Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
File: VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft (raw, json)
Hash identifier: smYXLEQM/oQRuPQmca41G0+VlTepYu4PIg/AX88auqw=
Subject key identifier: 81:BB:1A:03:E7:21:1A:2F:54:74:61:08:6B:A2:23:C8:5C:16:79:56
Authority key identifier: 54:16:78:C3:7A:1F:93:34:31:4F:EE:A5:83:25:EA:79:40:AF:0F:5D
Certificate issuer: /CN=541678c37a1f9334314feea58325ea7940af0f5d
Certificate serial: 0199FC58688EA01DD441A8ABA5DBE869A43C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
Manifest number: 135D
Signing time: Sun 19 Oct 2025 12:01:16 +0000
Manifest this update: Sun 19 Oct 2025 12:01:16 +0000
Manifest next update: Mon 20 Oct 2025 12:01:16 +0000
Files and hashes: 1: VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl (hash: Lqpupk6V7LBTsKuzK2e/0W7RMbvtA/XSAYyVzlxZI0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:68:8e:a0:1d:d4:41:a8:ab:a5:db:e8:69:a4:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541678c37a1f9334314feea58325ea7940af0f5d
Validity
Not Before: Oct 19 12:01:16 2025 GMT
Not After : Oct 20 12:01:16 2025 GMT
Subject: CN=81bb1a03e7211a2f547461086ba223c85c167956
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:51:f0:2b:6f:a3:ca:ca:c8:3d:24:d4:7a:43:
b9:2a:02:7d:75:97:08:8d:24:53:3f:43:f7:ae:f7:
1a:54:0a:94:67:ab:a2:62:35:52:4f:d4:5e:30:92:
ba:29:82:0b:a3:4a:30:03:fb:0c:b6:7b:7c:cc:d7:
80:8e:68:7e:3b:2b:be:32:1d:c2:1f:4f:4e:cf:9e:
d9:c0:97:ef:b1:f9:37:53:0a:6b:cb:53:6a:d6:9f:
d4:79:6f:ae:52:a6:dc:2d:3a:85:6e:60:0c:62:e9:
4e:36:b2:b5:01:96:b3:29:66:65:34:be:70:18:0c:
7e:be:97:ee:dc:b7:94:64:2d:ed:fc:df:07:ef:19:
e0:d3:9b:ee:51:2f:8e:d7:52:e6:21:70:62:b7:31:
f2:52:22:6d:cb:15:63:56:59:08:06:69:3e:f0:d8:
e7:14:cd:fc:43:3e:57:96:db:11:7e:df:61:85:d9:
a9:04:51:88:0f:af:a9:c7:ed:dd:60:19:92:1e:6b:
f6:8c:01:4a:e1:d1:f1:48:d2:c3:5c:1e:2e:90:d8:
7a:29:ea:1a:de:a1:d7:ec:e3:31:82:39:51:46:5b:
13:58:af:ce:e8:c3:c2:23:df:93:5a:1e:b4:c1:5e:
bf:51:88:d2:dc:f1:a2:1e:40:c5:2a:11:8b:41:9d:
06:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BB:1A:03:E7:21:1A:2F:54:74:61:08:6B:A2:23:C8:5C:16:79:56
X509v3 Authority Key Identifier:
keyid:54:16:78:C3:7A:1F:93:34:31:4F:EE:A5:83:25:EA:79:40:AF:0F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:2a:42:94:d2:8c:3f:f5:46:00:1c:38:8b:c3:57:f3:5a:49:
cb:21:56:24:78:82:6a:a8:b0:60:a7:36:cf:41:e8:b8:f0:82:
68:e3:94:42:7c:72:d4:a4:43:30:ef:03:de:e9:58:00:6f:6d:
04:e6:b7:9b:80:a0:39:72:0c:a9:eb:39:36:f4:2c:e0:db:98:
de:77:dd:72:ca:fd:be:c8:ba:3b:c8:3c:f0:43:34:9d:55:a4:
31:d3:e7:2b:76:2d:09:f8:92:6b:d2:68:cc:29:9f:f1:b4:1e:
3f:2f:6a:29:a8:fe:dd:b9:53:a1:8b:86:8d:ad:bf:0c:59:73:
3f:22:ed:99:73:2d:aa:b5:01:69:73:09:39:5c:b8:95:da:bf:
5e:f0:c2:6b:73:11:04:ba:44:92:83:4c:b7:13:c9:88:b7:81:
21:35:f2:f1:15:4f:d1:93:37:03:14:b6:98:dc:fb:5c:b8:f0:
59:8b:a4:e4:28:c4:ff:07:e3:b9:c4:0d:2f:6e:be:7d:37:0a:
d1:fa:1a:b9:68:5a:09:14:03:62:9c:0a:b0:80:9b:16:cc:cf:
d4:fe:0e:9a:87:b5:f9:5d:63:99:27:7f:db:4d:d4:ca:52:38:
68:3b:a5:ee:6e:45:2e:98:9d:3a:42:dc:d1:d6:16:fc:bc:7a:
88:c4:38:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 17:39:33 2025 by rpki-client