
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
File: vFxHuPnkKkkot2dDFqcap21AHjw.mft (raw, json)
Hash identifier: uyrceAL8UgJEkSxykBZRYb0NfRCWN6g1xjI1zjcRkWw=
Subject key identifier: F5:44:38:72:96:7C:B0:40:14:3E:5E:EC:7E:D7:45:71:3A:D6:B6:31
Authority key identifier: BC:5C:47:B8:F9:E4:2A:49:28:B7:67:43:16:A7:1A:A7:6D:40:1E:3C
Certificate issuer: /CN=bc5c47b8f9e42a4928b7674316a71aa76d401e3c
Certificate serial: 01987D8AA632B45CC9FC4039A1423B2F9AEC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
Manifest number: 0BAD
Signing time: Wed 06 Aug 2025 04:01:35 +0000
Manifest this update: Wed 06 Aug 2025 04:01:35 +0000
Manifest next update: Thu 07 Aug 2025 04:01:35 +0000
Files and hashes: 1: vFxHuPnkKkkot2dDFqcap21AHjw.crl (hash: J/xWtu9oNVpGIJ0Y8v6ohQdEgEAyrZVXDQATFr7/CHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 04:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:8a:a6:32:b4:5c:c9:fc:40:39:a1:42:3b:2f:9a:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc5c47b8f9e42a4928b7674316a71aa76d401e3c
Validity
Not Before: Aug 6 04:01:35 2025 GMT
Not After : Aug 7 04:01:35 2025 GMT
Subject: CN=f5443872967cb040143e5eec7ed745713ad6b631
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:80:77:28:32:65:77:ba:40:3e:a1:67:77:37:
3d:5f:3f:3d:e2:7a:38:cf:a0:54:62:c1:b5:52:2a:
04:85:4b:58:ff:bc:5c:50:ca:dc:10:3e:a1:18:13:
33:69:fd:d3:f8:e8:44:8b:14:b5:6e:d5:94:94:b8:
90:9d:3d:c9:d9:ed:15:ef:21:a2:13:56:db:b1:14:
cd:75:4b:f2:b0:16:40:d6:e3:59:50:5e:2c:9c:11:
a6:65:5c:66:12:4a:6a:0b:45:2d:e7:28:86:ba:9d:
47:d9:1d:14:4a:80:60:95:65:83:45:ae:d7:e4:0e:
0c:1f:cb:4f:c7:b9:5c:a8:6b:87:00:62:1d:17:58:
93:57:06:a1:40:d5:fb:96:41:3a:3c:b1:a6:44:f6:
d3:31:03:aa:d5:08:16:b6:9a:4d:b4:25:7a:04:65:
ad:d7:53:21:d8:b6:5b:a4:70:8c:af:b9:53:69:a6:
52:b5:26:71:05:34:72:24:6a:5c:15:cf:f3:89:69:
e6:64:18:8b:1a:96:ff:ee:d7:0b:03:c0:03:80:4d:
63:a3:0f:92:92:58:c6:75:ee:f0:dd:36:74:9f:50:
40:75:36:ec:9a:7e:3c:3f:d5:55:71:b2:3f:68:52:
01:77:8c:7a:ec:dd:7c:2c:71:2a:2e:29:ba:18:4e:
40:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:44:38:72:96:7C:B0:40:14:3E:5E:EC:7E:D7:45:71:3A:D6:B6:31
X509v3 Authority Key Identifier:
keyid:BC:5C:47:B8:F9:E4:2A:49:28:B7:67:43:16:A7:1A:A7:6D:40:1E:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:bd:4d:8f:a3:c1:c4:15:70:ac:a4:21:35:ec:68:f4:80:dd:
5f:df:7b:0f:13:88:4c:82:e8:89:85:e7:0a:5d:91:2b:c9:84:
de:e8:26:2c:0c:4d:95:04:79:46:73:a6:1c:72:4c:21:39:cd:
62:be:31:b0:e9:f6:10:76:e1:ef:57:9d:61:21:e6:3a:e7:d8:
68:41:10:28:f2:ca:f8:af:3e:d8:b3:fe:47:e9:5b:00:e4:1b:
21:34:e4:3a:cb:3a:ef:b6:36:a4:d2:2d:60:9a:17:24:75:00:
9a:1a:44:37:75:39:ba:00:9f:ff:09:fe:91:16:69:df:12:d1:
c3:03:2d:3b:71:11:fc:dc:42:0e:48:99:82:fb:4f:e9:fe:1e:
40:2a:b2:11:9b:12:a2:c8:21:cd:c6:1c:42:37:c4:b2:cc:1d:
b2:2b:d9:75:52:57:11:27:ef:13:80:7c:d1:d1:8a:05:e5:08:
26:01:54:86:d1:b3:0a:90:3a:d7:0c:20:b6:69:c2:f9:82:4b:
1a:b4:c1:df:d6:ba:df:fc:37:14:0d:ff:91:84:9b:7a:0a:07:
c9:74:42:33:c2:13:d1:1a:70:20:51:2a:c8:c9:d6:7a:08:65:
a7:8c:c8:61:a8:d3:05:36:e0:52:45:2e:9f:f8:fa:02:a3:02:
a9:78:a6:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 10:14:47 2025 by rpki-client