Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
File: vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft (raw, json)
Hash identifier: vdRQXryIXlPDL95j2T88ovVLF6DIkRWRjbWG/Vp1O1k=
Subject key identifier: 78:CE:6E:D8:B4:16:78:89:3E:AC:16:7A:1C:63:5F:D6:43:53:06:7D
Authority key identifier: BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
Certificate issuer: /CN=be5539afe925db80b415efb14c631b2d82c8cedd
Certificate serial: 0199FC8FA2380426B7D449B8154DEA4D952C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
Manifest number: 02BF
Signing time: Sun 19 Oct 2025 13:01:35 +0000
Manifest this update: Sun 19 Oct 2025 13:01:35 +0000
Manifest next update: Mon 20 Oct 2025 13:01:35 +0000
Files and hashes: 1: vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl (hash: P4HAMJoyb6xkMEZ4kqnAcv5/GidrSWO8XxSBRZW3npA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:a2:38:04:26:b7:d4:49:b8:15:4d:ea:4d:95:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be5539afe925db80b415efb14c631b2d82c8cedd
Validity
Not Before: Oct 19 13:01:35 2025 GMT
Not After : Oct 20 13:01:35 2025 GMT
Subject: CN=78ce6ed8b41678893eac167a1c635fd64353067d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:24:20:8f:e1:0b:35:f9:ed:b1:53:61:e7:48:
5b:74:02:62:6e:ec:23:0e:93:4b:55:e0:a2:24:87:
76:ec:6d:3b:4d:9b:78:75:cf:28:f4:0a:d4:41:f0:
28:90:52:bd:bf:78:93:26:62:6f:05:b1:74:33:11:
e4:4c:50:bf:df:51:a0:82:15:00:bd:6e:99:b9:d9:
32:d3:11:db:0a:b3:41:a4:7f:28:c2:d1:6d:33:6c:
1c:df:0c:8a:e8:a9:4b:ac:5e:c6:b4:59:11:8d:96:
8c:16:4c:f4:df:d7:8b:01:54:42:dc:ce:0d:cf:8c:
2d:e1:aa:a6:8a:5f:71:6f:eb:aa:98:ca:e8:b5:72:
88:03:0d:75:26:88:4f:fd:9c:7f:74:ab:14:ea:89:
54:95:ee:ea:fb:94:59:bc:09:98:3d:37:eb:f4:91:
d0:b4:35:63:04:87:98:de:85:f9:4e:35:53:7f:63:
d3:bf:34:7e:19:f6:69:f6:d1:0f:0f:af:ab:f3:cc:
e3:08:38:33:5a:d4:a7:be:68:9c:bf:cc:44:77:40:
b9:10:e6:3b:27:54:bf:10:66:02:7f:3f:8f:a6:44:
f7:25:9f:31:28:1e:03:1c:40:d7:ac:bb:e2:1b:41:
04:55:56:d6:a4:18:8e:37:d1:49:db:2c:b7:23:b8:
62:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:CE:6E:D8:B4:16:78:89:3E:AC:16:7A:1C:63:5F:D6:43:53:06:7D
X509v3 Authority Key Identifier:
keyid:BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:b1:7a:b2:1b:a2:d3:ab:5f:8e:2d:80:3f:b9:43:b7:b4:5e:
3b:76:24:b1:20:49:39:57:f8:47:d3:0f:2a:fb:6c:f8:28:46:
01:f1:52:66:14:b9:b4:55:86:ed:26:c7:51:41:41:01:83:1e:
6d:de:c0:2c:50:59:2b:be:d3:00:32:fb:22:3a:dd:0a:9e:3c:
22:c6:dd:0f:98:12:ad:8d:af:98:0a:5c:5b:7c:61:fb:15:d7:
b2:5b:72:c1:36:39:cf:b9:31:c2:6b:bb:36:ca:47:0f:fa:2c:
fd:d2:7b:84:6b:1b:3b:36:84:4c:f2:4a:e6:46:2b:6e:94:52:
7d:81:28:72:9d:95:7b:09:90:8f:d6:9e:b8:19:2a:db:78:a7:
fc:bb:12:67:68:78:6f:69:21:93:21:5c:fc:66:6f:2b:40:e9:
ed:11:b6:5d:47:e2:bb:6e:eb:c7:c4:92:c3:7f:33:45:2b:44:
2d:52:c6:90:6a:01:05:3f:3e:f4:d3:cd:30:23:06:0c:1c:4c:
25:88:d3:b9:5c:c9:43:00:f3:17:fe:1a:8c:6a:69:f3:4b:54:
17:ca:cd:ef:3d:f0:27:d0:fe:86:e9:f1:19:22:26:6b:4f:df:
2d:d1:b9:ec:13:23:d4:ec:a2:6f:94:5a:bc:16:e5:5f:76:40:
bf:4d:8b:f6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8j6I4BCa31Em4FU3qTZUsMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlNTUzOWFmZTkyNWRiODBiNDE1ZWZiMTRjNjMxYjJkODJj
OGNlZGQwHhcNMjUxMDE5MTMwMTM1WhcNMjUxMDIwMTMwMTM1WjAzMTEwLwYDVQQD
Eyg3OGNlNmVkOGI0MTY3ODg5M2VhYzE2N2ExYzYzNWZkNjQzNTMwNjdkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqSQgj+ELNfntsVNh50hbdAJibuwj
DpNLVeCiJId27G07TZt4dc8o9ArUQfAokFK9v3iTJmJvBbF0MxHkTFC/31GgghUA
vW6Zudky0xHbCrNBpH8owtFtM2wc3wyK6KlLrF7GtFkRjZaMFkz039eLAVRC3M4N
z4wt4aqmil9xb+uqmMrotXKIAw11JohP/Zx/dKsU6olUle7q+5RZvAmYPTfr9JHQ
tDVjBIeY3oX5TjVTf2PTvzR+GfZp9tEPD6+r88zjCDgzWtSnvmicv8xEd0C5EOY7
J1S/EGYCfz+PpkT3JZ8xKB4DHEDXrLviG0EEVVbWpBiON9FJ2yy3I7hi0QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHjObti0FniJPqwWehxjX9ZDUwZ9MB8GA1UdIwQY
MBaAFL5VOa/pJduAtBXvsUxjGy2CyM7dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi83MzNkYWUtMDAyMS00NGU1LTkyZTUt
MjUwMGY0ZWZhYjY5LzEvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi83MzNkYWUtMDAyMS00NGU1LTkyZTUtMjUwMGY0ZWZhYjY5
LzEvdmxVNXIta2wyNEMwRmUteFRHTWJMWUxJenQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACbF6shui
06tfji2AP7lDt7ReO3YksSBJOVf4R9MPKvts+ChGAfFSZhS5tFWG7SbHUUFBAYMe
bd7ALFBZK77TADL7IjrdCp48IsbdD5gSrY2vmApcW3xh+xXXsltywTY5z7kxwmu7
NspHD/os/dJ7hGsbOzaETPJK5kYrbpRSfYEocp2VewmQj9aeuBkq23in/LsSZ2h4
b2khkyFc/GZvK0Dp7RG2XUfiu27rx8SSw38zRStELVLGkGoBBT8+9NPNMCMGDBxM
JYjTuVzJQwDzF/4ajGpp80tUF8rN7z3wJ9D+hunxGSIma0/fLdG57BMj1Oyib5Ra
vBblX3ZAv02L9g==
-----END CERTIFICATE-----
Generated at Sun Oct 19 17:56:06 2025 by rpki-client