Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
File: vzrHIKEXt01NE8Jj95R3kp7btLw.mft (raw, json)
Hash identifier: gb/6k6TcDpomUDlIJMoVPoAb/PtEDtwJU2+NhYi5W7k=
Subject key identifier: E4:FF:8F:D0:6C:FE:90:5B:1E:B0:55:A4:20:14:B2:DD:BE:33:34:0A
Authority key identifier: BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
Certificate issuer: /CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Certificate serial: 019A4DAB23A47154C5D6F02422E1BCAB589A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
Manifest number: 04F6
Signing time: Tue 04 Nov 2025 07:00:52 +0000
Manifest this update: Tue 04 Nov 2025 07:00:52 +0000
Manifest next update: Wed 05 Nov 2025 07:00:52 +0000
Files and hashes: 1: vzrHIKEXt01NE8Jj95R3kp7btLw.crl (hash: NmvG8g9YJ32fHtRB31GLdt0/iuritwHaUzHGrJ1czew=)
2: y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa (hash: ce+FeJaNssRXQv9hff7wkEZwcN/xUnX9DV6JIGk2oTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:ab:23:a4:71:54:c5:d6:f0:24:22:e1:bc:ab:58:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Validity
Not Before: Nov 4 07:00:52 2025 GMT
Not After : Nov 5 07:00:52 2025 GMT
Subject: CN=e4ff8fd06cfe905b1eb055a42014b2ddbe33340a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:3e:94:63:1a:7d:b2:52:37:c0:11:f5:96:fe:
b3:07:ed:c7:b4:83:ac:bc:2e:af:82:f6:c5:7b:cb:
fd:9c:a2:01:1d:19:64:0c:04:53:c1:dc:e4:93:d4:
34:28:48:0f:aa:fc:eb:c4:9f:fd:de:a6:69:40:39:
09:3e:77:fb:8e:c0:54:c9:cd:3e:08:c2:0b:fc:42:
d5:a0:df:35:09:e4:15:99:72:19:f2:78:a2:4c:af:
a0:26:6b:ad:0b:f2:21:3c:17:6e:23:d9:ae:55:2f:
7c:64:9b:9b:66:44:29:8c:14:e3:aa:8e:a1:11:96:
91:48:0c:34:4e:25:3a:b9:06:2a:2c:d9:c2:ab:c1:
bf:14:bc:2d:7d:d4:5f:2a:b6:64:d1:2a:4d:ef:d2:
40:ee:51:f2:30:0c:9c:70:63:de:74:6a:e2:d1:5b:
35:26:5a:d8:3d:19:34:22:80:81:94:ac:c4:82:2d:
65:9c:97:99:fb:e0:42:05:6d:b8:a5:8a:92:25:23:
bc:10:36:48:77:e9:66:27:f4:c1:55:12:c8:d3:83:
f9:7a:04:62:12:f0:09:b5:9a:40:09:55:5c:52:f8:
48:56:b7:34:ff:48:82:11:cf:28:9b:3f:e2:99:e4:
c9:01:e1:79:1e:63:0d:43:d4:56:4c:aa:0e:a2:51:
f1:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:FF:8F:D0:6C:FE:90:5B:1E:B0:55:A4:20:14:B2:DD:BE:33:34:0A
X509v3 Authority Key Identifier:
keyid:BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:4c:4a:2c:62:8f:da:5a:34:1d:a7:bf:03:18:7b:8f:c4:36:
2f:c4:e7:e0:b2:f4:63:32:a0:eb:de:95:2d:89:21:23:fb:97:
94:c4:6b:51:71:cc:58:2d:a4:10:d0:9e:b2:3c:3a:61:d2:6f:
64:cb:99:88:e9:4a:e8:66:8e:dd:ef:7e:f0:98:31:b2:28:2a:
4b:a7:a2:e2:dc:3d:b8:3b:8a:63:e8:99:63:76:fa:9d:81:54:
2e:dd:64:48:cc:dc:97:a7:e9:69:f4:3f:81:9b:f5:60:2d:c2:
5d:90:38:c0:cb:e3:45:27:57:4c:bd:c8:43:f1:93:de:f0:2d:
09:c3:66:b0:0c:49:42:be:38:9b:78:e9:91:5f:49:c7:fe:e3:
0a:66:51:43:9f:a6:81:bf:07:16:e3:a0:1d:f3:4e:34:51:37:
5e:13:a8:2a:2f:17:df:0a:4e:d0:29:4b:e7:1a:bc:97:c7:00:
04:20:75:1a:f3:69:69:ff:6a:87:8e:7f:35:36:ce:60:dd:97:
99:22:0a:a4:b9:25:3e:c2:71:5a:c3:b5:25:51:75:0c:cb:b4:
a0:71:ae:40:80:44:21:1d:d3:22:dd:ae:25:31:58:50:b0:4a:
40:05:b4:c7:bb:f3:a1:92:ad:d3:35:18:d8:94:48:c3:35:2c:
7c:b6:c1:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:06:21 2025 by rpki-client