Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
File: vFxHuPnkKkkot2dDFqcap21AHjw.mft (raw, json)
Hash identifier: /GZ2SyJEiTQ5Eyzv/rlsQtNhf6jykFCFkIXZPu8RQB8=
Subject key identifier: 68:98:9C:1E:E4:46:7B:B5:EE:8D:F4:C8:9D:6E:99:E9:46:CC:1C:56
Authority key identifier: BC:5C:47:B8:F9:E4:2A:49:28:B7:67:43:16:A7:1A:A7:6D:40:1E:3C
Certificate issuer: /CN=bc5c47b8f9e42a4928b7674316a71aa76d401e3c
Certificate serial: 0198D66079838E38CA9E1C99FC59294C37F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
Manifest number: 0BDB
Signing time: Sat 23 Aug 2025 10:01:43 +0000
Manifest this update: Sat 23 Aug 2025 10:01:43 +0000
Manifest next update: Sun 24 Aug 2025 10:01:43 +0000
Files and hashes: 1: vFxHuPnkKkkot2dDFqcap21AHjw.crl (hash: 2G4eGzQ3CFfpX/MappCPd3veyyEEpRpn+VTUXZ/BcH8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:79:83:8e:38:ca:9e:1c:99:fc:59:29:4c:37:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc5c47b8f9e42a4928b7674316a71aa76d401e3c
Validity
Not Before: Aug 23 10:01:43 2025 GMT
Not After : Aug 24 10:01:43 2025 GMT
Subject: CN=68989c1ee4467bb5ee8df4c89d6e99e946cc1c56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a5:2a:aa:6d:6b:54:ae:68:5b:b9:a8:38:d7:
14:4b:c1:45:36:e9:5b:ea:e4:1c:2c:32:2a:52:fa:
76:96:2b:9b:e2:cd:1a:68:aa:27:61:9c:2c:ac:14:
9a:13:a0:3d:2c:32:16:32:2c:37:b9:24:95:27:e8:
75:b2:a0:89:ae:88:ec:03:09:3d:63:8c:cf:d8:dd:
06:e4:63:5e:90:62:0a:0d:98:f6:e7:97:ac:86:ec:
c3:1d:b7:c7:df:15:21:4d:b1:ef:87:a9:fa:80:d6:
78:ea:3b:36:5c:83:f3:e2:66:e5:47:f5:91:f3:54:
fe:1f:90:d3:86:06:32:c2:25:35:8e:2e:13:b9:d2:
7d:bd:87:ab:59:57:9a:05:86:1f:f3:7c:92:46:ff:
93:13:1b:63:20:c7:ca:72:b1:c6:69:4b:f2:25:e3:
5b:77:f3:a1:e5:e4:27:df:81:92:4a:47:16:ee:45:
1a:3a:ec:69:49:72:28:63:50:c3:0d:60:05:c2:16:
ff:35:fc:21:e5:db:14:5f:88:dd:02:1e:7d:dc:5e:
3b:68:4f:fd:52:1c:05:92:39:15:e5:e5:89:89:11:
e9:e4:3e:b6:f1:65:93:10:3f:1a:af:18:c8:a0:3d:
6e:10:62:02:81:8f:75:e5:4c:b4:f0:8a:82:15:24:
d9:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:98:9C:1E:E4:46:7B:B5:EE:8D:F4:C8:9D:6E:99:E9:46:CC:1C:56
X509v3 Authority Key Identifier:
keyid:BC:5C:47:B8:F9:E4:2A:49:28:B7:67:43:16:A7:1A:A7:6D:40:1E:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:87:4a:03:3d:26:4a:7b:7c:e5:c8:bc:3c:4b:8a:1e:93:e6:
40:f0:6b:5f:01:63:ad:c7:d9:6b:53:9f:df:16:4d:4e:a3:b7:
