Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
File: VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft (raw, json)
Hash identifier: 44P0LqzvLHObT4vp/cpykPteR8208chC/TPCHI8YVas=
Subject key identifier: CF:DC:A2:65:06:6C:85:BC:B8:4A:2D:E6:1D:CB:F8:49:BD:76:53:7A
Authority key identifier: 54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
Certificate issuer: /CN=54ce2445a2e8874318bf249b73a654c990919ee0
Certificate serial: 0198D65F63891A17C875C33CDB65576061D3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
Manifest number: 0DDD
Signing time: Sat 23 Aug 2025 10:00:32 +0000
Manifest this update: Sat 23 Aug 2025 10:00:32 +0000
Manifest next update: Sun 24 Aug 2025 10:00:32 +0000
Files and hashes: 1: VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl (hash: ZPFmJmIUVXRyUe1EcsvBYlHTHHZ3hm/X92tv+JB9MKY=)
2: qCD8L1dMgJ9yzf77qP7Yswj5ta4.roa (hash: oyvr0Mb88tpow7HpmKv7H5W0zqdzX3mbbm1lwxbPABw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:5f:63:89:1a:17:c8:75:c3:3c:db:65:57:60:61:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ce2445a2e8874318bf249b73a654c990919ee0
Validity
Not Before: Aug 23 10:00:32 2025 GMT
Not After : Aug 24 10:00:32 2025 GMT
Subject: CN=cfdca265066c85bcb84a2de61dcbf849bd76537a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:37:4c:29:1a:0d:d0:9c:2e:ac:c2:db:e6:75:
44:01:d1:c4:73:f5:c9:4e:c0:42:05:f7:47:3b:41:
0a:26:e5:66:25:ec:b0:99:22:19:77:57:29:3c:7b:
bd:09:2c:15:89:f6:1b:a2:7d:f3:ac:74:bc:0d:61:
93:4b:d8:7c:b1:7b:43:e9:55:af:0e:8a:fb:a8:0b:
8e:42:94:45:59:f1:fd:1c:a0:4e:32:28:8f:07:a7:
c7:03:62:13:fa:bd:62:aa:45:92:cc:a5:a0:80:c5:
bf:ed:fa:f9:60:73:11:00:79:55:db:f4:38:56:94:
50:be:47:79:e0:f0:c4:25:00:4c:17:38:4f:1b:06:
ff:8c:6c:f0:ff:37:fb:94:53:ea:1d:48:96:43:56:
72:51:08:15:fa:83:71:53:92:e8:e3:e1:e5:57:87:
10:a3:ad:2a:e9:fa:26:3e:38:ef:ca:35:69:09:bd:
38:3d:30:43:d6:02:0a:58:0f:1a:03:7a:ec:c5:07:
41:b7:3e:01:bb:67:03:6f:c8:0c:8c:68:90:d8:e4:
8a:0f:42:19:06:94:0a:90:2f:78:90:4e:77:88:36:
37:0e:fc:6e:80:37:df:88:50:2b:cf:9b:96:a8:09:
c2:b2:e3:fb:f3:b3:c0:44:8f:bd:b2:61:72:e7:57:
94:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:DC:A2:65:06:6C:85:BC:B8:4A:2D:E6:1D:CB:F8:49:BD:76:53:7A
X509v3 Authority Key Identifier:
keyid:54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:9e:96:15:0d:d7:5f:bc:c7:a3:5e:39:6a:cb:67:17:1d:c4:
89:fe:05:61:57:88:26:ab:eb:0a:34:71:a5:ba:a6:2d:99:a2:
bd:b2:bc:f9:e6:5f:8a:f2:61:f1:fc:c8:7f:e0:05:d7:46:bf:
eb:4c:09:55:da:3c:7a:63:83:c4:56:93:ed:c9:7e:6f:8a:b5:
2c:96:5d:34:ac:f0:2e:01:6c:3e:72:96:d4:bb:a9:e9:c9:7d:
f3:92:77:1b:6c:70:ca:84:86:85:86:77:64:9d:4b:04:4c:4c:
5d:be:c7:80:85:50:e5:08:de:1d:52:cb:a7:b4:9e:24:5b:3e:
8e:23:1f:63:d6:58:f3:fc:5e:e7:48:8e:e5:79:93:17:83:c7:
cd:e6:b3:26:d1:8f:e3:65:74:bb:d8:21:31:ec:82:99:b6:ff:
15:6e:9d:f3:20:de:36:66:fc:31:9d:34:f1:22:b8:0f:94:1b:
8f:f3:82:f4:fe:86:fd:12:c5:1b:b5:8d:38:7e:ec:bd:9b:7b:
6c:fc:a1:96:f6:be:ac:15:a2:b5:a9:64:18:70:0c:a4:0f:65:
98:b6:e0:97:00:bc:44:6c:b8:e2:6e:a0:69:80:82:f9:c2:71:
83:97:17:06:ed:29:d3:1e:f6:9b:5b:97:81:01:8b:30:72:48:
d3:e2:9b:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:12:59 2025 by rpki-client