
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
File: vyk4WQ4NABlyVmLUtK5Myew6c00.mft (raw, json)
Hash identifier: vQTcUDI2a8Zlm3c7KYtpDG3CGiZfJ0O4jeTbntyHu0U=
Subject key identifier: 6B:25:6B:DC:60:C2:0D:D2:63:49:A2:A6:A7:E8:CE:93:80:17:2D:CF
Authority key identifier: BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
Certificate issuer: /CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Certificate serial: 0199FC2153EF2407BAA5071523A16FF67CBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
Manifest number: 0981
Signing time: Sun 19 Oct 2025 11:01:06 +0000
Manifest this update: Sun 19 Oct 2025 11:01:06 +0000
Manifest next update: Mon 20 Oct 2025 11:01:06 +0000
Files and hashes: 1: vQtF-L-9ooOZxF-UCZufP97_4Tk.roa (hash: uZu5EdE4zrTNj+JjaQISrCgWGaWpGkfUNjvMVUEKljA=)
2: vyk4WQ4NABlyVmLUtK5Myew6c00.crl (hash: yWaBY9hoGitO008Dgdn5vBh9J7gl15+KNlXAbm0puQE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:21:53:ef:24:07:ba:a5:07:15:23:a1:6f:f6:7c:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Validity
Not Before: Oct 19 11:01:06 2025 GMT
Not After : Oct 20 11:01:06 2025 GMT
Subject: CN=6b256bdc60c20dd26349a2a6a7e8ce9380172dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:02:3b:8b:af:d1:34:e1:34:86:0a:00:0a:6f:
3c:9d:07:43:95:a8:e6:fa:cf:08:ec:3f:23:f3:5f:
df:c6:2c:32:09:60:a2:d5:0a:c1:a4:2a:50:d5:ea:
0a:85:81:6a:f6:22:51:2b:f9:3d:b1:b7:3a:c3:4c:
b8:7d:52:50:dc:99:05:ee:3e:b7:b1:33:a6:91:f4:
dc:dd:4b:03:5e:fb:39:13:d7:91:4f:11:7e:54:52:
79:13:fa:0c:6d:0b:5f:2f:a3:c3:c6:9b:b2:44:6f:
21:64:eb:fd:03:d1:09:f2:eb:5f:19:96:7d:0e:4f:
d7:5e:4f:60:c6:d3:54:22:23:83:4b:cf:21:41:20:
ab:b8:3c:bf:f4:b7:8b:92:14:dc:17:9a:12:f2:4f:
37:37:83:90:cd:14:6a:4e:9d:b5:03:08:d0:bd:af:
5a:a2:df:29:61:42:ee:d3:31:66:04:cf:2e:5a:df:
fd:c4:9c:8a:b7:b9:44:48:8e:3c:c4:b1:36:5c:a7:
5b:7d:c8:8b:2b:31:71:7e:d7:3d:4c:06:81:2c:d8:
6c:ad:ed:f3:cc:41:a3:4e:c1:56:6a:fe:14:cd:a3:
e0:69:0d:fd:06:d8:39:85:61:42:92:35:9d:34:8c:
43:06:c4:ba:f0:1c:8c:62:57:ac:49:ee:c0:9a:a6:
21:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:25:6B:DC:60:C2:0D:D2:63:49:A2:A6:A7:E8:CE:93:80:17:2D:CF
X509v3 Authority Key Identifier:
keyid:BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:c3:c0:12:3b:a4:fe:f1:a8:e1:d6:a4:61:10:08:5e:67:11:
5e:e6:78:68:1f:26:30:4b:4c:44:08:a4:52:09:99:87:36:8f:
f1:8c:0d:36:43:99:e9:dd:a5:d2:61:4f:0e:97:44:06:c0:fe:
6d:6e:f5:0d:b7:2f:87:3f:52:80:7e:bc:f6:be:68:84:33:f4:
05:7c:f9:c0:d7:6b:bd:a4:1a:90:33:fe:82:17:44:28:c1:6e:
86:d8:54:54:25:63:a8:8b:bc:f9:9c:97:f8:4c:26:46:88:eb:
f9:e7:2e:6b:a0:e0:10:b7:51:93:94:23:83:fa:31:e8:16:f2:
01:0f:bd:ec:de:c6:c5:41:09:1d:a4:c4:3a:82:ae:ea:21:34:
96:69:72:45:f6:e2:9e:cc:6c:0d:2a:66:cc:5c:e1:3c:bf:e4:
a7:8e:15:a2:92:34:03:67:3f:85:cc:5c:58:83:6c:b0:49:de:
5e:74:85:b4:8a:93:7c:03:9c:57:40:f0:18:5f:e0:7a:ec:7f:
88:b0:ae:67:85:ca:27:c5:77:e3:9c:6c:65:01:7e:af:d1:59:
29:88:b1:24:3e:95:6c:8b:d4:38:71:5c:03:f5:09:4b:82:38:
c0:fc:0a:60:c4:16:37:97:8a:9f:55:b2:9f:8f:a2:e8:16:cd:
4b:fc:e1:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 13:06:43 2025 by rpki-client