Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
File: vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft (raw, json)
Hash identifier: Tpk2ism7Z2UWN+C+J4rjcKXfB0gCvyrBf6fn2qGNNPo=
Subject key identifier: FF:59:86:98:71:29:CB:4A:91:B8:9E:46:6D:C2:C1:A8:1F:A4:13:82
Authority key identifier: BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
Certificate issuer: /CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Certificate serial: 0199FAA0BD56B10906014A46294B44ACE29E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
Manifest number: 1637
Signing time: Sun 19 Oct 2025 04:01:02 +0000
Manifest this update: Sun 19 Oct 2025 04:01:02 +0000
Manifest next update: Mon 20 Oct 2025 04:01:02 +0000
Files and hashes: 1: 2NhKjFbuAMp_doRz4AUPYRbSyEU.roa (hash: IgIsz5WqF9AXjPzeVD1tKo5xC9L3dTvcfnef5uQtbKI=)
2: vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl (hash: QuJPfisyqw+INnO2M+kxzh+JAYCyWcenDX3pkj7l1wU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 04:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fa:a0:bd:56:b1:09:06:01:4a:46:29:4b:44:ac:e2:9e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Validity
Not Before: Oct 19 04:01:02 2025 GMT
Not After : Oct 20 04:01:02 2025 GMT
Subject: CN=ff5986987129cb4a91b89e466dc2c1a81fa41382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:09:c9:0e:cc:62:74:27:b8:fc:45:42:4d:eb:
12:48:6e:ff:0a:a0:f5:31:dc:1d:34:27:52:c9:0e:
30:13:80:e4:68:94:37:f9:9e:2f:20:27:f5:a8:d5:
cf:3a:03:a6:aa:fa:55:9f:ae:64:1a:bc:7e:89:c8:
e8:40:de:30:67:c5:ac:ca:55:c5:eb:31:e5:8b:c9:
2c:58:5a:27:76:26:66:1e:ec:ae:2e:05:cd:a7:58:
24:5e:45:26:3c:98:00:78:0f:9b:10:f4:ba:b8:c3:
a2:0c:df:55:18:2c:eb:94:18:1d:84:31:3f:67:7e:
41:02:c5:ec:1c:10:da:e0:c6:f9:46:e6:ab:8f:6a:
b4:2b:71:be:5c:7c:9c:27:08:3f:b7:48:2f:cd:48:
44:4e:99:c6:60:db:e4:ae:e4:0e:ac:ac:88:49:3c:
f3:6d:77:ee:3a:62:31:8a:dc:97:6d:25:25:58:80:
c0:9c:0b:06:7d:6c:4c:7d:30:cc:2c:21:d6:12:68:
0a:d5:1d:be:57:b2:02:34:c0:c5:85:1a:01:98:be:
3d:14:3b:5d:d5:9a:c2:7c:37:e1:50:d5:6a:d3:66:
6f:1e:11:84:14:ac:18:7e:27:9d:b0:1c:c2:61:bc:
0e:2d:94:b6:af:f7:40:b2:ea:96:0b:4c:89:5e:34:
dc:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:59:86:98:71:29:CB:4A:91:B8:9E:46:6D:C2:C1:A8:1F:A4:13:82
X509v3 Authority Key Identifier:
keyid:BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:e6:a9:0c:bf:e6:2c:15:28:71:76:3d:bb:0e:66:42:16:e3:
