Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
File: vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json)
Hash identifier: ivwhpKwDkLLxCju887QoqnfhErafv7g6pgAj15Jfj3Y=
Subject key identifier: 7F:76:5A:07:B8:D6:37:56:A1:B3:DF:D5:C5:2F:BD:62:3D:5C:4A:05
Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
Certificate issuer: /CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Certificate serial: 0199FBB36985EC5EA93ED9CCA6D005B8FA40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
Manifest number: 090B
Signing time: Sun 19 Oct 2025 09:01:03 +0000
Manifest this update: Sun 19 Oct 2025 09:01:03 +0000
Manifest next update: Mon 20 Oct 2025 09:01:03 +0000
Files and hashes: 1: 8TP605-bnnRU4oKxlSCpw5mXUvE.roa (hash: mDnmEgfw91sdWLEWlPQZ2jWiCvBV4IYovQSRnJwJt28=)
2: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: emXy8oRUZ4ynzvbh6wcZDr3HNbHhYVyFBkDVOB0Gzo4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fb:b3:69:85:ec:5e:a9:3e:d9:cc:a6:d0:05:b8:fa:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Validity
Not Before: Oct 19 09:01:03 2025 GMT
Not After : Oct 20 09:01:03 2025 GMT
Subject: CN=7f765a07b8d63756a1b3dfd5c52fbd623d5c4a05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:9d:68:24:28:ee:10:30:50:81:85:3d:a1:ec:
f5:f7:7c:48:13:36:2e:50:1b:fd:de:d0:af:e5:ec:
2c:7a:0a:cc:92:d5:26:9e:c8:d8:e3:12:1c:0d:2d:
45:85:3b:f4:c3:40:bf:44:07:25:ac:ed:68:15:15:
28:2b:6c:af:2e:63:8d:45:78:09:a7:61:33:e8:d8:
c4:f5:3b:48:9f:85:c7:89:56:68:46:b4:78:30:6e:
07:7a:46:4a:0b:6d:b5:df:dd:1b:9e:fa:b9:69:2e:
10:6d:c1:c2:79:91:95:e5:81:65:89:2b:40:02:6d:
96:47:df:dc:42:5c:5f:94:56:13:ac:46:d7:8c:60:
51:31:46:e6:f4:8a:cb:31:f9:93:ca:c2:9b:a5:65:
bb:f7:5d:97:0d:c8:ae:0a:df:4a:99:f2:6c:3a:f0:
6e:f3:77:7b:28:7e:3c:34:8a:71:64:6a:f4:f5:1a:
1f:00:8a:42:c6:0f:5a:de:0e:ec:22:44:e6:14:66:
8a:58:7d:5d:5e:9c:64:04:11:a9:fd:69:01:39:d0:
13:2f:90:2d:d3:d0:f6:75:4d:49:c4:6a:21:8c:84:
b8:61:61:15:3e:2d:21:f8:52:00:ad:46:72:d0:2a:
d3:84:eb:95:4c:8b:e7:72:d4:85:10:1c:bc:d6:85:
3f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:76:5A:07:B8:D6:37:56:A1:B3:DF:D5:C5:2F:BD:62:3D:5C:4A:05
X509v3 Authority Key Identifier:
keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:47:a5:08:66:c9:19:51:30:5a:56:af:72:d8:e6:6b:73:ec:
62:33:34:80:54:57:da:b3:54:0e:5e:be:c9:5f:ee:c4:ae:a0:
6b:c0:03:da:f4:90:7a:78:f8:52:8e:38:85:43:e4:8e:c0:86:
2f:be:25:9c:c4:db:c2:f6:80:b6:1c:8f:2a:92:a4:4a:74:64:
a9:6d:83:11:47:39:3f:ce:cf:79:f2:73:98:6e:7c:97:16:34:
b0:7b:2e:3f:b3:3f:61:b8:12:30:b9:45:ad:e0:68:49:43:4e:
17:af:f0:29:7b:b9:49:f9:e7:6c:62:5b:4d:f5:7c:f0:a1:e5:
0f:8d:5c:e5:51:84:cd:62:9d:93:4c:8d:1f:5f:54:ca:c1:aa:
2c:70:2e:56:39:92:a5:da:02:17:a5:4d:cf:5b:50:56:65:b2:
ac:8b:b6:1a:e1:8b:16:c3:7b:c6:05:3a:f8:5b:c4:ee:7a:71:
a2:ef:1d:9f:8e:0a:52:53:d5:a5:88:20:17:33:05:f8:59:ef:
e2:95:71:8c:4a:6e:06:5f:62:cd:b8:af:4d:6c:08:7c:63:b1:
ef:67:ab:34:23:51:b8:e8:7d:d7:3b:dc:01:47:fc:ae:b3:d4:
1d:57:81:1f:22:19:bd:e3:cd:a8:3d:f4:c7:c8:c1:b7:a7:0b:
6f:86:22:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:14:15 2025 by rpki-client