Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
File: VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft (raw, json)
Hash identifier: +YkbNgIWN4Sx0j1o+dRUYiGLTafT0Uxgs9qfuS2Pa+Y=
Subject key identifier: 31:87:DB:8C:2C:A6:4F:77:AA:15:FF:55:0F:BD:D3:44:47:89:CE:D9
Authority key identifier: 54:0E:9A:C4:39:B8:F2:B2:7C:1A:26:7D:35:E0:19:5F:EC:85:94:4D
Certificate issuer: /CN=540e9ac439b8f2b27c1a267d35e0195fec85944d
Certificate serial: 0198D4E070E4515D40B9799232633B622703
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
Manifest number: 0ABF
Signing time: Sat 23 Aug 2025 03:02:15 +0000
Manifest this update: Sat 23 Aug 2025 03:02:15 +0000
Manifest next update: Sun 24 Aug 2025 03:02:15 +0000
Files and hashes: 1: VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl (hash: gJfm9tpquRx30AULmAPq96g2yZ2CsEP0sM7Ajxj6gOM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:70:e4:51:5d:40:b9:79:92:32:63:3b:62:27:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=540e9ac439b8f2b27c1a267d35e0195fec85944d
Validity
Not Before: Aug 23 03:02:15 2025 GMT
Not After : Aug 24 03:02:15 2025 GMT
Subject: CN=3187db8c2ca64f77aa15ff550fbdd3444789ced9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:ae:d9:34:43:5c:e7:c9:ae:9f:70:1c:33:f7:
59:3a:e8:16:a8:a8:01:35:04:84:4f:89:23:33:1c:
5a:68:b6:31:25:5a:ed:36:b6:0c:a1:91:aa:ac:bf:
3f:a6:e3:e3:84:45:d1:25:99:c3:3a:35:8e:7e:42:
3e:d9:24:88:15:0b:44:52:70:8d:4c:9d:d0:91:f1:
69:bc:db:bb:6e:9f:02:9c:85:61:de:d5:16:72:b2:
fb:e5:94:19:53:2a:71:07:b6:d3:3c:1f:4f:13:ac:
cc:df:f4:ed:d3:44:6c:a8:d8:11:91:bb:f1:e5:0f:
30:26:0d:08:42:58:32:68:1a:bc:77:bd:c3:9f:65:
de:bb:7b:22:de:36:a4:c7:fe:a7:13:cd:40:82:ab:
25:ce:a0:92:3d:09:ca:74:ea:72:46:40:76:3a:ae:
92:a3:10:3e:31:b4:72:cb:bd:43:04:e2:93:75:ba:
a0:8c:a2:74:c0:17:4b:b2:8b:a0:36:43:2d:84:ae:
90:11:d6:16:66:ec:98:5d:79:10:da:f1:a5:9a:11:
fe:6e:0b:8a:0d:fe:68:c2:f5:43:f0:0f:fe:9c:6e:
5d:3a:ac:fc:24:40:7a:03:91:a3:c0:ce:ab:e8:c9:
53:0a:29:63:e2:7f:7a:e0:74:a0:49:c5:a6:cb:30:
0b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:87:DB:8C:2C:A6:4F:77:AA:15:FF:55:0F:BD:D3:44:47:89:CE:D9
X509v3 Authority Key Identifier:
keyid:54:0E:9A:C4:39:B8:F2:B2:7C:1A:26:7D:35:E0:19:5F:EC:85:94:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:72:1c:f7:a8:fa:1b:2a:ee:50:9b:72:84:35:e2:37:b7:a7:
d7:b1:d3:b3:44:4d:4d:d4:26:72:97:b0:ca:64:c1:2e:fe:c3:
83:70:12:fb:fc:66:2a:f3:e3:a7:05:c5:4f:b2:e0:0f:c9:c1:
76:ad:28:86:a4:f3:07:3d:98:dd:57:8d:46:a5:40:43:00:35:
5b:38:a0:32:0f:c6:5b:a8:aa:c5:91:b5:17:15:26:7d:df:2f:
28:d1:ca:7a:00:f1:a9:54:c1:1b:a0:4f:ad:80:e9:7b:40:bd:
c6:37:2d:a7:84:8a:b5:bb:70:16:8d:ca:c4:87:60:75:01:49:
d2:21:01:9d:39:c4:f2:2f:87:d3:da:8b:79:ce:16:dc:1e:44:
cc:27:53:68:6c:b7:ec:ab:8b:f2:24:a3:1e:b5:7a:f6:4b:9b:
70:66:3d:26:7a:22:d4:e1:b8:a1:d6:7a:6d:4e:4f:31:8e:9c:
3a:41:ca:50:5e:3d:05:25:b2:23:b2:b9:b9:9d:f3:fb:33:3d:
9c:8b:29:40:4e:3e:fd:3f:2e:4a:12:2b:ad:f0:4d:aa:81:4b:
56:e6:2d:0d:3d:d9:30:43:41:c2:5b:6a:b7:63:62:24:86:72:
82:c1:b7:f0:eb:2e:3c:43:05:b0:67:58:0b:fd:54:78:51:ad:
02:cc:d9:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:16:41 2025 by rpki-client