Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
File: vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft (raw, json)
Hash identifier: zxDHU34TEiL+AoBlG6spsvDrOdSGF0p4FZbJMkg0L9k=
Subject key identifier: 4D:4F:F1:69:3F:F1:74:C5:9A:8E:1E:85:A1:FD:A4:6A:1C:12:E4:90
Authority key identifier: BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
Certificate issuer: /CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Certificate serial: 0198D515D52FB1A9DEA93C5C373D33B01194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
Manifest number: 159F
Signing time: Sat 23 Aug 2025 04:00:34 +0000
Manifest this update: Sat 23 Aug 2025 04:00:34 +0000
Manifest next update: Sun 24 Aug 2025 04:00:34 +0000
Files and hashes: 1: 2NhKjFbuAMp_doRz4AUPYRbSyEU.roa (hash: IgIsz5WqF9AXjPzeVD1tKo5xC9L3dTvcfnef5uQtbKI=)
2: vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl (hash: BXi7iRnXiWLWxygtk+874KSkyGOa2wp8uIg68WVsb5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 04:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:15:d5:2f:b1:a9:de:a9:3c:5c:37:3d:33:b0:11:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Validity
Not Before: Aug 23 04:00:34 2025 GMT
Not After : Aug 24 04:00:34 2025 GMT
Subject: CN=4d4ff1693ff174c59a8e1e85a1fda46a1c12e490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e4:8b:e2:e4:3a:25:99:d6:55:c0:f5:25:dd:
e2:df:6f:fa:43:60:76:d9:8d:29:41:b2:f6:9c:9a:
fb:a2:2f:24:f7:e2:e1:d0:41:48:29:dc:0a:06:4d:
c1:09:11:99:d3:32:35:9a:8d:03:23:5f:4d:1b:03:
9f:ea:5e:07:19:81:bc:ed:10:4a:34:35:57:19:3b:
d5:b3:f7:63:5f:71:58:c4:a1:d0:ee:eb:cd:d0:7a:
a4:77:b1:4d:9c:8a:77:48:07:82:ce:eb:01:29:1b:
b2:97:0f:16:d9:01:c6:bc:ff:53:4c:62:a4:96:e9:
1e:2a:28:8a:47:64:c1:8e:bb:a4:a9:f2:04:c2:e5:
4a:9f:cd:4c:c9:fa:b4:5f:85:fd:5b:35:af:29:4c:
5d:77:f4:7c:63:1d:65:1c:21:f8:d1:19:9a:02:e2:
ca:9d:37:16:5f:e4:31:18:f3:0a:08:91:93:5e:eb:
e9:f1:00:7d:bc:cc:de:11:57:4f:09:9f:da:e3:2f:
42:77:b4:2c:b5:34:b3:03:c6:41:1e:d1:e2:83:0a:
5f:d1:64:99:9d:a4:f6:f7:9a:08:2c:19:9a:8b:1e:
22:a5:aa:95:ff:ee:44:63:cb:36:df:1a:fc:be:92:
2e:7a:04:99:51:61:d4:54:36:22:ec:23:ed:ac:99:
8c:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:4F:F1:69:3F:F1:74:C5:9A:8E:1E:85:A1:FD:A4:6A:1C:12:E4:90
X509v3 Authority Key Identifier:
keyid:BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:dc:ab:41:51:db:89:e8:f9:de:25:e8:c7:33:c6:8a:20:4d:
ca:fa:d7:1f:ea:15:e9:00:1d:7b:22:77:f0:19:89:9a:54:eb:
93:eb:62:d0:bf:2a:a4:f8:ca:fa:de:16:dc:ff:f6:5e:81:b6:
1a:9d:ea:c3:d1:8b:b7:48:f6:b9:0b:0f:30:91:29:cf:94:c0:
36:87:3a:35:a0:7d:aa:e7:d7:63:4e:e7:7d:e3:dc:00:c4:48:
c3:3a:f6:d8:b7:98:c4:43:17:c7:25:a0:b5:a0:e3:46:60:62:
13:d7:18:d6:1c:b9:dd:77:af:3a:c5:97:18:06:3b:2b:63:c8:
1c:94:99:a5:39:49:47:b3:4a:69:82:98:04:8c:c5:66:df:98:
fe:a6:76:8a:c4:a2:5d:8c:63:70:9b:92:cb:42:21:39:1e:1b:
72:c0:db:26:ef:56:8c:e2:19:11:d5:a1:62:a5:9e:cc:b4:65:
2f:03:6b:a0:01:7f:59:f7:66:ec:9c:21:63:b0:50:2d:be:5c:
6c:78:c3:ec:c4:e8:d0:23:79:58:81:ac:ed:9d:6c:2e:97:45:
f9:e9:dd:18:cb:fe:9c:92:97:26:a5:03:27:73:d6:44:39:ab:
aa:5c:45:a8:63:6f:10:fd:7d:e3:bc:76:e1:95:9e:12:ea:a1:
0b:00:5d:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:39:39 2025 by rpki-client