Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: j+jcUor0YZ2IMvhJf8ApY2LDbrJ4RckSux3d+KG6Pgw=
Subject key identifier: C3:70:87:1F:B1:C2:40:0D:A9:CA:5D:C1:34:4C:07:04:00:34:1B:4A
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 0198D65F70139533E3CDA16951C79B530950
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0974
Signing time: Sat 23 Aug 2025 10:00:35 +0000
Manifest this update: Sat 23 Aug 2025 10:00:35 +0000
Manifest next update: Sun 24 Aug 2025 10:00:35 +0000
Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: hFkmyE2S6PavBPQ+/m1Dqkqkrk6j0UKV6rmPHVCGp1A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:70:13:95:33:e3:cd:a1:69:51:c7:9b:53:09:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Aug 23 10:00:35 2025 GMT
Not After : Aug 24 10:00:35 2025 GMT
Subject: CN=c370871fb1c2400da9ca5dc1344c070400341b4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:b7:8c:53:e5:ca:39:fa:0b:7f:53:1a:38:a8:
ce:f6:56:5f:69:9e:65:dc:ef:ce:7c:7c:77:ec:57:
31:74:a2:78:40:04:64:40:a6:58:64:b9:f2:12:c0:
e3:ae:8d:a3:73:1a:d0:c8:16:a2:77:a2:31:c5:90:
70:01:32:47:78:83:e4:01:2c:72:6d:54:ad:e5:6a:
a7:f2:0d:b8:b0:f7:22:42:e8:79:05:09:ae:d3:ea:
b7:02:6c:2f:54:e4:a2:00:d1:50:87:9e:08:69:39:
ed:36:0a:9e:d6:9b:b9:2a:2e:d5:d1:c7:00:47:7e:
df:b3:81:16:8d:50:89:b6:d6:86:63:fd:f8:ff:cd:
f2:a9:e7:62:17:2b:00:79:46:0b:21:50:0a:6d:b1:
47:13:7f:cc:32:be:2e:42:d4:73:7f:12:59:a6:d2:
72:20:ab:dc:e2:ac:de:b8:77:18:f7:2b:3c:fc:b0:
52:a6:81:22:c6:57:ea:c6:01:15:8d:ca:66:f3:f2:
46:9f:21:bb:a6:e8:5e:9d:51:c6:f9:54:c6:e3:36:
53:09:e2:14:21:15:01:90:57:74:c7:da:54:97:8c:
eb:8d:c5:74:43:ea:34:04:b8:03:3a:fb:25:22:98:
33:11:fe:5d:0e:0b:2c:2f:6a:ec:5c:5e:2a:f5:4d:
a7:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:70:87:1F:B1:C2:40:0D:A9:CA:5D:C1:34:4C:07:04:00:34:1B:4A
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:88:3d:34:2f:bd:c1:f4:8a:f8:65:df:42:31:1e:ba:b4:ed:
d8:40:c2:ba:50:a3:4e:17:8c:64:de:8b:87:0d:07:af:59:b0:
e8:3e:60:cb:d7:21:51:bf:13:04:ee:9e:cf:31:ce:f7:b0:69:
66:c4:45:f6:9e:9c:12:a1:10:bf:ed:a3:57:b6:fe:c5:33:f5:
a2:24:24:54:90:0e:46:12:1c:1d:f6:34:0a:1d:73:8c:84:72:
3e:91:3e:2f:8c:73:b2:e0:eb:90:fb:28:41:8c:6f:96:a7:c0:
a6:80:48:91:8e:27:3c:70:7a:ab:c4:43:b2:42:f1:13:ad:ee:
4d:ca:aa:8a:2c:2d:39:b6:e7:47:90:97:1d:90:3f:c3:a0:bc:
d5:0d:5f:c6:36:e5:b0:93:6f:5e:97:70:36:cf:0f:a9:06:dd:
00:8b:3d:50:63:b3:23:94:55:d7:36:aa:cb:8a:e8:5f:07:51:
d2:a5:73:26:c8:8b:43:2e:65:bb:1b:1b:83:7e:bc:2f:d8:9c:
66:99:ec:5f:cc:76:ef:78:c9:62:ff:7e:71:42:d1:fb:a4:61:
9c:0a:35:79:36:fa:7a:22:30:80:89:81:77:3b:7b:7c:30:94:
02:39:db:c6:49:0c:7f:64:23:d5:63:7f:3e:60:09:a6:56:a8:
36:da:ee:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:09:55 2025 by rpki-client