Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
File: vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft (raw, json)
Hash identifier: zoI5bH0wRjS/ugC/rFKFkWor9u7qB3DY8bncxnMgmmg=
Subject key identifier: D3:1F:1E:98:04:D0:1F:5F:6C:4C:34:2C:AE:4F:A7:9D:9C:70:7F:54
Authority key identifier: BD:B2:4D:F4:A7:C9:AA:21:31:D8:57:50:3B:93:D6:0F:7F:B5:1B:D9
Certificate issuer: /CN=bdb24df4a7c9aa2131d857503b93d60f7fb51bd9
Certificate serial: 01987C0A129AE8FBE34D07CD2F7074C42285
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
Manifest number: 02E9
Signing time: Tue 05 Aug 2025 21:01:31 +0000
Manifest this update: Tue 05 Aug 2025 21:01:31 +0000
Manifest next update: Wed 06 Aug 2025 21:01:31 +0000
Files and hashes: 1: AFVAjCiROQ32Z_efvRaORNpa2fQ.roa (hash: STiLszZIpw1MlrUzOI5Ii3ZfZdoAbfQenvPasDTHJCA=)
2: vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl (hash: tMhXzQPXHiEiQS/EG+K4R67hTKYiCneK0KnJAB1VihE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:0a:12:9a:e8:fb:e3:4d:07:cd:2f:70:74:c4:22:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdb24df4a7c9aa2131d857503b93d60f7fb51bd9
Validity
Not Before: Aug 5 21:01:31 2025 GMT
Not After : Aug 6 21:01:31 2025 GMT
Subject: CN=d31f1e9804d01f5f6c4c342cae4fa79d9c707f54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ca:66:99:ae:2c:97:cb:95:7a:fc:0c:55:2d:
7c:bd:d6:96:a2:30:cb:5b:61:b7:db:53:82:50:28:
a2:18:e0:17:28:1f:fc:82:1c:53:ee:d1:81:85:16:
c1:c6:85:d1:b2:ca:13:8f:57:e2:3c:35:56:b2:f8:
d2:3a:43:21:26:47:36:be:cf:1b:c4:c8:77:21:5d:
6a:b6:4c:18:65:f4:59:85:ca:3a:31:24:52:3f:9f:
dc:a0:d9:61:02:7f:ea:cf:a5:fa:bb:ba:3c:5c:cc:
8a:5a:a0:b4:07:50:54:e0:4e:17:b7:62:f4:c5:0c:
78:7a:a8:bd:33:21:1d:ff:78:12:4c:b2:b9:93:9f:
a8:5e:84:56:fd:c3:0b:69:5f:72:6b:5f:7a:ea:fe:
63:24:2e:ce:bd:b0:35:fa:e1:f3:f6:a8:5c:7e:3d:
9c:f5:5b:3d:0d:23:11:b7:0d:17:ba:03:67:58:d8:
af:0f:0a:39:d8:44:6a:39:6f:d4:30:45:5e:1c:32:
bf:49:3e:93:c2:72:c9:e3:6c:1b:1c:07:75:37:00:
c3:ae:44:a7:28:4b:6f:47:28:b2:15:7f:14:d8:61:
6b:2b:2e:99:0b:15:9a:3b:70:37:82:4c:9f:93:82:
84:27:33:1f:1a:c1:a6:9b:1a:f3:4a:68:90:e6:43:
07:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:1F:1E:98:04:D0:1F:5F:6C:4C:34:2C:AE:4F:A7:9D:9C:70:7F:54
X509v3 Authority Key Identifier:
keyid:BD:B2:4D:F4:A7:C9:AA:21:31:D8:57:50:3B:93:D6:0F:7F:B5:1B:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:33:a0:4a:54:7d:42:0f:21:93:72:e7:18:21:47:fb:b1:59:
