Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
File: VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft (raw, json)
Hash identifier: oHEhHO1HnWgv8ucxE/cy8B+6sUA6DKMFL/PeJRopBAA=
Subject key identifier: 39:E9:54:88:5A:61:79:62:8A:61:8D:87:32:C5:6B:FF:72:C6:CD:B8
Authority key identifier: 54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
Certificate issuer: /CN=54ce2445a2e8874318bf249b73a654c990919ee0
Certificate serial: 019D25F153EBBE046B805A28FEAE89010C2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
Manifest number: 1019
Signing time: Wed 25 Mar 2026 17:01:05 +0000
Manifest this update: Wed 25 Mar 2026 17:01:05 +0000
Manifest next update: Thu 26 Mar 2026 17:01:05 +0000
Files and hashes: 1: 2oHiZnjzT420MbEkQGJ7v40Fe9I.roa (hash: Czu1tA9q/Wmcp0lOrzTS/3SnNIxEWPYmLWHdzKOsNLk=)
2: VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl (hash: G6ErwRrQsGlnH3ZS6fjVQzn9A0o7sEdz6zJcwubCi3o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 17:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:53:eb:be:04:6b:80:5a:28:fe:ae:89:01:0c:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ce2445a2e8874318bf249b73a654c990919ee0
Validity
Not Before: Mar 25 17:01:05 2026 GMT
Not After : Mar 26 17:01:05 2026 GMT
Subject: CN=39e954885a6179628a618d8732c56bff72c6cdb8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:2d:a0:4d:f5:21:2c:46:72:2e:da:d1:ef:c2:
35:1b:cd:7e:df:e0:3a:1c:31:80:03:3f:41:31:c6:
4f:f3:9f:68:67:14:8d:cd:b4:b5:be:f9:6e:99:e5:
2c:c5:7f:69:8e:be:b1:f1:48:db:7b:b6:2f:0e:a4:
3b:4d:4d:a8:46:71:ce:74:53:fd:f2:0c:72:71:d9:
02:d7:12:09:73:3b:1d:5b:8d:f1:c0:7a:1e:46:5f:
c6:2e:cd:44:a6:6f:b4:61:9e:cd:de:87:a6:4a:4b:
a1:22:97:c3:b8:e5:47:0a:6d:47:dc:d9:0a:ce:07:
91:51:cc:b6:e2:0c:23:87:04:24:04:7d:cd:22:ec:
b2:7b:c5:bf:f0:15:67:1c:d4:b6:aa:ac:87:45:4c:
56:15:07:d1:fe:af:39:13:4c:77:e5:a2:a1:2f:46:
f9:48:6e:51:94:fb:ad:ef:0b:88:c2:1a:33:34:79:
7d:0a:05:6b:a3:cf:08:84:00:01:04:d0:ba:2e:ab:
8d:2e:c6:d7:40:dd:91:f9:28:c2:67:f3:25:3b:7d:
61:cd:37:95:2e:4e:9e:56:32:39:fa:41:cb:5f:fd:
d5:a2:3e:ce:ac:0d:34:3a:e9:71:b9:07:bc:c8:73:
4a:ee:69:ea:8d:f7:fe:1c:cd:e5:47:26:43:af:60:
d6:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:E9:54:88:5A:61:79:62:8A:61:8D:87:32:C5:6B:FF:72:C6:CD:B8
X509v3 Authority Key Identifier:
keyid:54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:3a:c8:41:f7:68:cd:7b:86:f1:fc:e3:09:96:8e:2d:f0:3f:
59:18:75:c7:67:8e:30:76:4a:22:41:7e:55:be:b5:b4:a7:76:
1f:e4:dc:5b:80:c8:e9:05:eb:34:92:c6:67:86:60:b6:1b:2f:
0d:db:35:9c:2c:36:dd:6a:c7:12:5f:76:31:a7:df:af:24:e1:
96:df:bc:23:1b:27:3d:df:b1:37:5f:2f:d3:41:01:fb:a7:00:
ee:5a:1d:5e:05:b2:13:03:54:23:86:24:d2:60:f7:64:b1:69:
6a:fe:46:c0:74:b1:36:4f:10:18:0a:9b:24:75:c5:11:17:54:
4f:3a:60:87:c3:0a:4a:0b:01:f8:27:16:51:be:95:83:67:5d:
43:e9:0f:b7:1a:07:22:9d:b6:ac:a0:ff:f8:34:b3:7e:ee:ca:
40:9f:c4:6f:e7:62:05:91:ef:c4:25:0e:f4:38:51:af:00:bc:
fc:77:ba:dd:25:13:0d:a6:35:55:7a:c9:b0:7a:29:bc:ea:4a:
d5:f1:da:19:52:54:60:12:0e:4c:7f:9c:4b:fc:83:82:bc:de:
48:0f:aa:c8:50:7a:05:ff:d1:22:a2:d8:14:a8:72:79:32:e9:
6a:93:53:2f:31:8d:84:66:8d:50:b8:2f:ad:78:f0:d0:e4:96:
51:37:93:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:55:10 2026 by rpki-client