Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft
File: VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft (raw, json)
Hash identifier: ntgTRYCVsl/Knxt9ChtcXp0s6m5ocwqDg5tceRmagBI=
Subject key identifier: 02:99:FE:77:EB:10:3D:87:9F:61:A4:09:E7:E7:2D:5A:05:6D:BF:A7
Authority key identifier: 54:08:25:EC:7B:D3:3A:02:20:4C:D1:BC:15:35:FC:1C:A2:15:09:50
Certificate issuer: /CN=540825ec7bd33a02204cd1bc1535fc1ca2150950
Certificate serial: 019E1D901AF5F3E40918A598E2D3E22C0850
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VAgl7HvTOgIgTNG8FTX8HKIVCVA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft
Manifest number: 0123
Signing time: Tue 12 May 2026 19:00:43 +0000
Manifest this update: Tue 12 May 2026 19:00:43 +0000
Manifest next update: Wed 13 May 2026 19:00:43 +0000
Files and hashes: 1: LpiRzUIJUTDqe4gSj8ZBL1pjI5k.asa (hash: 9vpRMBwHLJ+gwVVy2U1cWncm4c8I6qEnRJ9+hefVBkw=)
2: VAgl7HvTOgIgTNG8FTX8HKIVCVA.crl (hash: mPxfihbbwATrf9+tsGu28CMzWhdI1n6Fbj5xl16Es28=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VAgl7HvTOgIgTNG8FTX8HKIVCVA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:1a:f5:f3:e4:09:18:a5:98:e2:d3:e2:2c:08:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=540825ec7bd33a02204cd1bc1535fc1ca2150950
Validity
Not Before: May 12 19:00:43 2026 GMT
Not After : May 13 19:00:43 2026 GMT
Subject: CN=0299fe77eb103d879f61a409e7e72d5a056dbfa7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:75:48:28:0b:43:52:f1:43:9a:07:4e:1a:0c:
9c:ad:73:19:7a:bf:db:3a:b1:c6:0b:5e:ae:2e:26:
ee:b7:5c:45:9d:86:db:e9:40:e9:bb:55:1a:da:5b:
98:df:bd:e3:95:71:3b:8e:be:d5:b5:09:e6:95:57:
6c:09:99:22:66:77:13:2f:2a:50:23:6e:ca:f7:d0:
f9:dc:e3:a0:ff:37:92:1c:8b:a3:ef:17:73:59:68:
90:27:12:9b:4a:42:c0:14:43:d0:3a:9f:d1:98:93:
2b:11:3f:7f:af:e7:8c:50:68:f4:1a:a6:fb:a5:00:
ff:7a:4d:d6:aa:ff:d7:47:28:b1:36:96:02:fd:a1:
e3:f4:5b:c8:19:41:47:4d:d9:26:49:17:30:4f:11:
83:24:58:06:5a:2d:79:e6:ac:e6:96:d0:93:2b:0e:
30:51:97:e6:1e:6a:7f:13:8c:e5:8c:10:21:77:4d:
60:d5:ee:71:2a:ab:4e:9b:55:5e:ef:68:ac:43:27:
8b:bb:c4:ba:ce:44:4e:7b:da:14:22:c2:15:c4:44:
51:4f:5a:d9:12:55:18:6a:60:1d:dc:98:05:78:ea:
2f:af:ac:7c:6e:e4:d2:7c:11:0c:65:b4:90:2f:74:
28:68:53:cc:35:1b:30:25:f5:bc:e5:25:86:62:f3:
92:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:99:FE:77:EB:10:3D:87:9F:61:A4:09:E7:E7:2D:5A:05:6D:BF:A7
X509v3 Authority Key Identifier:
keyid:54:08:25:EC:7B:D3:3A:02:20:4C:D1:BC:15:35:FC:1C:A2:15:09:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VAgl7HvTOgIgTNG8FTX8HKIVCVA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/68bf54-d989-4881-a76f-5f2f15be27c4/1/VAgl7HvTOgIgTNG8FTX8HKIVCVA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:9c:ca:54:a6:5a:16:f8:dc:aa:3e:26:3f:1d:5d:a7:08:05:
7b:8c:1d:f1:82:29:51:39:d8:24:73:3a:07:45:20:bd:90:c9:
85:db:7b:64:1e:d3:5c:0f:99:86:ce:c4:af:06:d0:ca:3d:08:
46:cb:fd:55:3c:1b:b7:a6:71:82:b3:ad:83:bc:d6:66:9d:9d:
62:3a:5b:d6:bd:9e:5d:f1:62:9a:2b:7f:ba:e6:30:3f:21:f1:
99:41:4e:2e:73:fc:f4:85:ee:60:f6:17:fa:e7:e8:9f:00:54:
51:56:36:07:e8:c3:bb:37:ad:ac:6d:d3:8c:7f:51:1b:62:1b:
39:96:63:f7:e4:6b:ff:72:0d:15:36:c5:9c:5a:49:e9:ee:0e:
d8:41:5d:34:56:2b:d2:3c:ed:1c:c0:14:fa:c4:7e:2d:6a:02:
5e:ec:07:78:22:29:5d:91:76:ae:9c:da:bb:97:b0:50:78:a2:
c0:2e:1c:8d:ac:66:f9:ef:d9:ff:8e:31:6b:07:29:f2:ac:d7:
2d:dd:f3:f3:dd:68:d1:1a:1d:41:ac:ea:e0:15:1a:5a:b1:81:
c6:d5:55:b6:27:b4:e2:8f:a6:99:15:eb:fe:48:42:cc:20:42:
4d:fe:42:86:80:e5:75:7e:13:aa:b3:75:8a:e4:28:e9:f4:83:
4e:25:9c:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:50:18 2026 by rpki-client