Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
File: vh89wilTBsx9-HLO7M1olNDg6uY.mft (raw, json)
Hash identifier: j0wKjX986d1wps45KVhPbJk1xxgNJBT+gBo1PN7ZLJ0=
Subject key identifier: 13:74:FE:40:F3:9A:73:A2:D0:B7:57:BF:2B:29:A5:9D:15:02:B2:36
Authority key identifier: BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
Certificate issuer: /CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Certificate serial: 0198D4E00342BD08CF012DBF696B2D8E5194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
Manifest number: 0767
Signing time: Sat 23 Aug 2025 03:01:47 +0000
Manifest this update: Sat 23 Aug 2025 03:01:47 +0000
Manifest next update: Sun 24 Aug 2025 03:01:47 +0000
Files and hashes: 1: 1DMwz6cy5-zMTggYwJ41QekWZIY.roa (hash: nwmEuQjAVrxnR0Ze+XAFnQ4uH1WM0zEOCcXND1iguH8=)
2: tAG_ogHK36F9dYARrabqMiVm7WI.roa (hash: XyLTR6YvVH7wVie2ZS7kPXzKlWsXCj8THEJuI5lJwIg=)
3: vh89wilTBsx9-HLO7M1olNDg6uY.crl (hash: jSJxqBNErGx4vcMVokKZdnwxnVLF/9u0aZnnHxwgmeA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:03:42:bd:08:cf:01:2d:bf:69:6b:2d:8e:51:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Validity
Not Before: Aug 23 03:01:47 2025 GMT
Not After : Aug 24 03:01:47 2025 GMT
Subject: CN=1374fe40f39a73a2d0b757bf2b29a59d1502b236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:7c:70:54:92:74:0e:84:b3:36:5a:f8:3c:30:
d3:c7:4e:4c:13:1f:fc:b8:88:6e:fe:62:01:7d:b7:
35:f7:7b:cf:fa:f1:ed:49:13:45:f0:91:c8:0d:0b:
a9:cc:83:5a:36:83:e6:0b:b9:1d:7f:19:3d:1b:e7:
f5:e4:ca:56:9b:eb:40:ac:37:93:2d:5c:cc:0c:b3:
84:e5:99:53:d0:34:ed:9a:4e:47:f3:ef:72:66:e2:
a1:76:31:11:6e:f1:4e:dc:b1:69:47:ea:37:d7:5d:
38:45:e2:5f:96:e7:38:a3:c0:dd:69:b8:bd:c0:9e:
bc:39:cb:27:5e:fd:bf:fc:14:22:91:20:96:cf:43:
21:1d:10:22:48:72:01:a7:d6:c3:e2:e9:01:7e:23:
6a:05:5b:c7:a8:0a:02:24:bb:99:b6:c9:77:67:ee:
a5:f7:56:bf:a8:eb:de:a5:3e:a4:de:d9:dc:e0:1e:
17:cf:a0:df:76:ea:79:2b:78:83:c2:ca:3b:1b:f5:
d7:e5:5b:93:ca:1a:01:8b:fd:18:c0:82:e9:e1:0e:
3e:f3:97:49:93:ae:f8:fc:19:c5:72:bb:e1:3a:87:
e6:62:59:9e:f5:44:65:72:33:3d:36:7b:64:11:0a:
31:50:76:92:18:11:b9:bd:5d:6e:f0:16:2e:a8:6f:
d9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:74:FE:40:F3:9A:73:A2:D0:B7:57:BF:2B:29:A5:9D:15:02:B2:36
X509v3 Authority Key Identifier:
keyid:BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:41:d6:7c:2e:57:51:91:c8:03:59:1e:e3:51:fc:0f:16:3b:
d4:21:ae:ad:49:bd:ce:4e:1d:15:08:9a:eb:5b:5b:e0:1f:3d:
42:65:53:a2:2b:c9:7e:eb:01:98:6a:fe:b9:96:4a:b1:f5:48:
87:13:e6:e8:71:cc:89:7d:02:ad:83:ef:74:05:c2:3a:17:12:
85:4d:28:cc:99:0f:f6:82:0e:20:b4:05:8e:88:5e:ef:d6:fe:
98:5b:23:e8:19:c4:87:64:11:1e:95:e7:b0:d6:f3:27:45:25:
3b:46:0b:af:cf:1c:50:24:1b:28:30:30:c0:73:33:04:03:56:
a2:b3:c7:cc:bf:ad:c0:da:ea:47:9d:57:3a:f6:cf:e2:57:a8:
74:2a:05:1b:a5:c7:09:84:d1:39:36:32:ea:c6:8d:27:56:64:
af:a4:79:b1:b8:8b:e3:9a:a2:a0:0a:b5:9e:6b:a4:a8:e1:4c:
6c:31:a7:a9:32:01:95:63:41:c1:f4:b0:78:e6:72:52:7d:05:
d8:ae:8e:81:14:d6:88:1c:57:88:2c:0b:42:db:cf:8a:e9:c9:
70:42:d5:8e:cd:ac:c9:96:88:36:7b:00:a8:a4:0a:04:7f:a8:
0c:72:2f:e1:69:17:4e:3d:06:8d:d4:53:6e:ba:80:3e:ac:ed:
14:cb:51:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:11:34 2025 by rpki-client