Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft
File: VGgc0JnIW-caIjUMsT8EglwB-PA.mft (raw, json)
Hash identifier: QdXrKyK9/wYuwXCqYJ/LzdxOPvwQORUKKwsXP80Jj1Q=
Subject key identifier: 2A:74:1F:43:FE:DD:2E:07:F7:D8:AF:F3:9D:8B:BE:16:46:9E:87:E6
Authority key identifier: 54:68:1C:D0:99:C8:5B:E7:1A:22:35:0C:B1:3F:04:82:5C:01:F8:F0
Certificate issuer: /CN=54681cd099c85be71a22350cb13f04825c01f8f0
Certificate serial: 0198D660A86D1B927432481EF15B5920FAAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft
Manifest number: 0CA2
Signing time: Sat 23 Aug 2025 10:01:55 +0000
Manifest this update: Sat 23 Aug 2025 10:01:55 +0000
Manifest next update: Sun 24 Aug 2025 10:01:55 +0000
Files and hashes: 1: VGgc0JnIW-caIjUMsT8EglwB-PA.crl (hash: YtN8TWB1jOSFx79dP6fnTQuHqUZLtmKj8MxwNCP+Me8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 10:01:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:60:a8:6d:1b:92:74:32:48:1e:f1:5b:59:20:fa:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54681cd099c85be71a22350cb13f04825c01f8f0
Validity
Not Before: Aug 23 10:01:55 2025 GMT
Not After : Aug 24 10:01:55 2025 GMT
Subject: CN=2a741f43fedd2e07f7d8aff39d8bbe16469e87e6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a0:07:b4:54:92:f3:c9:9e:77:e4:9a:2b:86:
8e:7f:bc:2c:43:60:0a:7e:e0:73:fd:a5:56:84:42:
e9:f5:51:02:27:27:d6:56:a5:5c:b7:62:76:69:c0:
52:c1:da:cc:c5:61:ac:8c:96:55:76:9b:87:07:15:
81:3d:f4:29:a5:f4:4a:63:4e:9c:67:f3:6a:95:c1:
f4:cb:5c:5b:60:c0:76:66:72:a4:b2:7f:79:b0:f5:
d5:57:76:85:64:b1:d2:9a:62:a6:f0:17:43:57:35:
e7:4b:62:e6:ec:e3:3a:4e:3b:44:ba:9d:90:7d:1b:
6e:39:cd:ed:d3:7e:c5:ba:75:0f:eb:87:7e:63:02:
d9:af:7a:95:99:37:b6:e9:41:d6:22:88:87:5f:a6:
48:26:56:0e:fe:f1:98:0c:41:28:28:29:42:b2:39:
cb:5e:e4:c2:3c:ed:7b:38:71:33:43:56:07:4d:2e:
75:e6:9e:3f:4f:68:6b:88:dc:72:48:5f:7e:bc:59:
68:68:fc:f5:dd:d0:79:ee:a0:e0:ed:26:cc:69:88:
f2:aa:1f:81:08:c7:e6:d1:fa:fb:68:a6:81:a4:1e:
53:20:24:4c:ca:9b:1c:23:d8:3d:f8:ce:89:26:96:
31:8a:4b:84:bf:6e:25:c3:69:71:f7:42:2b:f5:b3:
11:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:74:1F:43:FE:DD:2E:07:F7:D8:AF:F3:9D:8B:BE:16:46:9E:87:E6
X509v3 Authority Key Identifier:
keyid:54:68:1C:D0:99:C8:5B:E7:1A:22:35:0C:B1:3F:04:82:5C:01:F8:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:06:f0:cf:ba:19:d5:8c:ec:a1:51:d3:ea:5c:37:86:27:de:
f6:bb:ba:16:23:04:e5:e4:f2:20:77:00:d8:b9:c5:85:eb:04:
e5:ef:16:3f:fa:38:28:4d:c1:ca:97:ea:c8:06:99:33:69:c4:
15:8d:86:40:32:ff:20:5a:10:42:15:5b:51:4d:08:8f:da:2b:
e5:d9:aa:d9:83:3b:6c:6a:76:cc:07:2a:40:a8:97:fc:56:fc:
f7:09:31:1d:a2:c3:fc:9e:5d:ae:c2:b1:b7:90:52:dd:dc:47:
90:cd:58:f2:68:a9:03:ac:c2:05:cd:3b:e9:aa:63:58:3e:ab:
ef:d4:41:c7:2b:83:b3:52:46:75:8a:10:0a:69:05:77:f5:fd:
80:76:f2:cd:88:9b:a1:5f:b5:ae:54:96:98:9e:92:f7:19:d1:
64:10:45:83:43:e8:c0:e3:bf:b7:6a:35:3a:6f:8d:60:0d:40:
8e:04:f3:8a:37:5f:28:a6:bc:f0:ee:e4:31:7e:a8:ab:06:65:
5d:97:1c:3d:b4:b4:48:32:82:59:1d:f7:8c:f2:0a:e8:8b:c2:
1b:a4:65:65:37:24:53:0a:86:a5:51:2e:c9:f9:e9:e4:e3:4f:
8a:4a:65:45:5b:ee:b5:98:f9:fd:ef:59:e8:e9:7a:a6:dd:71:
9b:88:39:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 16:44:04 2025 by rpki-client