Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
File: vygFmS5lMdPaMe4a9rzVwG0Ctso.mft (raw, json)
Hash identifier: FzxQcNY3Gf12DD+zZes/f1EYrcJCLE594pZSW4uh4sU=
Subject key identifier: C7:50:74:D4:96:2F:47:35:2F:40:DB:87:1A:B4:8E:48:E7:3D:BB:4F
Authority key identifier: BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA
Certificate issuer: /CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca
Certificate serial: 01988A33156B53A3F9CD3E861FEF2F6128BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
Manifest number: 1622
Signing time: Fri 08 Aug 2025 15:01:00 +0000
Manifest this update: Fri 08 Aug 2025 15:01:00 +0000
Manifest next update: Sat 09 Aug 2025 15:01:00 +0000
Files and hashes: 1: ZA2eo4PhOO6YarPBjFuZYerlXM8.roa (hash: OaUR9ntwZSMTqF4rae/f45ntDF7DCdGD74N9a3x5n8s=)
2: iU6o8UX2fMqdnVT4GPBZLMHQUVk.roa (hash: L7qS2Pktcg+3MFOhFw0UCguQbXdIgIfJZ4PXXKIQFAI=)
3: vygFmS5lMdPaMe4a9rzVwG0Ctso.crl (hash: F1K2OO/BIkfGQ/0+F427RPsqCx5K0iNrZSbK/rnzXcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 11:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:33:15:6b:53:a3:f9:cd:3e:86:1f:ef:2f:61:28:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca
Validity
Not Before: Aug 8 15:01:00 2025 GMT
Not After : Aug 9 15:01:00 2025 GMT
Subject: CN=c75074d4962f47352f40db871ab48e48e73dbb4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:82:fc:db:12:b2:c9:69:2a:b7:57:6d:38:14:
db:3e:4a:5c:9d:1d:f9:af:ad:c0:e4:e7:3b:b3:6c:
e7:14:08:f3:ff:7e:57:10:3d:93:79:6a:a3:be:9b:
4c:50:8a:64:d1:87:4d:2c:de:7a:45:69:02:21:ed:
d9:2d:4b:59:25:e1:09:60:85:ea:cd:62:9f:bc:69:
f8:78:a8:46:a0:63:e1:e0:09:47:6b:4a:30:94:9b:
ee:55:a0:e3:83:6e:f3:8d:fa:a3:37:47:b2:f1:31:
e8:98:76:24:9a:c5:d5:ef:c1:d9:75:ee:bd:df:19:
fb:88:2f:b8:a4:67:4f:1a:7d:ba:f9:b6:ee:f9:29:
93:8a:78:93:8e:f6:b8:21:17:3c:4b:83:e7:f6:31:
90:21:53:f8:24:cb:7e:8f:6d:9e:10:75:93:da:5a:
84:97:89:1a:16:c4:a3:d9:88:36:6c:45:20:24:3d:
38:91:b1:bb:01:d7:d4:89:95:16:e9:44:82:10:f0:
51:a2:66:fa:e0:c7:4c:ad:3c:94:0b:0e:ef:26:b5:
a6:05:e8:25:10:5a:6e:5a:45:7e:dd:52:fa:1e:43:
34:75:cc:ee:77:84:15:5e:d0:06:70:a7:ff:fc:3e:
bc:39:e8:fc:63:5a:67:89:13:c3:cb:e4:62:ff:15:
f6:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:50:74:D4:96:2F:47:35:2F:40:DB:87:1A:B4:8E:48:E7:3D:BB:4F
X509v3 Authority Key Identifier:
keyid:BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:8c:9a:55:55:aa:37:02:d6:a8:68:50:54:b5:33:b4:e0:8e:
cb:8d:00:ef:36:ba:36:b1:fa:66:a2:3d:8f:18:80:28:7b:60:
b0:18:36:57:95:61:ec:9b:14:8d:1f:ff:29:71:14:cf:b9:6a:
d0:88:2f:e0:1c:cd:75:d3:98:e9:cb:55:a6:5a:94:da:bf:1d:
9b:cf:4b:e7:9a:53:b9:80:76:06:d3:3a:e8:5c:da:76:72:77:
2e:6c:ca:03:e4:fa:31:f8:14:97:c6:68:24:e9:cf:21:bf:2c:
77:2d:0e:a5:2b:c5:34:42:98:cf:1f:9e:72:58:69:19:7d:58:
4d:ee:0a:2e:82:bc:c1:0c:ae:c7:c2:c7:dd:f4:2b:b2:0c:56:
d1:c4:09:58:50:a2:c5:68:07:58:06:b6:20:6e:ac:b6:f9:86:
39:e7:9c:d2:ef:4a:67:f0:1b:fb:4c:e8:41:67:cb:95:d5:a3:
e8:c5:27:f9:a1:c2:f8:32:23:f4:79:b9:44:91:6c:fd:55:20:
4c:51:c4:2c:ed:02:e0:3d:be:16:20:eb:2e:9c:4c:52:83:40:
a2:ea:73:b2:39:8f:04:1c:e6:65:73:d6:a4:c7:c5:e6:85:ff:
27:0e:42:77:85:d1:74:60:c3:6a:e9:c6:1e:76:1c:f8:38:89:
9b:10:f5:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 19:21:51 2025 by rpki-client