Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft
File: VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft (raw, json)
Hash identifier: gFuIITtCm2PKEr5Qve6QeJsdo9wsB3SVqgEqa53r+Vg=
Subject key identifier: 8F:AC:4B:82:11:11:78:75:E6:03:01:FB:15:4A:42:99:E8:46:38:EB
Authority key identifier: 54:08:25:EC:7B:D3:3A:02:20:4C:D1:BC:15:35:FC:1C:A2:15:09:50
Certificate issuer: /CN=540825ec7bd33a02204cd1bc1535fc1ca2150950
Certificate serial: 019D265FCA6B6F0155658D1AE1FBEEE75A8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VAgl7HvTOgIgTNG8FTX8HKIVCVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft
Manifest number: A3
Signing time: Wed 25 Mar 2026 19:01:45 +0000
Manifest this update: Wed 25 Mar 2026 19:01:45 +0000
Manifest next update: Thu 26 Mar 2026 19:01:45 +0000
Files and hashes: 1: LpiRzUIJUTDqe4gSj8ZBL1pjI5k.asa (hash: 9vpRMBwHLJ+gwVVy2U1cWncm4c8I6qEnRJ9+hefVBkw=)
2: VAgl7HvTOgIgTNG8FTX8HKIVCVA.crl (hash: Fn0CCyz+PwTESeqguxrLiB6iIa1C64nZzIFNPdSZmeY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VAgl7HvTOgIgTNG8FTX8HKIVCVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:ca:6b:6f:01:55:65:8d:1a:e1:fb:ee:e7:5a:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=540825ec7bd33a02204cd1bc1535fc1ca2150950
Validity
Not Before: Mar 25 19:01:45 2026 GMT
Not After : Mar 26 19:01:45 2026 GMT
Subject: CN=8fac4b8211117875e60301fb154a4299e84638eb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:ba:e5:16:aa:c6:4c:09:c7:e7:97:f2:96:ad:
1a:4e:5c:d3:53:b2:b8:8f:ac:0b:70:8a:e2:0f:87:
3d:fb:c4:9a:dc:64:72:ab:66:b7:a4:9f:3f:1f:7b:
23:30:37:d6:ef:5d:70:01:9c:5b:45:0d:17:40:00:
49:46:12:2b:91:e8:c0:99:9b:fd:81:3a:de:9d:40:
16:fc:a0:b1:18:55:d6:91:26:8a:89:da:58:3c:74:
ee:a5:4a:66:bf:a6:b2:80:d1:af:d4:1c:65:0f:72:
52:6f:9e:77:d2:26:43:81:f9:76:f7:01:7f:0d:71:
b3:8b:39:a5:7f:1a:78:64:b4:6e:34:89:29:a9:44:
2e:1f:34:1a:4b:63:b5:d5:41:64:c3:1a:3a:b6:62:
bf:bc:70:2b:2b:61:d1:34:58:52:61:1c:f4:7c:c4:
8e:61:63:56:0e:03:8a:c1:cd:37:94:4e:6d:5f:04:
dd:f4:24:42:04:93:b7:45:f0:40:3e:3d:20:eb:de:
89:19:69:04:5a:3a:59:27:e3:c9:a1:57:f3:0a:8e:
d2:80:00:76:5a:c0:ca:eb:3d:45:b8:6c:99:6d:51:
e9:9f:b7:fd:cc:1c:c0:a9:18:9f:e7:1c:39:ad:3e:
cc:75:a8:98:84:8a:47:ca:80:fc:c5:fc:04:56:ac:
7a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:AC:4B:82:11:11:78:75:E6:03:01:FB:15:4A:42:99:E8:46:38:EB
X509v3 Authority Key Identifier:
keyid:54:08:25:EC:7B:D3:3A:02:20:4C:D1:BC:15:35:FC:1C:A2:15:09:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VAgl7HvTOgIgTNG8FTX8HKIVCVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:58:96:23:c5:87:34:8d:06:69:a4:ee:21:38:64:11:50:42:
