Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
File: VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft (raw, json)
Hash identifier: ntN0MhfSjuYORkjpIwvJbSQfN7r/gf3sL1UqGJGi9JI=
Subject key identifier: EC:EE:2D:78:46:46:A6:64:E8:3A:CA:39:78:2D:0F:34:13:EB:2E:61
Authority key identifier: 54:0E:9A:C4:39:B8:F2:B2:7C:1A:26:7D:35:E0:19:5F:EC:85:94:4D
Certificate issuer: /CN=540e9ac439b8f2b27c1a267d35e0195fec85944d
Certificate serial: 019D27726B75968E74E86C27E54DB25D6DB6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
Manifest number: 0CFC
Signing time: Thu 26 Mar 2026 00:01:43 +0000
Manifest this update: Thu 26 Mar 2026 00:01:43 +0000
Manifest next update: Fri 27 Mar 2026 00:01:43 +0000
Files and hashes: 1: VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl (hash: YAqNqaPAn7EyNxyrIM4e4eC7c9GhC/6DpNUu8GaTkDk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:6b:75:96:8e:74:e8:6c:27:e5:4d:b2:5d:6d:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=540e9ac439b8f2b27c1a267d35e0195fec85944d
Validity
Not Before: Mar 26 00:01:43 2026 GMT
Not After : Mar 27 00:01:43 2026 GMT
Subject: CN=ecee2d784646a664e83aca39782d0f3413eb2e61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:f3:80:76:82:51:bd:dc:07:e7:7c:42:a3:89:
be:db:76:4b:8f:60:dd:9e:df:d3:9d:8e:85:75:1c:
63:ec:31:4f:85:4c:30:ec:f4:e7:86:03:bb:51:b6:
52:9c:94:ef:b8:54:cf:fb:56:69:67:f4:9e:8b:9b:
b5:73:fc:47:1f:62:5d:b6:c1:e5:52:ff:42:d4:f3:
35:12:48:b5:67:1b:bd:00:20:cd:4c:fb:e2:b9:be:
48:f2:e5:81:4a:7b:cc:9d:8e:fc:c6:7e:b1:13:80:
aa:6c:05:a9:fd:43:da:8b:7d:9e:69:4b:5c:89:16:
cd:67:df:19:24:27:8b:06:9c:87:5a:a9:43:8e:9e:
0e:d4:8a:b8:82:bc:5c:8d:1f:6a:ef:a7:a4:e3:22:
17:cc:10:ad:53:3d:21:6a:f9:8c:d3:96:be:0d:c4:
a6:3d:3c:e1:85:4a:84:5b:f3:cc:25:00:23:75:3c:
12:b7:6a:c2:62:57:27:be:87:c5:73:f6:2b:2f:c9:
e1:70:36:ed:c3:89:5e:7f:eb:45:1f:3d:a2:89:28:
9e:a4:b8:91:c6:e3:50:ae:54:b5:73:36:ee:ce:6a:
bd:f2:b4:71:a2:65:66:ad:a5:77:18:2b:87:5c:6c:
6e:d3:8d:47:66:44:34:1e:63:d2:1e:ee:36:23:b1:
2a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:EE:2D:78:46:46:A6:64:E8:3A:CA:39:78:2D:0F:34:13:EB:2E:61
X509v3 Authority Key Identifier:
keyid:54:0E:9A:C4:39:B8:F2:B2:7C:1A:26:7D:35:E0:19:5F:EC:85:94:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:3f:53:dd:5c:e4:0b:ae:81:60:af:4e:78:ca:9a:63:2e:c3:
d7:f0:cc:a6:42:6a:2a:55:33:01:bd:72:20:27:02:ad:7b:ed:
87:2d:40:f1:0d:d3:f1:ad:cc:ad:34:de:c2:3b:3e:cb:bd:16:
c9:e1:7a:06:6b:17:22:5b:ee:25:75:f9:db:f1:9c:fb:ee:5d:
c7:cc:17:23:a9:5c:d0:14:d3:4d:80:ad:57:1c:97:ad:1b:1d:
68:47:7f:2e:ca:be:dc:00:e9:b1:0d:ce:07:6e:db:3a:2f:10:
36:60:f3:04:8a:b4:4a:e5:ed:fd:2d:33:b6:f0:a1:64:d7:8c:
ae:23:36:c6:cf:24:0d:e8:d0:4e:67:23:73:e6:64:a2:57:37:
15:36:83:34:62:db:ff:af:b3:b4:66:5e:34:ab:22:93:ee:e5:
a0:ae:c9:21:9a:0e:f9:96:fe:e2:9e:dc:e1:c5:0c:bd:f8:96:
81:e4:61:d8:76:28:50:41:e7:5b:cc:24:2e:3e:13:ba:84:e5:
1c:8b:54:50:01:cb:22:32:ae:83:c1:92:e3:f1:a8:3f:09:13:
d4:94:a9:81:d3:46:5c:9e:55:65:5e:11:0e:02:d4:ed:f7:3c:
00:7b:ea:bc:8e:36:9a:73:b8:ba:29:93:d0:cf:fa:1e:94:41:
6a:54:62:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:45:42 2026 by rpki-client