Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
File: vhji2fUJydO0VREqoojTNhhYAaA.mft (raw, json)
Hash identifier: S5pr8Aeea+WIGzvRn6eaGEhe9bfr0Tw7SflHtBcRQgU=
Subject key identifier: 2E:B3:6A:3D:D7:D7:8C:76:79:B5:2F:A6:50:45:D0:FA:D0:3C:9B:16
Authority key identifier: BE:18:E2:D9:F5:09:C9:D3:B4:55:11:2A:A2:88:D3:36:18:58:01:A0
Certificate issuer: /CN=be18e2d9f509c9d3b455112aa288d336185801a0
Certificate serial: 0199FCC603DD000355C92A0E03BF4F7D33D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
Manifest number: 10C5
Signing time: Sun 19 Oct 2025 14:00:59 +0000
Manifest this update: Sun 19 Oct 2025 14:00:59 +0000
Manifest next update: Mon 20 Oct 2025 14:00:59 +0000
Files and hashes: 1: K7bdbq2NQi5Og3pBR0VNiKqzF3o.roa (hash: Y5TCg/QVPxm4ctwH0Vu0TBEdMj0uZUrfAJN0ICvLjOc=)
2: vhji2fUJydO0VREqoojTNhhYAaA.crl (hash: xZ7i95agxbSeA0P2e+CY8a7KxTR4TcC3+jd92OXw9RU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 06:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:c6:03:dd:00:03:55:c9:2a:0e:03:bf:4f:7d:33:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be18e2d9f509c9d3b455112aa288d336185801a0
Validity
Not Before: Oct 19 14:00:59 2025 GMT
Not After : Oct 20 14:00:59 2025 GMT
Subject: CN=2eb36a3dd7d78c7679b52fa65045d0fad03c9b16
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:0c:b0:3c:35:d1:09:ba:2d:e0:3f:c5:63:1c:
95:60:01:f4:3b:a5:d3:19:78:fc:54:67:92:1d:46:
56:91:27:45:9f:64:a8:7b:f6:1c:f9:42:ae:97:9c:
29:40:ed:bc:2c:9f:2f:29:9d:2d:59:43:1f:5e:d3:
6d:55:b8:0f:cb:c7:0d:f1:cc:b8:0a:3e:97:ec:4e:
f7:48:10:ef:d7:83:a2:b1:3a:63:4d:bd:69:fc:8b:
a0:dc:95:6c:8e:1f:31:ef:d5:0b:7a:ad:3e:41:90:
28:7d:07:d0:da:75:bb:a3:d9:05:67:b4:69:c3:66:
63:4b:a6:85:2f:f7:67:7d:e4:e6:dc:f3:b7:a1:97:
54:08:63:c7:40:39:da:79:a1:e1:23:9a:9c:8b:9c:
20:4f:8d:03:21:65:a9:f9:7b:3d:d5:7d:90:8c:f4:
ef:a9:1d:4d:66:27:01:53:8e:ff:f3:83:f7:98:a5:
ea:a9:73:19:e6:f0:71:71:c6:d3:8d:e6:62:fd:51:
7c:ad:aa:e8:46:71:75:e3:16:7b:1a:e7:7a:a4:c7:
06:b1:de:83:60:2f:d0:8f:0d:7e:e6:09:e9:8b:d9:
94:b8:ae:48:56:99:f1:3e:66:84:d4:46:82:e9:43:
c6:47:36:8d:2c:2c:cc:58:d7:b2:74:2f:9a:49:4d:
3e:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:B3:6A:3D:D7:D7:8C:76:79:B5:2F:A6:50:45:D0:FA:D0:3C:9B:16
X509v3 Authority Key Identifier:
keyid:BE:18:E2:D9:F5:09:C9:D3:B4:55:11:2A:A2:88:D3:36:18:58:01:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:2a:cc:45:f6:88:43:a8:aa:80:59:5c:ab:3c:a8:5c:cd:f1:
d2:81:e3:43:25:d3:9f:a1:87:9b:88:53:35:cb:cf:98:8e:11:
96:6f:e3:ea:e8:b2:bd:15:68:b2:43:3c:15:49:06:f3:5e:ca:
be:03:f5:7e:0c:22:fa:fb:49:48:39:19:9a:ad:b9:4a:98:75:
72:e0:dd:9e:ce:ee:f5:8d:38:17:5e:29:e5:87:0f:27:8b:73:
7f:15:90:b0:76:6f:da:2c:4d:3d:10:45:0d:f4:5a:b9:b5:69:
9f:15:7d:7a:ac:75:0c:e9:a8:64:c7:96:a5:12:ac:52:b4:14:
dc:9e:99:d5:fd:2b:73:db:73:a4:06:f9:4c:48:d6:da:0a:98:
b5:31:8f:91:26:3d:b6:22:92:2a:cf:82:83:9f:0c:f3:11:1f:
f1:db:44:4d:1b:e3:c0:69:1d:96:29:b3:92:4d:db:a6:b1:d2:
e9:17:7b:fb:17:1c:bb:e2:0d:ae:f8:d6:71:98:89:fa:c8:f7:
18:52:d9:54:62:b2:85:24:57:ed:05:52:80:59:46:88:a6:9c:
c1:81:52:d7:8a:95:d3:90:6b:ca:07:14:30:50:d3:23:f2:94:
ce:5a:01:f1:80:e6:a6:68:28:76:c9:9b:6a:39:c9:30:d6:ce:
12:c1:aa:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 15:40:17 2025 by rpki-client