Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
File: vzrHIKEXt01NE8Jj95R3kp7btLw.mft (raw, json)
Hash identifier: gyFPJOKrLYM8GKbV9PI2SMAAbKbz9tTujRhr14ICpU0=
Subject key identifier: 39:02:86:15:B3:BA:F3:D4:22:AA:A4:8B:6B:80:BE:FF:BA:0B:87:5C
Authority key identifier: BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
Certificate issuer: /CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Certificate serial: 0198801D143C95097F1A6A623975F151F959
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
Manifest number: 0407
Signing time: Wed 06 Aug 2025 16:00:45 +0000
Manifest this update: Wed 06 Aug 2025 16:00:45 +0000
Manifest next update: Thu 07 Aug 2025 16:00:45 +0000
Files and hashes: 1: vzrHIKEXt01NE8Jj95R3kp7btLw.crl (hash: pbXPqWnuplWmH3gCX0QEAyZ15LRStOgFMpAf4Jcef0U=)
2: y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa (hash: ce+FeJaNssRXQv9hff7wkEZwcN/xUnX9DV6JIGk2oTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 14:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:1d:14:3c:95:09:7f:1a:6a:62:39:75:f1:51:f9:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Validity
Not Before: Aug 6 16:00:45 2025 GMT
Not After : Aug 7 16:00:45 2025 GMT
Subject: CN=39028615b3baf3d422aaa48b6b80beffba0b875c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:10:0e:c4:d2:26:b1:ed:b8:9c:9d:37:16:7a:
7d:7c:7f:02:7f:01:3a:71:7c:11:6b:69:25:03:0e:
4c:a7:cc:1c:33:78:11:28:c2:fc:77:48:15:2e:f8:
77:ed:98:da:be:f4:ae:86:43:7d:49:d5:78:ad:73:
f5:2c:fc:3a:88:65:19:df:f2:f7:bb:a1:09:52:88:
b7:89:47:b8:74:4b:2f:1d:38:0a:1b:d4:ec:6e:60:
d8:e7:27:c5:e7:b3:89:f4:ae:be:ea:20:10:c5:35:
e6:46:c5:8b:85:4e:d1:a6:40:b4:ee:3d:cd:fc:fe:
ff:09:b4:f9:96:c6:37:71:48:a1:4c:2e:c9:83:f6:
bc:79:f7:53:a5:b4:5b:cf:d8:88:b2:20:6e:09:52:
d7:5e:9c:fa:62:da:40:af:0c:ab:79:e7:88:b8:2a:
e9:2f:2b:66:21:2f:f4:d9:a9:6a:77:5f:dc:61:ba:
31:cb:1d:47:8e:2d:11:53:0b:a6:e3:74:37:a6:05:
8e:2c:e9:e2:64:53:f1:dd:21:ba:79:9f:06:61:96:
9a:ce:a6:fe:5d:46:3c:5c:bf:a4:36:85:ec:db:0d:
dd:c1:55:78:d6:ef:fa:6c:bf:76:e9:97:da:13:12:
7a:a9:27:c9:73:9b:ac:89:ec:51:47:7d:98:9b:68:
41:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:02:86:15:B3:BA:F3:D4:22:AA:A4:8B:6B:80:BE:FF:BA:0B:87:5C
X509v3 Authority Key Identifier:
keyid:BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:59:ba:e2:de:4f:e5:fd:30:73:c5:08:f9:1f:a1:85:c7:7f:
48:68:4d:a8:d8:05:52:63:8b:7c:62:46:aa:7d:a4:90:d1:f9:
ee:29:7e:73:ce:64:4e:67:b5:5b:36:c3:e4:f1:47:45:ed:bf:
74:8c:65:76:b0:9f:8a:2e:a5:a1:47:d3:51:9f:02:ed:fc:44:
b2:10:40:80:a8:8f:9c:03:2b:5d:f5:f0:05:74:73:6e:33:6d:
62:a9:cb:b1:c9:18:9f:b6:0f:f1:ce:11:b6:be:24:a1:c6:67:
ae:23:8d:fd:72:71:83:22:4a:ae:1c:18:a7:55:f2:e4:f8:5f:
f7:be:0b:b1:75:f2:b3:b5:ec:83:01:fd:48:84:f4:88:7c:8b:
91:50:f4:4c:53:e9:40:20:48:78:20:32:69:4f:43:ec:48:e6:
42:db:c0:9a:31:05:e8:15:2f:fb:02:cc:24:1d:a7:14:9f:54:
dc:7c:fd:b4:06:fc:86:44:fc:14:12:24:e1:56:7c:47:80:3c:
e0:f8:4c:dc:4c:d2:eb:6e:c9:b1:99:30:4b:d2:1e:b4:ee:4d:
26:f9:43:94:ae:00:7d:ed:78:c8:f9:dc:2a:b9:f6:21:f0:d6:
b4:ea:87:ce:9c:0a:4a:5c:a2:e0:b4:33:70:c8:17:5b:c0:c0:
f7:31:66:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:48:40 2025 by rpki-client