74:91:2d:ad:97:1b:f2:6c:99:6b:a8:73:51:2e:3e:4f:bc:97:
46:24:8f:76:d9:c1:ff:d8:89:ff:7a:45:d8:1a:c9:59:4d:21:
4c:7b:b5:02:b9:5f:2f:4a:76:25:5c:97:29:e9:ee:fd:2a:3e:
88:32:12:2f:d6:71:82:f4:35:aa:ab:1c:36:67:1f:e9:63:0e:
a2:69:f4:ad:6c:a1:5e:8c:41:30:7a:eb:f4:1b:cd:7c:f3:1b:
ac:54:45:22:36:d3:de:59:7c:04:6e:66:38:1a:f1:3b:d4:2f:
5a:04:56:b5:1e:53:e8:44:ab:30:38:3d:36:9e:0c:0c:bd:d8:
b1:79:e8:79:aa:60:51:c1:c8:7c:91:4f:62:ff:f3:aa:63:47:
41:f3:73:4a:eb:8b:87:a8:8d:11:ac:e1:a8:ae:26:0b:eb:3e:
f6:b2:65:68:3e:ef:bb:5e:59:74:cd:6d:41:38:64:c1:0b:dd:
59:25:a3:30:0c:43:54:aa:30:8b:91:09:6d:e7:61:65:d3:60:
1e:20:b2:a0:b8:0f:a6:51:a4:e8:7e:80:07:79:45:3b:0e:61:
51:46:a8:d1:1b:ba:d3:1b:57:98:6d:92:27:aa:0d:8d:7b:a7:
02:4b:97:54
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh8ChKa6PvjTQfNL3B0xCKFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkYjI0ZGY0YTdjOWFhMjEzMWQ4NTc1MDNiOTNkNjBmN2Zi
NTFiZDkwHhcNMjUwODA1MjEwMTMxWhcNMjUwODA2MjEwMTMxWjAzMTEwLwYDVQQD
EyhkMzFmMWU5ODA0ZDAxZjVmNmM0YzM0MmNhZTRmYTc5ZDljNzA3ZjU0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmMpmma4sl8uVevwMVS18vdaWojDL
W2G321OCUCiiGOAXKB/8ghxT7tGBhRbBxoXRssoTj1fiPDVWsvjSOkMhJkc2vs8b
xMh3IV1qtkwYZfRZhco6MSRSP5/coNlhAn/qz6X6u7o8XMyKWqC0B1BU4E4Xt2L0
xQx4eqi9MyEd/3gSTLK5k5+oXoRW/cMLaV9ya1966v5jJC7OvbA1+uHz9qhcfj2c
9Vs9DSMRtw0XugNnWNivDwo52ERqOW/UMEVeHDK/ST6TwnLJ42wbHAd1NwDDrkSn
KEtvRyiyFX8U2GFrKy6ZCxWaO3A3gkyfk4KEJzMfGsGmmxrzSmiQ5kMH4QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNMfHpgE0B9fbEw0LK5Pp52ccH9UMB8GA1UdIwQY
MBaAFL2yTfSnyaohMdhXUDuT1g9/tRvZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmJKTjlLZkpxaUV4MkZkUU81UFdEMy0xRzlrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC8wMTAyYzctYjRlYS00YmFiLWI3NzAt
ZDMwYWViMWMyMGNhLzEvdmJKTjlLZkpxaUV4MkZkUU81UFdEMy0xRzlrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNC8wMTAyYzctYjRlYS00YmFiLWI3NzAtZDMwYWViMWMyMGNh
LzEvdmJKTjlLZkpxaUV4MkZkUU81UFdEMy0xRzlrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdTOgSlR9
Qg8hk3LnGCFH+7FZdJEtrZcb8myZa6hzUS4+T7yXRiSPdtnB/9iJ/3pF2BrJWU0h
THu1ArlfL0p2JVyXKenu/So+iDISL9ZxgvQ1qqscNmcf6WMOomn0rWyhXoxBMHrr
9BvNfPMbrFRFIjbT3ll8BG5mOBrxO9QvWgRWtR5T6ESrMDg9Np4MDL3YsXnoeapg
UcHIfJFPYv/zqmNHQfNzSuuLh6iNEazhqK4mC+s+9rJlaD7vu15ZdM1tQThkwQvd
WSWjMAxDVKowi5EJbedhZdNgHiCyoLgPplGk6H6AB3lFOw5hUUao0Ru60xtXmG2S
J6oNjXunAkuXVA==
-----END CERTIFICATE-----
Generated at Wed Aug 6 03:57:17 2025 by rpki-client