Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: kmZupC0fBdPKNKXcb7kQcvQ24olOe+73t9/YooGN6XY=
Subject key identifier: A5:7F:F3:30:01:95:B0:61:4D:EB:71:78:AD:E9:EB:67:83:93:D1:2D
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 0199FC218278AF5357BDF1439F031C0959FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 04D7
Signing time: Sun 19 Oct 2025 11:01:18 +0000
Manifest this update: Sun 19 Oct 2025 11:01:18 +0000
Manifest next update: Mon 20 Oct 2025 11:01:18 +0000
Files and hashes: 1: O7wVhYp5aN-EHbBcAt5o4QIzfyg.roa (hash: 1pH3pLqu6QshZ8HwYPfHNSe335AW5zx9SMrVG3Y2btc=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: IIif3WgYb/WRd8akGOR4Q4NEtIbTjOGtn8kvrXFqqzs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:82:78:af:53:57:bd:f1:43:9f:03:1c:09:59:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: Oct 19 11:01:18 2025 GMT
Not After : Oct 20 11:01:18 2025 GMT
Subject: CN=a57ff3300195b0614deb7178ade9eb678393d12d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:14:d6:1b:36:5f:dd:a4:d6:c5:33:d2:6c:fc:
ac:bd:a1:69:14:d8:4d:1b:34:5c:2f:f1:68:e6:5a:
fa:e3:aa:de:f5:d1:55:3d:eb:03:a1:b5:d3:3e:91:
6c:46:f2:f4:76:7f:ff:94:39:29:32:3f:5c:a4:7f:
54:54:a2:95:55:84:8f:6b:ea:35:10:82:d8:32:53:
17:a6:d3:eb:31:27:93:79:05:cb:c6:83:80:f6:64:
0b:4d:d2:85:89:fc:bb:6c:87:fb:cd:f0:22:da:6a:
f8:88:9d:9b:0a:2d:30:2c:02:10:e9:a4:eb:75:4e:
87:07:d4:70:37:89:4e:03:77:07:a7:53:ff:f9:8b:
47:ed:b1:42:f5:22:63:37:b9:1c:7f:c9:01:b8:ce:
03:9a:e2:99:09:a0:0d:c6:df:d2:8f:3b:64:76:6a:
2f:8e:10:28:49:81:e2:62:3a:20:be:e7:77:85:45:
2d:39:62:1e:16:82:07:db:0e:a1:34:02:37:34:f2:
97:27:88:7d:e7:d7:2a:0c:c7:50:40:57:5c:7c:75:
c3:58:52:f0:b1:9c:97:cd:bf:6a:35:fe:f6:7f:d6:
79:de:6f:9a:d3:d8:c4:ad:13:81:6a:38:f5:f3:8c:
5e:4e:65:cc:ba:b7:e1:26:84:57:42:c5:9a:0a:9e:
8d:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:7F:F3:30:01:95:B0:61:4D:EB:71:78:AD:E9:EB:67:83:93:D1:2D
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:ee:78:b7:09:49:c4:58:c4:07:de:64:ea:68:f9:fa:7f:f6:
35:b7:fa:9f:61:3c:70:74:27:79:7e:62:a5:6e:2f:68:4e:33:
8c:63:05:81:0e:30:e6:d9:83:1c:d9:2f:e2:b0:77:2a:34:ea:
3f:78:a7:00:a1:b2:e9:8d:50:4d:36:e7:9b:a6:50:ec:a6:83:
48:30:c6:22:e6:1f:a4:7b:cb:7c:ce:ae:22:ad:46:9c:47:4a:
01:7f:bd:ec:9b:0b:3f:16:e0:61:69:02:2b:d5:53:f9:46:4f:
1b:ac:f6:93:16:69:2b:dc:f9:c1:39:37:fc:8f:ae:a4:44:6f:
60:04:76:6c:d7:f4:fc:cb:45:da:49:a1:f0:29:91:3a:56:41:
72:44:e5:ae:cf:1f:8e:8d:1a:32:61:58:3f:ed:26:a9:95:fe:
bf:01:56:68:be:e8:e5:7c:f0:3e:c4:37:c4:92:87:9b:02:66:
ca:16:0a:c0:56:13:dc:47:09:63:b9:59:f1:da:0a:9d:32:9b:
b7:1e:52:68:74:a1:d4:f3:63:85:e6:65:06:38:0d:24:f7:6d:
d1:ba:5c:2e:0f:db:e7:a1:95:77:5d:c9:c2:ad:98:58:df:89:
66:c0:8e:95:7a:6c:f0:12:7e:de:a0:01:f1:e9:8d:e2:d7:07:
f3:af:9e:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 18:32:10 2025 by rpki-client