Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
File: vtJXlaaCsRmplIBal2V4U9dUoFw.mft (raw, json)
Hash identifier: S2XfPMQOmiPY6f358ce5oFygINJT4Zu1vmigYSYQvdY=
Subject key identifier: 73:97:37:F7:B9:35:05:B4:7A:6B:7B:E9:A0:80:CC:4B:6F:DD:C7:14
Authority key identifier: BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C
Certificate issuer: /CN=bed25795a682b119a994805a97657853d754a05c
Certificate serial: 0198D6CDF6D681225C1CC6B9C98CFA54F340
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
Manifest number: 0AD8
Signing time: Sat 23 Aug 2025 12:01:18 +0000
Manifest this update: Sat 23 Aug 2025 12:01:18 +0000
Manifest next update: Sun 24 Aug 2025 12:01:18 +0000
Files and hashes: 1: vtJXlaaCsRmplIBal2V4U9dUoFw.crl (hash: s5zJ3kqhafOBgqHosV+Vdwzw8sM69+i2VKPZd/3VQoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 12:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:cd:f6:d6:81:22:5c:1c:c6:b9:c9:8c:fa:54:f3:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bed25795a682b119a994805a97657853d754a05c
Validity
Not Before: Aug 23 12:01:18 2025 GMT
Not After : Aug 24 12:01:18 2025 GMT
Subject: CN=739737f7b93505b47a6b7be9a080cc4b6fddc714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:28:4e:9f:50:eb:60:56:26:4d:75:8b:d7:97:
dd:16:1f:57:1f:16:af:a1:d5:54:b4:ff:cb:51:7d:
67:30:02:fa:f2:f3:24:31:f6:ca:59:56:d1:bc:c0:
bd:53:a7:43:5c:14:aa:1c:d5:4d:a6:7e:28:07:09:
4f:c7:29:d9:4c:01:97:72:53:55:d6:f6:72:6c:26:
c6:96:b8:6d:47:e5:c1:60:8f:d8:2f:b8:d6:49:ea:
9c:7b:ec:e2:94:8d:84:aa:52:d9:c7:d1:c6:e0:87:
8c:90:4e:99:2c:60:06:61:f8:ce:ce:e2:50:f0:3f:
cd:96:51:19:d1:03:6b:b1:4c:75:bc:67:88:0f:9a:
f5:ad:11:2c:55:f7:61:01:b7:2b:00:1c:58:06:46:
2d:e2:40:fb:ec:cd:73:51:57:42:08:a1:63:2a:41:
25:df:51:00:2d:0a:1f:bb:d8:72:cc:88:f1:b1:7a:
b4:a2:a3:78:98:2d:7d:05:33:ba:53:6e:3f:17:2c:
c0:40:0c:f1:6a:fc:e6:01:ad:e2:19:ec:fc:0f:32:
fd:ab:8f:9b:b1:fc:47:bb:4d:5d:0a:59:54:33:93:
e9:26:b1:bc:d4:d5:f7:e6:6e:b7:90:cc:4d:65:9e:
63:54:70:07:1e:98:5b:ae:d4:3a:d1:21:b2:06:56:
38:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:97:37:F7:B9:35:05:B4:7A:6B:7B:E9:A0:80:CC:4B:6F:DD:C7:14
X509v3 Authority Key Identifier:
keyid:BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:04:39:8f:2f:b3:2b:ef:bc:4f:17:d2:db:68:f4:0b:f0:fc:
6f:77:a6:7f:85:c8:c2:4b:4f:bc:9c:33:a4:e3:0f:01:77:4a:
81:71:f9:d1:b8:8d:d4:c6:a6:5e:aa:3d:97:00:aa:b6:e7:27:
d2:56:09:37:e0:58:16:a8:78:8c:6e:8c:1f:1e:b7:e9:4b:a4:
89:08:05:27:c1:79:58:42:e6:39:6b:aa:cb:23:cd:97:77:5d:
ba:9b:1a:2c:4b:1f:ab:85:66:24:ea:71:d9:af:ac:ce:0e:87:
4d:37:f6:04:70:85:a4:88:de:3b:f3:c2:91:29:78:fe:43:6d:
21:f4:29:e1:a3:95:96:56:eb:c9:12:79:df:53:ac:cc:87:93:
08:35:a4:59:15:8b:33:42:07:fc:7a:ab:78:57:8a:3f:2a:86:
4a:82:09:f0:1c:73:fb:37:05:a4:e1:7a:43:2e:ae:e2:c9:1d:
96:d6:1c:58:55:3a:6c:20:10:6e:c6:00:90:79:90:9d:b6:0d:
74:5e:43:68:a7:6a:14:53:e2:23:5d:72:23:6d:97:c0:2a:94:
79:5d:4e:bd:c0:ba:2a:f4:87:bb:ad:60:b5:2b:b6:e3:e5:0e:
36:00:62:1a:09:c7:fd:64:05:f0:04:7c:03:62:cf:23:24:47:
f4:ec:be:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 17:40:18 2025 by rpki-client