ad:4c:21:64:ad:78:5f:31:4c:67:b5:aa:13:85:e5:8f:b2:ae:
36:4a:a7:fb:5d:78:14:c0:18:c4:0e:c0:af:c2:39:bd:8b:ca:
d1:fb:f3:01:83:91:5a:a1:99:f2:62:e7:13:b6:0c:c6:ce:d2:
89:6b:56:91:ec:0a:e8:7f:6f:96:28:21:d9:3c:23:ae:0d:d4:
d9:4c:10:7c:4e:23:6d:59:71:65:be:15:39:11:80:60:c1:bc:
d9:ab:f9:73:34:02:13:e7:37:80:32:53:9a:bf:b9:88:c4:b0:
ec:86:d9:0d:b8:36:76:a2:a5:93:ac:1f:e7:07:c8:98:5e:28:
3d:84:30:1d:98:6c:02:9b:e1:40:60:b7:0b:62:ca:b3:12:6c:
70:6a:8e:64:36:2a:61:45:78:ea:39:f6:61:94:28:bd:bc:90:
fb:13:e7:a1:fb:bd:db:fd:76:9a:bb:b8:29:9f:89:e0:c5:63:
73:89:7c:3b:0f:9e:32:6a:b0:35:56:14:44:9f:ec:84:b4:d7:
0b:1d:1b:42:8e:a6:b0:f9:d6:a9:5c:15:5e:c3:35:5d:84:7c:
97:92:0f:51
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjWYHmDjjjKnhyZ/FkpTDf4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjNWM0N2I4ZjllNDJhNDkyOGI3Njc0MzE2YTcxYWE3NmQ0
MDFlM2MwHhcNMjUwODIzMTAwMTQzWhcNMjUwODI0MTAwMTQzWjAzMTEwLwYDVQQD
Eyg2ODk4OWMxZWU0NDY3YmI1ZWU4ZGY0Yzg5ZDZlOTllOTQ2Y2MxYzU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaUqqm1rVK5oW7moONcUS8FFNulb
6uQcLDIqUvp2liub4s0aaKonYZwsrBSaE6A9LDIWMiw3uSSVJ+h1sqCJrojsAwk9
Y4zP2N0G5GNekGIKDZj255eshuzDHbfH3xUhTbHvh6n6gNZ46js2XIPz4mblR/WR
81T+H5DThgYywiU1ji4TudJ9vYerWVeaBYYf83ySRv+TExtjIMfKcrHGaUvyJeNb
d/Oh5eQn34GSSkcW7kUaOuxpSXIoY1DDDWAFwhb/Nfwh5dsUX4jdAh593F47aE/9
UhwFkjkV5eWJiRHp5D628WWTED8arxjIoD1uEGICgY915Uy08IqCFSTZxwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGiYnB7kRnu17o30yJ1umelGzBxWMB8GA1UdIwQY
MBaAFLxcR7j55CpJKLdnQxanGqdtQB48MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkZ4SHVQbmtLa2tvdDJkREZxY2FwMjFBSGp3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9mZDg3NjItNDdiYy00NTExLTkzYTUt
N2ExOGMxNzkwNzZkLzEvdkZ4SHVQbmtLa2tvdDJkREZxY2FwMjFBSGp3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNC9mZDg3NjItNDdiYy00NTExLTkzYTUtN2ExOGMxNzkwNzZk
LzEvdkZ4SHVQbmtLa2tvdDJkREZxY2FwMjFBSGp3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhodKAz0m
Snt85ci8PEuKHpPmQPBrXwFjrcfZa1Of3xZNTqO3rUwhZK14XzFMZ7WqE4Xlj7Ku
Nkqn+114FMAYxA7Ar8I5vYvK0fvzAYORWqGZ8mLnE7YMxs7SiWtWkewK6H9vligh
2Twjrg3U2UwQfE4jbVlxZb4VORGAYMG82av5czQCE+c3gDJTmr+5iMSw7IbZDbg2
dqKlk6wf5wfImF4oPYQwHZhsApvhQGC3C2LKsxJscGqOZDYqYUV46jn2YZQovbyQ
+xPnofu92/12mru4KZ+J4MVjc4l8Ow+eMmqwNVYURJ/shLTXCx0bQo6msPnWqVwV
XsM1XYR8l5IPUQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 12:27:45 2025 by rpki-client