Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: bqj76ZKbr31qlF/On8AN28gRU/4z/KsZuXavNTmd2X0=
Subject key identifier: CD:92:F8:2F:CB:23:31:88:06:21:AD:C1:79:21:91:7C:1D:44:BF:DD
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 0198D4A802D744DC679698EA532C0DEADA96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 043E
Signing time: Sat 23 Aug 2025 02:00:37 +0000
Manifest this update: Sat 23 Aug 2025 02:00:37 +0000
Manifest next update: Sun 24 Aug 2025 02:00:37 +0000
Files and hashes: 1: O7wVhYp5aN-EHbBcAt5o4QIzfyg.roa (hash: 1pH3pLqu6QshZ8HwYPfHNSe335AW5zx9SMrVG3Y2btc=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: DfypD7OciT1G6sy3mwRqaOkxkxKMeDviQoNedVQGEbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:02:d7:44:dc:67:96:98:ea:53:2c:0d:ea:da:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: Aug 23 02:00:37 2025 GMT
Not After : Aug 24 02:00:37 2025 GMT
Subject: CN=cd92f82fcb2331880621adc17921917c1d44bfdd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:28:2d:26:d5:38:21:ca:a1:0a:13:e6:c5:42:
a0:8c:89:de:1d:5d:ff:1a:80:12:d2:a7:ed:ea:6c:
c0:33:ea:d9:c8:07:11:b2:34:5a:e5:ff:83:d1:02:
a0:8b:a4:7f:a8:ac:39:f4:c5:59:b0:b4:0c:a5:1f:
11:a2:00:d8:14:a7:af:eb:eb:06:43:8c:01:4e:46:
94:64:89:00:c4:8d:38:28:64:3b:18:37:ec:48:63:
cb:b5:39:ae:7d:de:1d:bd:9a:7b:31:87:65:d4:77:
86:91:57:c2:a3:2f:8f:73:8c:f0:7a:0b:05:23:1f:
9a:07:6b:a3:dc:f2:a7:46:ba:73:99:da:bb:f0:b7:
d0:f1:9f:a1:d3:40:a7:a7:c4:a4:6b:32:b8:31:aa:
c0:33:cd:b4:55:f8:98:d8:3e:13:a7:53:3e:0a:ac:
0c:df:2a:88:5f:fb:24:29:49:d4:ec:0b:08:73:de:
ae:c2:44:17:c2:4e:42:46:8a:a3:de:37:2c:1a:28:
db:02:1c:3a:cd:ee:f0:b7:2f:6c:ca:50:db:aa:98:
da:17:5b:35:54:63:7d:1d:bf:7f:6c:99:f1:74:e3:
d1:6b:d4:c7:46:de:a5:e0:77:14:bc:36:ff:ec:18:
cf:f6:47:6c:7f:f2:91:5a:0f:0e:63:cc:88:5b:6b:
2b:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:92:F8:2F:CB:23:31:88:06:21:AD:C1:79:21:91:7C:1D:44:BF:DD
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:c6:dd:c9:6b:b9:0b:2c:bf:5c:b3:43:02:74:e7:87:ba:3f:
8d:d8:de:b3:ee:a3:9b:97:07:da:24:54:31:78:c3:28:c6:ff:
29:72:80:23:2a:43:52:10:53:a9:a1:0f:b2:0b:36:0c:b5:7a:
1d:01:e7:48:8a:8f:87:78:08:e9:0d:5f:31:0f:05:8a:b0:eb:
f9:92:61:e0:d3:d2:f7:5d:1d:74:8d:0c:6b:f9:f8:05:2d:6d:
a1:91:cd:28:ca:5e:b4:b8:0c:b6:bd:54:7b:34:7c:b3:1f:8b:
2b:b0:3c:4e:be:16:88:d7:9c:43:f2:8e:64:98:8d:b4:15:77:
03:c0:2f:5d:21:90:f0:3f:b6:73:b2:02:38:9e:22:5f:49:2a:
ab:ff:7a:57:91:4f:6c:7a:f0:64:2d:1d:a1:b2:bf:a3:41:6f:
30:9a:bc:51:43:46:f2:3a:05:d9:be:22:3a:c1:6e:d9:e2:29:
fd:67:aa:5b:ac:bb:07:57:69:80:7b:13:78:b1:09:7b:8e:df:
13:f0:7e:27:56:f4:45:f6:cf:d1:d5:90:c2:cf:c5:26:96:b6:
20:65:80:8d:f6:98:55:70:06:b8:3e:95:ed:1e:81:7c:16:42:
94:5a:54:e0:93:f7:b9:84:34:d0:99:a0:5e:2e:31:4a:f9:d7:
43:2f:aa:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:34:02 2025 by rpki-client