
Validity
Not Before: Mar 25 22:01:15 2026 GMT
Not After : Mar 26 22:01:15 2026 GMT
Subject: CN=efca2bbc771fba91428541e6f52564ad5a222714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:23:23:31:36:d2:b6:24:6e:d7:98:ec:0e:b4:
9b:fb:f6:06:4b:2c:af:ff:5f:a5:d8:e6:7a:ce:e9:
ac:6e:b5:85:be:f8:e2:fd:27:bd:68:1f:61:26:1a:
6b:0e:fa:08:86:59:d2:9e:d6:86:a6:e2:cf:38:e5:
a5:a2:86:bd:83:5a:71:a0:5d:bb:c0:ec:82:89:fc:
9c:1a:2f:16:fd:0c:86:07:35:8d:ea:27:9d:61:a9:
e4:8f:05:77:fe:c6:7a:be:5d:6d:50:8c:2f:84:4f:
26:2f:01:a8:a5:7c:cc:5a:33:e6:c5:72:2d:ef:dd:
94:df:3a:fd:91:ff:1c:cc:e3:14:16:c7:a2:9d:66:
4c:84:ed:9d:ec:f3:7d:15:0a:c0:8b:46:5c:0b:46:
f0:95:59:d4:ed:9b:df:73:d3:49:68:10:46:1f:5b:
33:11:95:0b:c0:74:4f:4a:b1:7d:f7:0e:d6:64:9c:
f1:0d:61:fd:7a:09:01:96:1f:7d:93:6a:91:8a:2c:
77:bd:fb:43:82:1e:a2:6b:01:e0:27:d5:ae:6b:77:
25:0d:6a:ce:49:e1:bd:92:3b:48:5f:62:7a:dd:70:
82:25:6a:8c:9e:38:e1:55:c4:2f:d6:bf:17:ba:c5:
d1:3d:79:fe:23:ec:83:68:a8:e0:e2:7f:b1:d0:7f:
41:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:CA:2B:BC:77:1F:BA:91:42:85:41:E6:F5:25:64:AD:5A:22:27:14
X509v3 Authority Key Identifier:
keyid:54:77:6B:84:8F:C2:4B:D4:91:76:E2:F4:F9:C4:74:32:4A:F2:70:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VHdrhI_CS9SRduL0-cR0MkrycLU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ae/ba8e58-ed60-4a7c-9891-63f2450befee/1/VHdrhI_CS9SRduL0-cR0MkrycLU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:65:f3:29:45:21:e6:82:ab:97:99:70:2e:2c:f1:ec:a9:c2:
07:13:cc:22:a4:b8:bd:de:06:a3:df:fd:b0:1d:2a:37:40:dc:
af:2a:dc:29:1b:1c:9a:0d:2e:19:95:90:36:f1:3b:02:ae:72:
a1:0a:de:d3:b8:db:ed:69:a3:0f:9a:04:94:3c:27:a2:6e:0e:
52:c4:82:7f:2e:46:ad:9f:02:1c:cf:5b:14:c1:31:64:c3:c3:
c4:a4:66:29:c5:79:89:01:50:d4:15:fe:6b:f8:fc:12:10:b0:
13:16:32:f7:5f:e8:e7:b6:07:7f:88:b3:c6:18:a3:0e:ed:d0:
99:d8:43:e6:5d:bc:10:33:56:f7:f2:a7:23:b4:f7:7e:49:f2:
59:ef:79:93:4e:15:f9:69:a8:d2:90:6b:fe:09:b9:13:8d:53:
eb:66:b6:95:47:f2:d1:55:de:15:34:22:29:84:32:1c:6a:5b:
aa:71:b1:73:af:01:c1:02:a5:3d:4a:2e:16:37:a5:e9:d7:c1:
5d:d8:9d:db:66:a1:11:cd:b2:53:0b:51:0d:60:bc:45:71:04:
f3:cb:de:fb:ec:0b:19:c4:70:d3:e9:d7:79:bb:06:1d:90:c1:
78:46:9f:b7:fe:e2:83:d1:0e:ea:1f:f3:d7:bf:52:61:bd:3a:
b8:ff:37:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:54:52 2026 by rpki-client