Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
File: vDImMeLrfqv7XttPywq4yZaCPEg.mft (raw, json)
Hash identifier: /9mQgb3ui9J4JdmHOdaRbiYy5iudWKkZgmq8iKJxvpE=
Subject key identifier: E5:B3:76:F9:C5:85:F7:5A:FE:09:C2:2A:0C:AA:08:F1:06:51:A0:8D
Authority key identifier: BC:32:26:31:E2:EB:7E:AB:FB:5E:DB:4F:CB:0A:B8:C9:96:82:3C:48
Certificate issuer: /CN=bc322631e2eb7eabfb5edb4fcb0ab8c996823c48
Certificate serial: 0198D4743F14ED0A00C9E3B700EC578528AE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vDImMeLrfqv7XttPywq4yZaCPEg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
Manifest number: 06AC
Signing time: Sat 23 Aug 2025 01:04:04 +0000
Manifest this update: Sat 23 Aug 2025 01:04:04 +0000
Manifest next update: Sun 24 Aug 2025 01:04:04 +0000
Files and hashes: 1: vDImMeLrfqv7XttPywq4yZaCPEg.crl (hash: RXcyUwyG+m0WkTiI/R7XPHqjoHsP9bTjgLSAfPIIBC0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.crl
rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vDImMeLrfqv7XttPywq4yZaCPEg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:74:3f:14:ed:0a:00:c9:e3:b7:00:ec:57:85:28:ae
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc322631e2eb7eabfb5edb4fcb0ab8c996823c48
Validity
Not Before: Aug 23 01:04:04 2025 GMT
Not After : Aug 24 01:04:04 2025 GMT
Subject: CN=e5b376f9c585f75afe09c22a0caa08f10651a08d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:05:39:f7:20:12:16:f1:b0:70:4f:6d:a6:af:
a2:a2:f6:4a:73:9d:45:7a:fb:6c:fb:b6:c9:cb:99:
6e:75:39:0e:70:07:59:07:06:85:e4:31:bb:ac:ef:
75:10:3c:53:36:2f:da:92:30:41:56:e7:f9:73:81:
f7:cd:bf:d4:21:3d:fd:8f:e3:67:04:e4:3c:03:38:
0d:31:c9:b0:ee:d8:09:2c:03:50:b8:de:70:64:4c:
eb:47:02:34:de:3a:59:69:d1:b8:28:9f:37:59:66:
c4:a7:80:30:6d:11:c9:a3:87:d5:47:50:d4:a2:38:
5e:1b:c4:63:3b:e2:6c:94:6b:2d:0c:3d:07:40:2f:
f9:4c:08:de:6f:fa:ca:ea:70:8e:bf:a9:f0:25:4c:
8b:d7:20:db:61:f7:8e:d2:af:0c:89:a8:ce:a1:88:
39:ac:ac:ab:52:88:68:44:dd:f7:6e:54:fc:1f:15:
9d:7d:b8:36:f3:06:de:70:c2:aa:f9:f9:d8:8f:e7:
e7:57:83:2b:5c:ff:7f:fc:62:f7:ca:11:4c:fc:40:
87:14:f7:8a:0c:d1:09:89:c0:51:59:7f:03:cd:68:
89:01:45:9a:04:3d:9d:89:af:38:eb:0a:4b:cf:27:
6f:42:c0:f0:c7:06:e7:4e:1e:d3:9a:29:5b:17:5f:
83:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E5:B3:76:F9:C5:85:F7:5A:FE:09:C2:2A:0C:AA:08:F1:06:51:A0:8D
X509v3 Authority Key Identifier:
keyid:BC:32:26:31:E2:EB:7E:AB:FB:5E:DB:4F:CB:0A:B8:C9:96:82:3C:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vDImMeLrfqv7XttPywq4yZaCPEg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:78:a5:02:90:77:6c:8d:5a:85:3c:00:3a:6e:fd:e6:7e:36:
cc:94:27:7d:e0:2c:77:7a:77:66:50:60:31:42:6f:5d:04:94:
5c:3b:a8:3c:9e:63:88:46:b7:74:49:4f:47:02:8f:76:c8:11:
ac:d2:17:20:50:6d:22:03:3e:af:bb:f5:ad:5c:59:87:29:bf:
4f:45:75:e1:1f:59:c2:aa:c5:dc:ea:e7:c5:fe:77:ab:9d:cd:
8e:3e:6e:73:c2:5d:a4:60:96:41:45:68:54:e9:91:36:6c:5e:
2c:15:d1:b6:6e:69:3d:cb:9a:49:0f:5d:04:23:42:5d:e2:ab:
36:ce:d8:28:6f:f1:4a:2b:73:b2:35:5a:83:75:77:10:65:db:
8f:6a:28:aa:e4:2b:2c:6b:e9:1f:b6:37:91:a5:8f:4c:54:c0:
f7:0b:79:b3:ff:1d:26:8c:32:21:a9:fb:0d:82:48:a7:3b:0e:
c3:70:92:78:b5:17:18:b3:4e:48:17:5b:df:5e:fe:b4:58:5f:
fe:e2:a8:07:cf:8c:e4:ba:b3:74:ba:9e:52:82:d2:7a:20:06:
bb:23:59:a3:13:6d:9d:7c:1e:5b:44:2a:48:d2:e5:f4:32:e2:
a9:c1:f6:ae:2b:12:23:01:df:c5:f9:e9:4b:1a:f9:a8:67:ee:
b2:0e:40:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 09:39:55 2025 by rpki-client