ac:ae:82:2e:f7:2f:4b:30:c4:5d:7b:7e:d0:d2:55:0e:f1:6e:
b6:84:d9:78:dd:c6:f6:c9:b4:55:56:56:72:6c:7d:62:31:61:
85:74:b4:4a:59:b5:b1:9b:bf:f5:97:eb:da:f7:49:c2:eb:c6:
ec:49:88:cd:09:b4:d0:bc:0a:c6:14:7d:40:c5:01:55:c2:30:
26:42:1c:1d:b2:7a:d3:d3:76:00:41:09:0a:b0:2a:5c:b4:02:
66:09:68:b2:fb:c5:21:df:2c:1a:ad:1d:d7:a6:e4:d8:b7:d9:
15:6a:06:cd:f8:6b:7d:cb:72:e3:54:b5:37:a7:90:52:67:10:
00:35:e8:fe:16:13:10:a8:2c:6a:35:43:1a:ea:3c:03:0a:40:
8b:a1:e8:91:d8:7a:18:67:cc:0a:ea:9e:32:57:f2:04:c1:ed:
ee:c9:55:6f:53:d3:01:91:36:7f:11:92:2e:92:79:9d:ea:1f:
91:13:39:62:1d:cc:28:90:37:fa:26:4b:bb:d5:13:aa:ed:8e:
6a:b1:d0:45:24:f7:9e:d2:4a:b0:83:71:a2:44:03:0d:f1:d6:
a7:29:7a:6e:1b:72:2c:db:c3:d3:07:f8:c7:ed:cc:1a:1a:26:
ee:c8:ce:62
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mX8prbwFVZY0a4fvu51qNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0MDgyNWVjN2JkMzNhMDIyMDRjZDFiYzE1MzVmYzFjYTIx
NTA5NTAwHhcNMjYwMzI1MTkwMTQ1WhcNMjYwMzI2MTkwMTQ1WjAzMTEwLwYDVQQD
Eyg4ZmFjNGI4MjExMTE3ODc1ZTYwMzAxZmIxNTRhNDI5OWU4NDYzOGViMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1rrlFqrGTAnH55fylq0aTlzTU7K4
j6wLcIriD4c9+8Sa3GRyq2a3pJ8/H3sjMDfW711wAZxbRQ0XQABJRhIrkejAmZv9
gTrenUAW/KCxGFXWkSaKidpYPHTupUpmv6aygNGv1BxlD3JSb5530iZDgfl29wF/
DXGzizmlfxp4ZLRuNIkpqUQuHzQaS2O11UFkwxo6tmK/vHArK2HRNFhSYRz0fMSO
YWNWDgOKwc03lE5tXwTd9CRCBJO3RfBAPj0g696JGWkEWjpZJ+PJoVfzCo7SgAB2
WsDK6z1FuGyZbVHpn7f9zBzAqRif5xw5rT7MdaiYhIpHyoD8xfwEVqx6XQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI+sS4IREXh15gMB+xVKQpnoRjjrMB8GA1UdIwQY
MBaAFFQIJex70zoCIEzRvBU1/ByiFQlQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkFnbDdIdlRPZ0lnVE5HOEZUWDhIS0lWQ1ZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi82OGJmNTQtZDk4OS00ODgxLWE3NmYt
NWYyZjE1YmUyN2M0LzEvVkFnbDdIdlRPZ0lnVE5HOEZUWDhIS0lWQ1ZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi82OGJmNTQtZDk4OS00ODgxLWE3NmYtNWYyZjE1YmUyN2M0
LzEvVkFnbDdIdlRPZ0lnVE5HOEZUWDhIS0lWQ1ZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX1iWI8WH
NI0GaaTuIThkEVBCrK6CLvcvSzDEXXt+0NJVDvFutoTZeN3G9sm0VVZWcmx9YjFh
hXS0Slm1sZu/9Zfr2vdJwuvG7EmIzQm00LwKxhR9QMUBVcIwJkIcHbJ609N2AEEJ
CrAqXLQCZglosvvFId8sGq0d16bk2LfZFWoGzfhrfcty41S1N6eQUmcQADXo/hYT
EKgsajVDGuo8AwpAi6Hokdh6GGfMCuqeMlfyBMHt7slVb1PTAZE2fxGSLpJ5neof
kRM5Yh3MKJA3+iZLu9UTqu2OarHQRST3ntJKsINxokQDDfHWpyl6bhtyLNvD0wf4
x+3MGhom7sjOYg==
-----END CERTIFICATE-----
Generated at Wed Mar 25 23:19:50 2026 by rpki-client