Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
File: vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft (raw, json)
Hash identifier: 7HrTW5a8a3bv9QaHjtiHC9ee7Y7g+14kw7unJcU9L4Q=
Subject key identifier: 79:2E:B5:B1:15:89:C6:B8:8E:3C:AA:96:CD:E1:55:C2:FA:9A:BF:00
Authority key identifier: BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
Certificate issuer: /CN=be5539afe925db80b415efb14c631b2d82c8cedd
Certificate serial: 0198D705C2FE8DA8C8DE96768D94847084D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
Manifest number: 0227
Signing time: Sat 23 Aug 2025 13:02:15 +0000
Manifest this update: Sat 23 Aug 2025 13:02:15 +0000
Manifest next update: Sun 24 Aug 2025 13:02:15 +0000
Files and hashes: 1: vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl (hash: /yeAI3NlbPZBoSFMgBDXImtZ+I6sVC1AmBCPO0oE3ys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:50:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:c2:fe:8d:a8:c8:de:96:76:8d:94:84:70:84:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be5539afe925db80b415efb14c631b2d82c8cedd
Validity
Not Before: Aug 23 13:02:15 2025 GMT
Not After : Aug 24 13:02:15 2025 GMT
Subject: CN=792eb5b11589c6b88e3caa96cde155c2fa9abf00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:68:9e:66:c6:86:8c:2c:3e:bc:f7:e6:3c:93:
b5:ef:00:e7:d0:4b:dd:38:8a:0a:ed:f4:4b:43:64:
99:89:a7:ea:59:69:a7:1f:39:f2:a3:9c:37:93:de:
42:94:04:ea:45:52:f0:12:19:dc:ed:fe:c5:04:9d:
76:e0:04:4e:0e:c4:9b:00:75:03:a9:8c:70:df:7a:
ec:22:e0:3a:82:39:e9:05:f8:43:f7:26:dc:02:ae:
8e:b9:ed:81:c1:43:c9:60:cc:d2:7e:1b:ef:cb:45:
8d:db:4a:d2:d1:2c:4d:97:9d:49:9e:2a:08:79:ea:
fa:8f:d1:1b:9b:46:42:0b:ac:0a:2c:18:fb:ad:ad:
2f:1c:99:72:89:52:8b:23:5b:2b:e4:6f:9f:1d:87:
1c:61:c5:10:2f:4f:2d:7f:ab:7b:18:98:76:da:dd:
1b:40:13:f0:9d:8e:6c:d3:5d:39:96:13:ee:90:92:
2c:c5:e7:40:3e:e0:b5:49:04:1b:d1:3a:53:33:bc:
5c:76:8d:34:c7:25:15:5e:63:70:c3:0f:f0:37:72:
35:21:e8:5c:4c:72:0b:a9:c6:2c:5f:6d:1f:79:c9:
90:20:b6:9f:c8:11:fe:57:77:89:64:39:df:9c:a7:
21:b3:03:f2:05:bf:bd:82:c9:38:91:35:50:48:72:
5f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:2E:B5:B1:15:89:C6:B8:8E:3C:AA:96:CD:E1:55:C2:FA:9A:BF:00
X509v3 Authority Key Identifier:
keyid:BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:52:6c:16:ae:98:0d:ab:58:bb:1f:d0:4e:01:60:7e:92:36:
f5:a4:e5:b1:69:8a:d8:d4:c2:34:76:5d:00:62:41:d9:c9:1a:
ba:b0:b9:71:86:eb:0e:bd:36:cf:1a:92:a4:35:84:af:0b:ab:
c7:c0:69:c9:d5:d4:0a:7a:e6:32:f6:ac:5f:58:84:fa:a9:d4:
03:15:8d:54:89:06:00:67:0f:e0:e9:35:dd:d2:88:63:0b:6b:
50:11:6b:34:52:a2:c0:f1:74:66:60:68:c7:76:38:b8:40:96:
c1:f8:2d:2b:3d:20:db:21:91:1a:b8:18:f4:b2:e0:13:de:b3:
f5:2a:0f:e6:26:f0:bf:d3:d9:98:d5:2b:34:62:93:c8:2c:84:
8f:ca:5d:c4:36:0f:96:7e:1e:80:05:20:0f:04:5d:1f:33:70:
0b:1f:74:aa:3b:4a:2d:98:18:bc:34:9d:b7:e5:eb:c2:ec:90:
86:0c:65:b7:54:a3:e3:da:f6:30:03:bf:2c:ac:1c:96:ac:9e:
e6:fc:e0:42:0f:48:5b:9a:21:31:4b:38:59:9b:b7:44:d3:e7:
96:db:70:64:38:d7:f0:af:4e:0c:42:37:e0:af:64:de:17:74:
2b:8f:6b:fb:fe:a3:69:49:02:e7:d3:49:cc:4e:4f:59:1b:56:
67:f9:22:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:10:10 2025 by rpki-client