Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
File: vyk4WQ4NABlyVmLUtK5Myew6c00.mft (raw, json)
Hash identifier: C3Wgx8ODalNXjAEMeZMI7KeZqGxlOaONGjn2BYb4tpo=
Subject key identifier: 3C:FB:66:7D:66:B5:5D:CF:10:B8:CD:3B:D5:2A:B6:B6:0E:AF:7E:81
Authority key identifier: BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
Certificate issuer: /CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Certificate serial: 0198D4A82F90AE7E5577ABB9D1B998C301F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
Manifest number: 08E8
Signing time: Sat 23 Aug 2025 02:00:48 +0000
Manifest this update: Sat 23 Aug 2025 02:00:48 +0000
Manifest next update: Sun 24 Aug 2025 02:00:48 +0000
Files and hashes: 1: vQtF-L-9ooOZxF-UCZufP97_4Tk.roa (hash: uZu5EdE4zrTNj+JjaQISrCgWGaWpGkfUNjvMVUEKljA=)
2: vyk4WQ4NABlyVmLUtK5Myew6c00.crl (hash: cw/rJ4DTKdODpshQ6Lwlx5MIKlm3Qllv3pQt58KJPQc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:a8:2f:90:ae:7e:55:77:ab:b9:d1:b9:98:c3:01:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Validity
Not Before: Aug 23 02:00:48 2025 GMT
Not After : Aug 24 02:00:48 2025 GMT
Subject: CN=3cfb667d66b55dcf10b8cd3bd52ab6b60eaf7e81
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:f7:60:d3:e3:f0:d1:ab:0f:94:06:f0:61:08:
99:f5:78:f1:b8:98:94:87:82:24:e2:2b:d6:f9:74:
1b:83:19:7e:ef:72:ba:e2:51:df:10:76:2c:fa:16:
95:58:3f:cc:30:13:3f:52:2a:59:ec:26:be:e1:f4:
18:e0:5d:26:5f:c5:f1:51:28:84:db:e8:c5:1f:c3:
dd:3f:a1:31:bd:6b:2b:6c:2f:a1:07:c8:b2:fb:51:
59:a9:8d:a8:5a:33:27:53:0a:8d:9d:92:a3:8e:2b:
ab:dc:4b:40:60:94:ec:51:b2:dd:06:64:81:42:12:
4f:c1:fb:c2:fb:82:1a:8f:8a:6c:56:f0:dd:69:90:
0d:d0:e9:d0:7d:4b:ac:8c:09:da:29:9a:02:d5:a0:
94:34:88:10:d8:26:3a:1f:0f:f4:4c:99:c8:6e:4c:
97:98:64:f4:ab:ee:68:25:3c:c6:39:c9:80:8d:41:
8f:ca:40:2e:1d:43:e1:af:fd:7c:5f:f3:b6:b0:69:
13:fd:45:b9:53:dd:38:41:b5:09:e6:b2:2e:44:ff:
ed:ef:fc:9d:ba:1a:6a:bd:77:7e:83:36:be:02:af:
7c:4e:3e:3b:d0:6e:a2:6d:07:50:08:c4:14:be:3a:
db:aa:64:5d:36:f1:d9:eb:7e:07:22:9d:62:81:21:
72:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:FB:66:7D:66:B5:5D:CF:10:B8:CD:3B:D5:2A:B6:B6:0E:AF:7E:81
X509v3 Authority Key Identifier:
keyid:BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:61:54:57:9b:ba:fd:2a:fa:ac:c3:b2:46:ac:7c:0a:d4:db:
e8:8b:65:3f:a9:3e:2d:ea:7a:bb:a4:13:2e:3c:bb:a4:0f:27:
79:c6:43:8a:1d:24:58:6e:9c:ca:10:16:84:0f:31:b7:e9:c7:
3d:08:53:19:90:b0:02:f1:c8:5f:02:13:65:01:d7:27:f2:a6:
5d:f6:1b:f6:cb:da:b1:9a:71:3c:9b:c7:c4:ea:39:3a:26:48:
51:8c:18:d7:9b:b0:0c:d4:19:5d:6c:0d:29:90:1f:39:4e:0b:
7d:52:53:d5:29:dc:10:ff:d0:0e:9f:f5:57:84:26:f7:2a:8f:
42:f1:26:6c:f9:d7:f8:6d:ea:48:e0:22:11:af:09:48:18:9f:
60:d3:db:68:22:b1:ce:7e:93:dc:7f:8a:39:96:f8:c4:95:82:
a3:88:6c:07:27:be:83:ae:87:4e:38:26:98:e8:00:61:84:c7:
73:69:86:98:28:4d:93:59:95:a7:17:0c:37:ba:8b:a0:49:3b:
c6:8a:9f:b5:44:45:6c:12:f3:28:71:77:3a:57:d8:1a:78:10:
11:49:68:52:12:b3:56:d2:7e:d8:32:f3:1b:d6:1b:87:69:f8:
48:4e:c6:86:23:38:fb:a4:71:f7:58:23:19:f7:89:e3:3d:4b:
ad:bc:27:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:49:35 2025 by rpki-client