08:dc:60:67:5b:0c:43:43:08:7f:8b:b4:18:d7:e6:a6:88:ae:
44:01:b1:1c:28:5c:5c:eb:5e:62:a9:61:35:ab:38:ca:4d:df:
f7:21:bb:8f:e4:f9:f6:a4:eb:0b:5d:d1:2c:7a:7d:ec:44:dd:
5c:eb:13:44:71:6a:52:66:53:ee:e6:49:72:1f:73:76:fe:a0:
47:b4:dd:1c:35:cf:2c:a1:3f:13:66:d0:11:23:00:8a:be:15:
2e:a1:d8:23:70:ae:75:e0:ea:e0:4d:9a:1e:01:95:71:ef:d0:
ed:84:88:6a:0a:f9:dd:08:55:85:cc:ea:08:76:c0:bc:08:d3:
56:f9:20:90:14:95:21:c9:78:ef:04:2e:31:6c:1f:a3:4a:55:
63:20:cc:d3:62:5a:67:91:eb:26:50:28:4c:93:9a:36:cd:75:
91:f0:13:d2:b6:5e:69:0e:67:70:02:96:13:39:e5:38:ce:2a:
1a:82:59:4b:d6:74:7b:ff:85:6d:56:37:bb:80:87:db:19:49:
e0:e8:65:d4:10:d0:77:2c:16:21:a2:0b:2e:34:c8:e5:67:6e:
0d:f5:f8:bc:d8:f7:2f:cb:cf:2b:ac:a9:0b:fb:44:9d:b7:3f:
47:75:6c:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn6oL1WsQkGAUpGKUtErOKeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkYTNkMGJiNDIyYjBiY2E3MDY3MTZjMjBmN2FkNThkZDI3
NjU0NzEwHhcNMjUxMDE5MDQwMTAyWhcNMjUxMDIwMDQwMTAyWjAzMTEwLwYDVQQD
EyhmZjU5ODY5ODcxMjljYjRhOTFiODllNDY2ZGMyYzFhODFmYTQxMzgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwnJDsxidCe4/EVCTesSSG7/CqD1
MdwdNCdSyQ4wE4DkaJQ3+Z4vICf1qNXPOgOmqvpVn65kGrx+icjoQN4wZ8WsylXF
6zHli8ksWFondiZmHuyuLgXNp1gkXkUmPJgAeA+bEPS6uMOiDN9VGCzrlBgdhDE/
Z35BAsXsHBDa4Mb5Ruarj2q0K3G+XHycJwg/t0gvzUhETpnGYNvkruQOrKyISTzz
bXfuOmIxityXbSUlWIDAnAsGfWxMfTDMLCHWEmgK1R2+V7ICNMDFhRoBmL49FDtd
1ZrCfDfhUNVq02ZvHhGEFKwYfiedsBzCYbwOLZS2r/dAsuqWC0yJXjTcXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP9ZhphxKctKkbieRm3CwagfpBOCMB8GA1UdIwQY
MBaAFL2j0LtCKwvKcGcWwg961Y3SdlRxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmFQUXUwSXJDOHB3WnhiQ0QzclZqZEoyVkhFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mOGE0NmUtYmRmZC00ZGY2LTgyNjEt
ZjIzMjgzNjAxNzY0LzEvdmFQUXUwSXJDOHB3WnhiQ0QzclZqZEoyVkhFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi9mOGE0NmUtYmRmZC00ZGY2LTgyNjEtZjIzMjgzNjAxNzY0
LzEvdmFQUXUwSXJDOHB3WnhiQ0QzclZqZEoyVkhFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAleapDL/m
LBUocXY9uw5mQhbjCNxgZ1sMQ0MIf4u0GNfmpoiuRAGxHChcXOteYqlhNas4yk3f
9yG7j+T59qTrC13RLHp97ETdXOsTRHFqUmZT7uZJch9zdv6gR7TdHDXPLKE/E2bQ
ESMAir4VLqHYI3CudeDq4E2aHgGVce/Q7YSIagr53QhVhczqCHbAvAjTVvkgkBSV
Icl47wQuMWwfo0pVYyDM02JaZ5HrJlAoTJOaNs11kfAT0rZeaQ5ncAKWEznlOM4q
GoJZS9Z0e/+FbVY3u4CH2xlJ4Ohl1BDQdywWIaILLjTI5WduDfX4vNj3L8vPK6yp
C/tEnbc/R3VsEg==
-----END CERTIFICATE-----
Generated at Sun Oct 19 13:10:50 2025 by rpki-client