Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json)
Hash identifier: avl7M1oRY+YtOzHb3m1f/5zdc4eREuqQMXC5McZlDbY=
Subject key identifier: 60:C0:EB:81:64:66:38:00:C0:2F:98:E6:D6:11:63:60:2A:4D:D2:77
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 019882E778017E8636EDF43787666843B671
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
Manifest number: 1621
Signing time: Thu 07 Aug 2025 05:01:04 +0000
Manifest this update: Thu 07 Aug 2025 05:01:04 +0000
Manifest next update: Fri 08 Aug 2025 05:01:04 +0000
Files and hashes: 1: RYZ_HUggvvOzHTuXBACbgajQpo0.roa (hash: Fp6s79hRrwq+bZ12gZrNnH0nQeo4puoviWIdP4EjMXQ=)
2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: pC4OFOIV3wuAf5Lx7TFhOUHzjygF3dio4SIWrKxS/wY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 05:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:82:e7:78:01:7e:86:36:ed:f4:37:87:66:68:43:b6:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: Aug 7 05:01:04 2025 GMT
Not After : Aug 8 05:01:04 2025 GMT
Subject: CN=60c0eb8164663800c02f98e6d61163602a4dd277
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:43:4a:b4:0f:d1:9f:52:3a:8d:85:10:7f:10:
f8:43:e3:08:80:ec:74:4f:8e:0b:08:26:38:6f:fd:
5a:39:96:db:17:26:32:3b:82:eb:fa:eb:60:f7:23:
a8:65:06:d2:81:2a:4c:6c:51:de:7f:ca:0a:95:f0:
0c:a8:9e:cc:e3:87:40:f6:3e:e7:bf:89:d8:a9:9a:
d6:44:ce:a9:ac:42:cf:f3:34:cf:b3:1a:dc:f3:b4:
6e:f7:d9:9f:73:13:ce:cd:77:c7:65:47:ba:a1:2e:
a1:d6:0b:c8:f5:6f:cc:f9:eb:89:af:d3:f0:40:a0:
42:f5:81:68:d6:97:41:19:86:30:63:2b:bf:e1:60:
af:ee:fe:72:24:bc:45:b5:a9:08:8d:37:75:4a:29:
82:ed:6d:25:22:cb:55:2a:66:e2:ae:ca:dd:73:33:
4f:9d:cd:49:e8:17:90:0c:14:f5:af:76:f7:47:91:
bc:d3:d0:01:af:94:ea:8c:f7:be:af:e5:99:62:a9:
54:a0:56:22:c6:5b:0d:bb:5f:9d:a2:6a:99:10:e1:
ee:01:39:2c:2d:11:08:36:cd:d0:29:d4:45:e9:3e:
38:a1:b4:69:92:02:cf:46:50:03:04:78:ae:a8:9f:
a1:e7:5a:81:89:7f:ab:2b:34:c1:d2:a4:6f:54:76:
3c:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:C0:EB:81:64:66:38:00:C0:2F:98:E6:D6:11:63:60:2A:4D:D2:77
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:15:93:18:79:ad:ce:6a:e1:64:ad:56:28:48:a2:d4:f3:63:
51:07:a1:f5:69:92:a3:ca:75:96:67:d8:21:3f:2b:7c:e3:9b:
e9:3e:07:b2:b3:3f:f3:8f:59:04:de:11:d6:d3:f6:c8:25:0f:
bc:9e:86:e6:2a:3f:f7:bb:3d:10:bc:1d:40:78:da:9a:e5:18:
d2:5c:d2:32:53:12:69:9d:1f:59:2d:5b:8d:e7:b6:25:b5:38:
42:49:a6:5b:3e:3c:d3:a7:01:87:b3:95:90:a8:a1:91:e9:28:
a0:bd:ff:53:5f:4e:a5:2c:95:71:53:e9:ee:2e:9c:03:5a:06:
2e:60:45:ad:ac:1f:63:88:54:0c:cd:be:24:0a:b4:87:a4:64:
7d:eb:0f:f2:f0:87:b4:fa:54:de:17:e3:52:5c:fa:0e:a2:c5:
39:bd:8d:6d:3d:2d:75:5a:c9:90:4d:96:51:27:6b:1d:5f:8d:
80:19:e6:0e:30:4d:3b:86:55:2d:fb:50:61:bd:cd:9a:75:05:
4d:24:22:30:45:c9:d5:9c:1c:b4:c3:bc:14:b1:6d:da:1c:06:
96:49:7d:d9:43:23:a4:3c:80:9e:32:5e:f0:02:0f:e2:2d:50:
ec:cf:28:8c:62:a0:e9:55:5a:a6:d4:d7:c8:7b:3f:2c:22:3f:
22:2e:6d:53
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiC53gBfoY27fQ3h2ZoQ7ZxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkYTYxMDQzNTQyNDg1MDk2YjBkZjQzNTFjYzBkYTk3N2Yz
NzcwZGQwHhcNMjUwODA3MDUwMTA0WhcNMjUwODA4MDUwMTA0WjAzMTEwLwYDVQQD
Eyg2MGMwZWI4MTY0NjYzODAwYzAyZjk4ZTZkNjExNjM2MDJhNGRkMjc3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0NKtA/Rn1I6jYUQfxD4Q+MIgOx0
T44LCCY4b/1aOZbbFyYyO4Lr+utg9yOoZQbSgSpMbFHef8oKlfAMqJ7M44dA9j7n
v4nYqZrWRM6prELP8zTPsxrc87Ru99mfcxPOzXfHZUe6oS6h1gvI9W/M+euJr9Pw
QKBC9YFo1pdBGYYwYyu/4WCv7v5yJLxFtakIjTd1SimC7W0lIstVKmbirsrdczNP
nc1J6BeQDBT1r3b3R5G809ABr5TqjPe+r+WZYqlUoFYixlsNu1+domqZEOHuATks
LREINs3QKdRF6T44obRpkgLPRlADBHiuqJ+h51qBiX+rKzTB0qRvVHY8jwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGDA64FkZjgAwC+Y5tYRY2AqTdJ3MB8GA1UdIwQY
MBaAFL2mEENUJIUJaw30NRzA2pd/N3DdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8xOTY2ODktMmRiNy00ZTgwLWI5MmMt
M2EyYWQ4OGRlYWRlLzEvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS8xOTY2ODktMmRiNy00ZTgwLWI5MmMtM2EyYWQ4OGRlYWRl
LzEvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnBWTGHmt
zmrhZK1WKEii1PNjUQeh9WmSo8p1lmfYIT8rfOOb6T4HsrM/849ZBN4R1tP2yCUP
vJ6G5io/97s9ELwdQHjamuUY0lzSMlMSaZ0fWS1bjee2JbU4QkmmWz4806cBh7OV
kKihkekooL3/U19OpSyVcVPp7i6cA1oGLmBFrawfY4hUDM2+JAq0h6RkfesP8vCH
tPpU3hfjUlz6DqLFOb2NbT0tdVrJkE2WUSdrHV+NgBnmDjBNO4ZVLftQYb3NmnUF
TSQiMEXJ1ZwctMO8FLFt2hwGlkl92UMjpDyAnjJe8AIP4i1Q7M8ojGKg6VVaptTX
yHs/LCI/Ii5tUw==
-----END CERTIFICATE-----
Generated at Thu Aug 7 14:48:52 2025 by rpki-client