Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
File: vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json)
Hash identifier: L1sgWjzwvMAfw7GiURudUUogXuYTBxgg42suDKdnKJU=
Subject key identifier: 2B:B1:B5:43:98:0F:6B:F4:55:AA:52:DC:BF:46:29:83:D3:63:87:EF
Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
Certificate issuer: /CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Certificate serial: 0198D65F2BB574DC758B80974DC030A61B18
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
Manifest number: 0873
Signing time: Sat 23 Aug 2025 10:00:17 +0000
Manifest this update: Sat 23 Aug 2025 10:00:17 +0000
Manifest next update: Sun 24 Aug 2025 10:00:17 +0000
Files and hashes: 1: 8TP605-bnnRU4oKxlSCpw5mXUvE.roa (hash: mDnmEgfw91sdWLEWlPQZ2jWiCvBV4IYovQSRnJwJt28=)
2: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: z92QYL2027VwbYiaivLCcjGj6lYTmBC1v36lRspzwTk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:2b:b5:74:dc:75:8b:80:97:4d:c0:30:a6:1b:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Validity
Not Before: Aug 23 10:00:17 2025 GMT
Not After : Aug 24 10:00:17 2025 GMT
Subject: CN=2bb1b543980f6bf455aa52dcbf462983d36387ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:8d:1c:11:c4:d7:72:35:7d:e2:35:82:7f:6e:
bb:7b:5d:e0:45:6d:9c:fa:33:06:07:ec:99:26:53:
f6:20:b3:26:b7:a8:9d:50:4d:69:cc:4b:b5:6a:da:
d8:7f:5b:3e:53:4f:3b:93:a6:d2:ab:e2:8e:de:e0:
ae:28:da:08:50:21:45:2d:16:5d:75:57:c9:9a:f6:
ee:a4:fe:b1:57:c4:4e:ce:2d:ee:2b:0c:95:27:58:
87:0f:01:7f:72:fb:7e:80:15:6b:2a:14:98:d4:36:
de:cf:f7:0d:f3:a5:ee:3e:85:34:18:1b:06:98:ae:
3d:6a:ab:b3:e4:62:ff:64:65:2d:98:16:fa:76:49:
e5:0c:75:02:80:2e:2e:49:e7:79:3c:d0:fd:68:ca:
e2:d2:4b:ad:62:0a:2c:0a:a8:fd:1c:1b:3e:48:3e:
82:3a:49:34:0b:4b:f9:cd:84:02:eb:c2:d3:0f:5a:
0f:a0:90:ca:8a:af:57:fb:95:25:b8:26:81:0b:3a:
a2:26:e2:cc:79:fc:48:cc:fd:2e:17:65:c6:3e:67:
19:f1:2d:a8:ef:79:ba:55:81:b6:aa:b7:f6:20:e7:
0b:c5:42:0b:56:e0:76:2a:82:0b:16:d0:ea:2f:58:
48:c6:1b:c9:8e:b6:a9:9d:8c:1e:98:6d:35:67:d5:
61:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:B1:B5:43:98:0F:6B:F4:55:AA:52:DC:BF:46:29:83:D3:63:87:EF
X509v3 Authority Key Identifier:
keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:e2:69:61:83:9e:43:bd:88:23:f9:a2:3a:4a:d2:b2:1e:27:
ef:2d:2f:42:18:93:10:b9:a2:ae:ea:9c:93:02:fd:a2:bb:74:
40:29:56:ad:db:ee:96:f8:d1:a1:79:7a:51:97:78:e2:d2:eb:
d3:70:97:95:e4:d5:c7:23:e8:f1:67:40:10:d8:70:12:0d:6c:
d5:89:2c:5c:b6:84:7c:38:67:a7:e7:61:0b:df:57:d0:5e:22:
42:59:dd:06:0a:4b:8b:51:b0:3e:9b:c0:24:6b:a4:9b:a2:0e:
e7:3a:c2:de:82:0d:72:3c:c1:ed:2c:48:5b:22:f5:c4:21:70:
10:cf:55:00:ed:e5:f7:49:f6:f7:f5:ce:fa:44:e0:5e:f8:73:
31:4e:c5:cd:4a:a9:62:5c:e3:37:0f:8b:7f:db:7e:f3:c4:1e:
26:9f:8a:ed:44:ed:9d:92:0f:d0:06:08:8f:5e:64:3a:a2:64:
5b:dc:d0:fc:f8:cc:8c:b3:63:91:d4:82:14:5b:e3:96:d6:aa:
de:e9:0c:d5:bc:0f:8b:0b:aa:b3:84:c7:71:20:db:36:f0:d1:
cd:1e:a0:58:96:d4:b5:bd:f3:e8:0a:44:d5:d8:8c:82:fb:21:
99:2f:a8:1d:93:6c:fc:29:78:8d:94:db:85:69:4b:2e:6c:13:
54:24:08:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:14:27 2025 by rpki-client