Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
File: VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft (raw, json)
Hash identifier: +p4D1Jf0a3DWcOMNKnVGr0NSIvlkKqDdl+x/geptbtY=
Subject key identifier: 8F:5D:F6:B4:42:5E:4A:5B:F6:DD:83:01:9A:29:7C:86:F3:B1:34:E9
Authority key identifier: 54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
Certificate issuer: /CN=54ce2445a2e8874318bf249b73a654c990919ee0
Certificate serial: 0199FFC87BA45B8CAA231ECAB23CA4E77E7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
Manifest number: 0E77
Signing time: Mon 20 Oct 2025 04:02:32 +0000
Manifest this update: Mon 20 Oct 2025 04:02:32 +0000
Manifest next update: Tue 21 Oct 2025 04:02:32 +0000
Files and hashes: 1: VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl (hash: f/iTzFAmJ+kjsQWezarN9OZRxs2z2J1xEMoHnJhKEss=)
2: qCD8L1dMgJ9yzf77qP7Yswj5ta4.roa (hash: oyvr0Mb88tpow7HpmKv7H5W0zqdzX3mbbm1lwxbPABw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 00:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c8:7b:a4:5b:8c:aa:23:1e:ca:b2:3c:a4:e7:7e:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ce2445a2e8874318bf249b73a654c990919ee0
Validity
Not Before: Oct 20 04:02:32 2025 GMT
Not After : Oct 21 04:02:32 2025 GMT
Subject: CN=8f5df6b4425e4a5bf6dd83019a297c86f3b134e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:53:ef:e9:69:99:50:06:eb:d4:54:8c:b4:ff:
e6:8b:6b:fc:48:3e:a3:03:5f:47:ec:1f:78:41:26:
6c:f1:18:0a:73:0d:6c:58:3f:8d:1b:67:f0:87:45:
ed:8d:44:14:ae:b2:e2:6c:3a:97:49:d6:39:89:ca:
ec:fb:e9:3d:b7:f1:04:c0:fe:b2:c7:64:22:30:59:
9b:69:b8:e8:06:2c:3f:a8:36:ef:32:39:71:b1:f1:
89:5e:d0:24:c4:72:5d:8b:04:5a:82:ee:09:17:f1:
41:d9:b3:30:e7:33:72:4e:a6:5d:11:f8:38:51:e9:
85:60:18:27:01:7a:44:09:0e:a6:70:b7:e9:c7:2d:
7c:69:e5:46:df:72:6d:14:d8:1c:84:6f:17:b5:2e:
38:a2:35:51:00:7b:f2:c9:b9:bc:27:11:39:c1:b7:
3e:af:6e:cc:69:6e:2a:5e:61:26:3c:0f:dc:d1:56:
77:d7:99:29:e7:91:1b:f9:63:cc:58:38:54:b9:a4:
8c:f8:09:69:1d:2e:41:d1:92:07:ed:98:02:8c:db:
9e:85:31:0e:23:a8:c8:25:d6:6a:17:f5:85:74:db:
1e:e0:9c:49:c6:71:2d:3e:55:4b:0b:2a:fc:d3:a1:
9e:bb:7b:c6:66:86:4f:00:0f:9e:56:f8:03:88:f4:
35:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:5D:F6:B4:42:5E:4A:5B:F6:DD:83:01:9A:29:7C:86:F3:B1:34:E9
X509v3 Authority Key Identifier:
keyid:54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:57:ea:06:a7:ad:2a:c8:d6:b1:e2:b4:69:fa:73:5c:a8:8f:
