Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
File: VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft (raw, json)
Hash identifier: zHJNZLdO7yusmC0KZqnV6Fv/djHwiiKeseaRMg+DaC0=
Subject key identifier: 9B:06:6D:25:B4:F6:81:8F:39:57:3D:6B:3F:A9:DF:95:D4:3C:E7:51
Authority key identifier: 54:16:78:C3:7A:1F:93:34:31:4F:EE:A5:83:25:EA:79:40:AF:0F:5D
Certificate issuer: /CN=541678c37a1f9334314feea58325ea7940af0f5d
Certificate serial: 0198D4E09FF30C7B28C036EAF3BC29721946
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
Manifest number: 12C4
Signing time: Sat 23 Aug 2025 03:02:27 +0000
Manifest this update: Sat 23 Aug 2025 03:02:27 +0000
Manifest next update: Sun 24 Aug 2025 03:02:27 +0000
Files and hashes: 1: VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl (hash: C4y8tuzPUWZEn42UGvV/21+/fDpkrGfVe41gqqJ8Pfo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:9f:f3:0c:7b:28:c0:36:ea:f3:bc:29:72:19:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541678c37a1f9334314feea58325ea7940af0f5d
Validity
Not Before: Aug 23 03:02:27 2025 GMT
Not After : Aug 24 03:02:27 2025 GMT
Subject: CN=9b066d25b4f6818f39573d6b3fa9df95d43ce751
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:dd:98:02:cf:40:4b:46:03:0d:5c:7e:9a:d2:
2f:2f:0b:6d:61:ea:e3:0e:14:c4:72:f0:da:8c:3b:
e6:84:57:af:c6:21:f7:ee:e1:f9:33:62:bd:aa:26:
32:63:f2:7a:05:e4:3d:09:27:c1:4e:14:96:97:dd:
b8:7a:8b:a8:87:30:a5:aa:a2:11:67:e2:19:f8:e9:
96:75:1b:65:45:b7:4b:83:16:db:e3:9d:12:74:0f:
75:57:b3:9c:07:6b:fa:cc:3f:d9:69:74:8a:34:40:
7e:90:c0:84:2d:23:81:d0:cd:dd:21:e8:88:cb:b1:
05:42:f2:d2:9f:59:42:6b:e0:9a:49:94:aa:2d:93:
e5:bc:a7:dd:9a:11:64:ca:f9:64:52:5e:75:ff:01:
be:1d:0f:0c:b9:02:9f:0b:db:fd:d6:18:c1:a3:73:
be:3f:5e:92:6d:42:5a:6a:98:7b:94:fc:8e:c5:86:
3a:b5:9e:d7:f6:eb:2d:3c:7d:0d:41:39:3f:16:bf:
f8:33:4c:ef:c2:b3:a6:cc:e3:4e:c8:8a:32:12:e2:
29:7f:e9:2c:a9:87:00:37:5f:74:36:65:9f:73:a9:
24:af:49:64:d2:52:4d:5e:22:ed:12:19:de:f2:a9:
b9:10:bc:77:1e:58:11:16:ef:bd:fa:8c:1e:4b:a6:
d8:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:06:6D:25:B4:F6:81:8F:39:57:3D:6B:3F:A9:DF:95:D4:3C:E7:51
X509v3 Authority Key Identifier:
keyid:54:16:78:C3:7A:1F:93:34:31:4F:EE:A5:83:25:EA:79:40:AF:0F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:fc:81:b4:44:5f:8c:ca:13:1f:d5:ec:bd:88:13:21:1b:6f:
24:51:47:e9:9d:dc:ea:5d:39:78:8f:0b:d6:a8:8e:d5:2e:e8:
