Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.mft
File: vfSGpExRBdeBNXKUVhzMPROk1nE.mft (raw, json)
Hash identifier: a5PtfbANLW6hxPXTg9oSg+bnhgIB2EXIFU7ZOUboKtg=
Subject key identifier: F6:AE:70:3D:EA:06:D0:F4:5D:3A:DC:B0:46:20:30:30:39:46:63:3C
Authority key identifier: BD:F4:86:A4:4C:51:05:D7:81:35:72:94:56:1C:CC:3D:13:A4:D6:71
Certificate issuer: /CN=bdf486a44c5105d781357294561ccc3d13a4d671
Certificate serial: 0199FE46D88D6E20D3F800A1C7794689FDEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfSGpExRBdeBNXKUVhzMPROk1nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.mft
Manifest number: 0953
Signing time: Sun 19 Oct 2025 21:01:19 +0000
Manifest this update: Sun 19 Oct 2025 21:01:19 +0000
Manifest next update: Mon 20 Oct 2025 21:01:19 +0000
Files and hashes: 1: vfSGpExRBdeBNXKUVhzMPROk1nE.crl (hash: G5iJX4y0FBGcIuq9VCuIWeBp//Xy+fGZQQMXw1f/aaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.mft
rsync://rpki.ripe.net/repository/DEFAULT/vfSGpExRBdeBNXKUVhzMPROk1nE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:d8:8d:6e:20:d3:f8:00:a1:c7:79:46:89:fd:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf486a44c5105d781357294561ccc3d13a4d671
Validity
Not Before: Oct 19 21:01:19 2025 GMT
Not After : Oct 20 21:01:19 2025 GMT
Subject: CN=f6ae703dea06d0f45d3adcb0462030303946633c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:07:1b:2c:47:4c:1d:7a:20:e6:2a:86:e9:32:
ca:f0:03:bc:f0:3c:34:c6:15:28:f7:ff:d4:a5:3d:
3b:49:20:d5:47:53:eb:5b:c4:0a:86:51:84:6c:ec:
f2:93:a5:90:6a:22:45:d5:ae:89:16:c5:64:8f:7e:
3e:a7:a7:da:f9:b6:94:ed:77:d3:1a:a3:43:6d:f2:
db:5e:ab:12:18:96:49:36:fa:2c:6c:e7:d0:b8:23:
95:cd:28:f3:ba:0d:87:d5:4e:9a:30:51:b2:84:94:
c0:df:db:76:93:8f:c0:00:1e:b3:4c:2f:d0:50:e7:
78:19:62:ff:a1:e1:81:71:b0:1b:a2:9f:db:b4:12:
9b:d5:8d:20:bd:8e:34:8d:50:49:42:81:37:68:5a:
a0:c7:c1:4e:0f:17:bd:b6:ec:30:0f:c1:39:10:06:
6b:1d:a8:47:6e:55:36:60:de:46:36:79:83:eb:e3:
02:36:e6:6f:51:77:0d:64:fb:3e:60:bb:28:45:a1:
38:70:70:81:c3:e0:4e:cc:b1:e3:7b:49:0f:bc:02:
28:75:78:0a:90:bd:7d:4c:0f:40:59:dc:d2:76:f1:
b5:4d:e0:b8:ef:6c:b7:59:8f:34:b1:87:d9:ba:f5:
60:bf:4c:a0:ba:2d:48:46:48:30:b7:f4:0b:cc:f6:
e1:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:AE:70:3D:EA:06:D0:F4:5D:3A:DC:B0:46:20:30:30:39:46:63:3C
X509v3 Authority Key Identifier:
keyid:BD:F4:86:A4:4C:51:05:D7:81:35:72:94:56:1C:CC:3D:13:A4:D6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfSGpExRBdeBNXKUVhzMPROk1nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:50:29:25:4f:40:8b:f2:1a:3d:9a:c2:74:78:b5:10:58:f5:
34:94:19:6c:56:d2:c1:c0:46:ce:41:50:54:77:8d:e6:99:b5:
f6:2f:0c:b0:1b:63:c2:6d:89:86:d6:e2:32:37:e4:f7:30:b6:
24:9b:28:05:f2:b5:98:2d:d6:95:bf:f3:c5:d3:7d:15:db:25:
69:52:40:73:71:81:42:4a:e6:5b:56:83:2b:70:43:0c:85:f1:
93:7e:34:47:91:2b:73:03:08:4a:70:81:3c:3d:7f:f1:3f:5f:
62:f7:fe:95:2a:d6:ae:78:4e:c2:47:a2:91:b3:b3:35:7b:9b:
19:db:d7:6b:16:06:80:7b:e2:60:45:e2:2c:a9:e5:9f:f2:f4:
33:61:2a:66:83:8f:2d:90:36:64:23:f2:6d:ce:43:cd:e7:56:
f0:7c:91:b4:5a:7a:68:45:82:9e:9e:b6:26:b0:18:79:89:31:
22:ee:92:8a:4f:ff:80:a2:a1:61:ee:69:8c:37:fe:e1:28:48:
08:09:42:db:c4:96:ab:97:85:84:b0:ff:24:7a:f8:18:3c:ff:
a0:bf:12:48:0d:09:1f:c2:8f:8d:0c:d6:5a:d2:1d:73:2a:1c:
4e:5a:34:21:d8:27:4c:f9:12:70:04:52:bd:11:a0:0f:44:e1:
14:ae:f8:ae
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:17:55 2025 by rpki-client