9f:d2:de:3a:39:eb:2b:df:49:9c:73:4c:25:6a:8e:92:6a:6c:
e4:6b:74:30:48:49:dd:e6:13:05:29:17:d3:10:f3:3c:01:3e:
69:0b:d0:ab:3d:88:7c:bf:f2:93:66:3a:4d:9c:4f:20:65:c9:
4d:e5:09:c8:fc:4b:6a:d0:aa:a7:5f:81:5a:18:78:62:48:1c:
49:2b:af:f5:8c:5e:ff:c2:de:ca:21:53:6c:36:2c:b9:33:01:
07:c8:0e:65:d3:ba:94:53:0b:8e:6a:37:c5:2c:e0:fa:10:b4:
7b:53:f2:18:9b:04:80:7b:23:d0:3e:ea:17:30:09:1a:76:06:
bc:90:be:ea:19:4b:95:07:ae:35:8b:53:ad:3a:51:9b:7a:1f:
c1:12:91:5a:77:b0:ae:75:82:40:6c:89:0e:a6:be:d6:6b:29:
38:41:62:44:08:ee:17:2e:3f:f3:6f:ca:a7:b8:34:4e:2d:ec:
d4:2a:77:8c:8b:db:f2:61:b1:1b:40:ca:de:b0:ba:78:52:4e:
f7:6c:30:dc:4c:0b:37:59:d4:cc:f9:21:f7:11:48:be:38:6d:
03:7b:63:25:3a:56:47:34:25:15:42:1b:b0:61:4e:7c:a8:17:
f9:cd:87:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/yHukW4yqIx7Ksjyk535+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0Y2UyNDQ1YTJlODg3NDMxOGJmMjQ5YjczYTY1NGM5OTA5
MTllZTAwHhcNMjUxMDIwMDQwMjMyWhcNMjUxMDIxMDQwMjMyWjAzMTEwLwYDVQQD
Eyg4ZjVkZjZiNDQyNWU0YTViZjZkZDgzMDE5YTI5N2M4NmYzYjEzNGU5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs1Pv6WmZUAbr1FSMtP/mi2v8SD6j
A19H7B94QSZs8RgKcw1sWD+NG2fwh0XtjUQUrrLibDqXSdY5icrs++k9t/EEwP6y
x2QiMFmbabjoBiw/qDbvMjlxsfGJXtAkxHJdiwRagu4JF/FB2bMw5zNyTqZdEfg4
UemFYBgnAXpECQ6mcLfpxy18aeVG33JtFNgchG8XtS44ojVRAHvyybm8JxE5wbc+
r27MaW4qXmEmPA/c0VZ315kp55Eb+WPMWDhUuaSM+AlpHS5B0ZIH7ZgCjNuehTEO
I6jIJdZqF/WFdNse4JxJxnEtPlVLCyr806Geu3vGZoZPAA+eVvgDiPQ1WwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI9d9rRCXkpb9t2DAZopfIbzsTTpMB8GA1UdIwQY
MBaAFFTOJEWi6IdDGL8km3OmVMmQkZ7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVk00a1JhTG9oME1ZdnlTYmM2WlV5WkNSbnVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iZDc3ODAtZWI1My00YzFkLWFjY2Ut
Y2ZlN2UzZjlmOTJkLzEvVk00a1JhTG9oME1ZdnlTYmM2WlV5WkNSbnVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9iZDc3ODAtZWI1My00YzFkLWFjY2UtY2ZlN2UzZjlmOTJk
LzEvVk00a1JhTG9oME1ZdnlTYmM2WlV5WkNSbnVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG1fqBqet
KsjWseK0afpzXKiPn9LeOjnrK99JnHNMJWqOkmps5Gt0MEhJ3eYTBSkX0xDzPAE+
aQvQqz2IfL/yk2Y6TZxPIGXJTeUJyPxLatCqp1+BWhh4YkgcSSuv9Yxe/8LeyiFT
bDYsuTMBB8gOZdO6lFMLjmo3xSzg+hC0e1PyGJsEgHsj0D7qFzAJGnYGvJC+6hlL
lQeuNYtTrTpRm3ofwRKRWnewrnWCQGyJDqa+1mspOEFiRAjuFy4/82/Kp7g0Ti3s
1Cp3jIvb8mGxG0DK3rC6eFJO92ww3EwLN1nUzPkh9xFIvjhtA3tjJTpWRzQlFUIb
sGFOfKgX+c2HrQ==
-----END CERTIFICATE-----
Generated at Mon Oct 20 08:48:05 2025 by rpki-client