Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
File: vSUqdclhrTOP2RFH1GHdiz0gz1E.mft (raw, json)
Hash identifier: /RPtJGqhLFcdjJZzWRYlFTfEbynLhBpcIQ7NcFkoSQo=
Subject key identifier: 97:09:CF:DB:F2:C1:7F:B2:DC:A1:73:3E:1C:B5:46:A7:37:D7:86:38
Authority key identifier: BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
Certificate issuer: /CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Certificate serial: 0198D439B91D5E432946F63980AE081CF53F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
Manifest number: 1651
Signing time: Sat 23 Aug 2025 00:00:09 +0000
Manifest this update: Sat 23 Aug 2025 00:00:09 +0000
Manifest next update: Sun 24 Aug 2025 00:00:09 +0000
Files and hashes: 1: 1-CES3FR9UbzoTEzUN5ZiiMYeBq8.roa (hash: Mx7tnLRZogKgAVJUpQmT5FDn0ojfnBYxv7dXF6PkiKk=)
2: fj83OICA2dXkb7sofXdOoGdjzq4.roa (hash: pOA5XIvHm6EKh1V95/EfmbQrXTJ90+bGbqMr2BZtsSk=)
3: pDkCQjQVPegQOP278WmolhHSrkw.roa (hash: VPjogK0/dxD5LybI2fhbuslUMxpJB7AerXcZh/G3cj4=)
4: vSUqdclhrTOP2RFH1GHdiz0gz1E.crl (hash: AJ8lcnFp6jV5TGbF/hIUHMrHLH163g0YDT626gGWfxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:39:b9:1d:5e:43:29:46:f6:39:80:ae:08:1c:f5:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Validity
Not Before: Aug 23 00:00:09 2025 GMT
Not After : Aug 24 00:00:09 2025 GMT
Subject: CN=9709cfdbf2c17fb2dca1733e1cb546a737d78638
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:bd:35:88:67:35:14:64:5c:3f:87:8c:cc:b0:
02:b5:a9:00:f9:13:c7:c0:2a:6e:bb:da:14:ff:8d:
c1:df:c6:83:0c:d2:44:af:91:94:76:4d:cd:72:c6:
b9:b2:6e:94:32:0c:95:d7:af:03:79:16:4a:14:57:
15:ea:b7:ab:5e:10:eb:89:f4:0b:40:fa:4b:c4:ac:
0a:6f:98:e4:61:95:77:d5:4b:f6:5e:3b:71:09:3a:
27:98:6b:bc:81:9f:18:ef:36:6c:2b:5a:a3:c7:e6:
a1:69:34:78:da:b4:1f:bd:e9:7c:ad:c5:71:c1:b8:
95:20:e5:92:bc:09:8d:6a:98:91:73:ac:4f:b3:f5:
38:22:77:69:d6:6c:72:e4:97:4f:f8:ad:5e:8c:fc:
cd:25:f1:3c:49:98:3a:de:5a:00:11:b9:07:2f:b7:
86:88:5e:47:6b:99:94:9b:52:7b:79:27:45:19:44:
f1:23:d7:9f:2a:66:07:1b:9e:8f:76:4f:6b:9a:d8:
cc:cf:11:09:4c:56:2e:2b:90:6c:55:c9:76:e7:b3:
27:b5:ef:b7:c7:13:4d:29:33:df:1d:a9:59:0b:08:
5e:2f:bb:19:79:53:a5:48:e0:19:5b:78:16:3a:3f:
7c:af:a7:5f:ab:07:b9:1f:ac:df:d0:7d:17:3d:f8:
79:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:09:CF:DB:F2:C1:7F:B2:DC:A1:73:3E:1C:B5:46:A7:37:D7:86:38
X509v3 Authority Key Identifier:
keyid:BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:26:f4:17:f9:38:93:83:8f:8b:04:0e:62:a6:d0:39:5a:35:
56:de:90:37:61:0b:08:0c:6f:77:61:4d:d2:d4:6b:7d:02:ac:
b0:a8:53:af:e3:be:b3:cc:f8:f4:d7:81:4a:57:53:63:32:06:
ef:e7:41:6b:ef:33:91:53:51:81:5c:c2:e2:d2:c4:96:30:7d:
67:fd:57:e9:0d:c2:99:c0:8e:05:28:cc:11:c8:9a:3d:2b:6e:
6f:4b:c4:8f:61:23:1a:26:f1:3b:f8:91:36:a7:a6:69:22:bb:
63:27:13:74:5a:fa:d5:06:dc:e1:cc:f0:10:49:5d:64:3e:09:
be:bb:c5:15:d0:91:52:02:c0:3a:21:69:f6:ff:57:b7:d4:7e:
3a:ac:d7:62:cd:38:a8:07:38:80:1f:ec:9f:36:6d:f8:93:4b:
73:92:28:91:f7:0f:81:de:0a:28:36:e2:f3:6a:6c:2f:38:4b:
61:96:db:cd:70:d8:5c:0f:0a:2a:50:96:5b:e6:7b:83:36:1b:
12:c0:40:da:44:09:50:f5:52:f2:0d:ef:8b:f1:70:14:41:57:
0e:e2:9d:28:cb:07:ed:73:b1:81:dd:e9:13:fa:10:a6:71:c1:
47:78:57:73:6d:fe:13:e4:8f:a2:60:19:2c:11:a6:ed:6e:b7:
0f:b5:35:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:32:15 2025 by rpki-client