Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: sGWz0wp0rCl/4Hut5pHWNDx3nNxgvyzmbwAQDEHdAbw=
Subject key identifier: 14:85:26:94:BA:E2:09:1D:96:5F:DA:97:CF:9D:33:92:19:16:F3:04
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 0197B6A0569003930548F7432384CCDD3F24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 08DF
Signing time: Sat 28 Jun 2025 13:00:50 +0000
Manifest this update: Sat 28 Jun 2025 13:00:50 +0000
Manifest next update: Sun 29 Jun 2025 13:00:50 +0000
Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: hkU0+vAYPcV2Ax5TMbywV8/pISnbC9wZTz8y9D052Ms=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:56:90:03:93:05:48:f7:43:23:84:cc:dd:3f:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Jun 28 13:00:50 2025 GMT
Not After : Jun 29 13:00:50 2025 GMT
Subject: CN=14852694bae2091d965fda97cf9d33921916f304
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ca:9b:c1:8d:97:28:e8:8b:e9:af:09:63:04:
b5:86:c2:e4:1c:55:24:d5:53:e1:ac:22:1f:f9:f2:
f6:d6:4b:d3:43:ed:ed:63:39:fd:90:3e:1a:71:15:
68:58:86:68:8f:91:b2:4c:9b:47:9d:c3:08:11:54:
bf:33:10:c6:27:f0:6b:c0:36:d5:9a:67:51:91:4f:
91:b6:6c:b9:67:fe:7e:35:bd:72:43:3c:db:fd:65:
ee:8f:55:a3:8d:81:7c:d5:d9:99:fe:da:a9:b9:01:
14:7d:07:eb:66:6e:08:d7:8b:6d:88:2b:e1:32:18:
12:82:92:8f:ec:f8:63:23:57:a3:0f:f0:d3:19:3a:
ab:17:bd:2f:9e:e0:da:66:fb:75:23:91:ef:fc:87:
12:2c:1a:0c:92:81:e9:ee:41:12:25:b6:05:bd:ce:
bd:ba:e5:32:b7:c4:66:d6:9a:fc:a9:0d:30:c9:00:
c5:d4:60:66:17:99:79:50:c2:2f:d8:30:c7:47:d9:
9c:4e:79:4e:c2:61:31:6c:ed:ae:2d:bf:88:16:8f:
51:ed:74:1e:05:0d:ee:72:0c:b0:25:ee:6d:11:f8:
78:c0:dc:7a:f3:de:52:ea:c5:df:7e:24:bc:65:cc:
33:5e:ac:eb:c7:a4:46:cd:b5:0a:e7:e8:e8:15:3f:
00:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:85:26:94:BA:E2:09:1D:96:5F:DA:97:CF:9D:33:92:19:16:F3:04
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:57:3f:35:04:5c:40:78:6a:dc:8e:07:de:0e:2c:0a:65:da:
82:69:07:af:2e:0b:ab:ea:c6:28:7b:5a:03:34:bf:d2:61:b0:
bb:89:24:e8:f5:c2:15:87:2b:5c:cd:87:c0:3a:32:1e:2d:41:
35:ba:39:c1:89:b7:e0:46:66:84:be:5d:1f:ea:00:8d:23:97:
d9:8a:ce:3f:35:72:58:24:f4:96:c2:dc:ff:75:53:c3:ed:5c:
95:c8:5a:b4:80:c2:42:cb:c2:77:0a:c8:ed:aa:8b:0a:1e:28:
3a:12:0f:11:25:cc:d3:98:aa:78:4f:c5:da:ad:7b:7e:d0:05:
63:90:60:52:1d:df:54:36:58:69:7d:11:d5:78:fd:26:cf:fc:
ed:29:9b:c7:2e:c4:9f:d9:f4:de:30:f4:33:b8:16:8c:77:12:
a1:c5:a6:91:db:5a:2a:7c:18:64:fb:a8:e6:79:94:82:99:ce:
a0:11:1b:ce:f3:e9:3a:70:4d:02:fd:25:ce:2f:67:ff:2c:8f:
b0:11:16:a1:e2:b9:aa:06:21:d6:d6:f2:19:fb:69:ae:03:28:
17:3c:0f:dc:d6:31:70:29:c4:c2:dd:4d:6d:8e:ee:cc:ee:ad:
ce:6a:c8:44:95:ab:27:6e:bb:03:ce:5c:fa:59:9c:ad:a0:c7:
74:2c:85:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:25:57 2025 by rpki-client