8e:41:bf:85:6d:46:9c:13:91:14:de:b8:f0:89:0a:b6:43:d2:
69:f4:7e:b6:f1:34:63:d5:be:23:ac:b5:75:16:75:d0:5a:18:
8c:66:fc:15:bd:8b:32:01:b2:43:ee:2a:6a:0d:c8:41:2c:ae:
bb:d7:99:42:42:87:28:ca:1e:21:62:74:2b:19:64:74:12:2d:
f1:48:89:17:bd:bb:76:ae:89:1e:b5:35:27:61:fb:40:6f:cc:
04:52:85:a9:f7:93:f6:22:31:14:e3:03:12:8b:f3:70:7a:21:
d7:4a:8a:df:c9:44:2a:9c:11:ca:50:95:f7:8c:b2:02:f6:dd:
09:6d:e3:f9:d8:5b:a0:ec:53:7c:38:d1:5e:24:cf:2b:10:d8:
00:8b:2b:d1:27:8c:8e:a6:f5:90:95:1a:84:e3:e0:2c:50:72:
d9:27:e6:c2:af:9e:e5:8e:4b:5b:b5:6e:d0:33:5a:80:70:f9:
0c:c6:df:97:fd:d0:20:59:ec:44:69:18:35:f8:2d:5e:b5:2b:
a2:bd:e7:8f:d7:93:a9:c1:ea:ad:db:87:ac:7e:7a:2e:b9:2f:
62:c7:14:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjU4J/zDHsowDbq87wpchlGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0MTY3OGMzN2ExZjkzMzQzMTRmZWVhNTgzMjVlYTc5NDBh
ZjBmNWQwHhcNMjUwODIzMDMwMjI3WhcNMjUwODI0MDMwMjI3WjAzMTEwLwYDVQQD
Eyg5YjA2NmQyNWI0ZjY4MThmMzk1NzNkNmIzZmE5ZGY5NWQ0M2NlNzUxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3t2YAs9AS0YDDVx+mtIvLwttYerj
DhTEcvDajDvmhFevxiH37uH5M2K9qiYyY/J6BeQ9CSfBThSWl924eouohzClqqIR
Z+IZ+OmWdRtlRbdLgxbb450SdA91V7OcB2v6zD/ZaXSKNEB+kMCELSOB0M3dIeiI
y7EFQvLSn1lCa+CaSZSqLZPlvKfdmhFkyvlkUl51/wG+HQ8MuQKfC9v91hjBo3O+
P16SbUJaaph7lPyOxYY6tZ7X9ustPH0NQTk/Fr/4M0zvwrOmzONOyIoyEuIpf+ks
qYcAN190NmWfc6kkr0lk0lJNXiLtEhne8qm5ELx3HlgRFu+9+oweS6bYVwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJsGbSW09oGPOVc9az+p35XUPOdRMB8GA1UdIwQY
MBaAFFQWeMN6H5M0MU/upYMl6nlArw9dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkJaNHczb2ZrelF4VC02bGd5WHFlVUN2RDEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi82MTZmMDMtNDI0ZS00OTEwLWFiZTEt
MDM4OGEyNjYxNjBiLzEvVkJaNHczb2ZrelF4VC02bGd5WHFlVUN2RDEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi82MTZmMDMtNDI0ZS00OTEwLWFiZTEtMDM4OGEyNjYxNjBi
LzEvVkJaNHczb2ZrelF4VC02bGd5WHFlVUN2RDEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu/yBtERf
jMoTH9XsvYgTIRtvJFFH6Z3c6l05eI8L1qiO1S7ojkG/hW1GnBORFN648IkKtkPS
afR+tvE0Y9W+I6y1dRZ10FoYjGb8Fb2LMgGyQ+4qag3IQSyuu9eZQkKHKMoeIWJ0
KxlkdBIt8UiJF727dq6JHrU1J2H7QG/MBFKFqfeT9iIxFOMDEovzcHoh10qK38lE
KpwRylCV94yyAvbdCW3j+dhboOxTfDjRXiTPKxDYAIsr0SeMjqb1kJUahOPgLFBy
2Sfmwq+e5Y5LW7Vu0DNagHD5DMbfl/3QIFnsRGkYNfgtXrUror3nj9eTqcHqrduH
rH56LrkvYscUgQ==
-----END CERTIFICATE-----
Generated at Sat Aug 23 11:41:51 2025 by rpki-client