
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.mft
File: v-5TEVVgcUYwTcZd1Xb77p8Nbk4.mft (raw, json)
Hash identifier: VvMJBWOMhb1mtkxLjex/ZrZ8Be367sWQZOP2+CdoAD0=
Subject key identifier: 86:6C:51:1E:9F:86:66:CD:C2:AE:F3:44:EC:A5:8E:22:D8:C5:F5:6E
Authority key identifier: BF:EE:53:11:55:60:71:46:30:4D:C6:5D:D5:76:FB:EE:9F:0D:6E:4E
Certificate issuer: /CN=bfee531155607146304dc65dd576fbee9f0d6e4e
Certificate serial: 01987BD274EDA81D2367444AF60640AAC53F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.mft
Manifest number: 043D
Signing time: Tue 05 Aug 2025 20:00:46 +0000
Manifest this update: Tue 05 Aug 2025 20:00:46 +0000
Manifest next update: Wed 06 Aug 2025 20:00:46 +0000
Files and hashes: 1: v-5TEVVgcUYwTcZd1Xb77p8Nbk4.crl (hash: 8dIjPxRxVJNHMrZOkwtOtCFLk9QHtqjSGfiLPkGk+b0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 17:44:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7b:d2:74:ed:a8:1d:23:67:44:4a:f6:06:40:aa:c5:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bfee531155607146304dc65dd576fbee9f0d6e4e
Validity
Not Before: Aug 5 20:00:46 2025 GMT
Not After : Aug 6 20:00:46 2025 GMT
Subject: CN=866c511e9f8666cdc2aef344eca58e22d8c5f56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:99:ab:34:f8:0e:ca:1b:d0:0c:01:16:2d:9a:
6c:7f:26:6e:b2:1e:44:ea:97:c2:74:8f:01:65:9e:
60:23:cd:7e:82:ae:af:2d:3a:f2:c4:87:4d:f6:7b:
98:6c:67:93:d7:b4:e0:82:e8:6c:c3:11:1f:0d:53:
2b:3d:7a:e9:c9:5d:24:77:03:d4:e4:b7:a2:26:10:
1b:68:1d:56:02:1d:f5:a1:8d:0c:06:ef:40:62:31:
37:9e:99:26:72:0b:54:ba:bf:aa:1f:1d:af:2b:74:
31:4c:28:16:c3:93:b4:b7:64:ed:a7:df:c7:df:31:
27:e2:84:12:04:b8:49:1b:f0:56:f7:e4:4a:61:b1:
42:d7:06:04:ad:e2:c2:c9:a4:f3:87:3a:32:ba:43:
d7:01:dd:9e:51:9a:41:56:a6:36:8f:b3:46:9a:7b:
4a:48:a0:b0:94:45:86:21:75:de:e6:de:d8:9d:59:
13:54:94:f6:e8:4c:f8:f8:ac:0f:aa:c4:3b:df:5e:
89:da:3f:1f:c3:4f:9a:43:08:83:82:54:92:14:85:
ec:4f:2b:3d:dc:35:f7:8e:52:71:6d:12:f0:04:64:
29:2a:2f:ce:32:0c:f1:f3:33:6b:35:02:ae:99:ca:
aa:6c:89:75:e3:be:7e:ce:e2:8b:39:c2:66:18:8b:
32:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:6C:51:1E:9F:86:66:CD:C2:AE:F3:44:EC:A5:8E:22:D8:C5:F5:6E
X509v3 Authority Key Identifier:
keyid:BF:EE:53:11:55:60:71:46:30:4D:C6:5D:D5:76:FB:EE:9F:0D:6E:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/3ec64b-d3a1-4331-9252-d4f83380a9c5/1/v-5TEVVgcUYwTcZd1Xb77p8Nbk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:0f:5e:25:0d:17:ed:b4:5b:2b:6d:a8:7e:ee:fc:ee:3c:57:
bf:0f:9f:a0:17:41:f9:ac:b7:a5:ef:21:26:a5:80:a1:10:2f:
bc:71:4a:00:40:b7:9e:d4:d6:af:3c:8c:c9:67:1c:6a:c7:27:
f3:a4:8d:14:b4:52:c7:a1:0a:0a:a7:3a:f2:a4:8b:1d:51:d4:
22:1e:6d:e7:69:37:fc:11:eb:02:f1:28:b6:94:5e:17:0d:7a:
82:86:a6:23:c8:f4:59:b5:a0:d0:04:28:f3:3c:dd:55:1b:2e:
e3:8f:81:af:66:f2:76:c2:54:cc:9e:aa:2a:22:b6:48:51:4c:
44:15:35:5a:5f:ea:32:e3:e7:23:69:0a:3d:e7:05:86:2b:90:
4d:79:d2:2d:18:04:c6:d8:f9:21:22:cf:b0:29:6f:30:0d:83:
ee:4d:cc:9a:06:c1:06:da:3f:19:32:ca:d8:d6:ad:f3:b7:68:
22:6d:ec:34:59:88:cc:39:92:d0:80:ba:ef:a3:b5:0b:b6:d3:
79:31:4a:dc:b4:12:55:f8:46:17:da:a0:9e:20:76:8c:6a:45:
4d:0e:30:b6:9e:9f:e1:7a:2a:d1:8a:c2:35:73:64:e8:19:e5:
31:20:87:91:c7:81:c6:bd:21:19:a0:13:ac:f0:5a:62:24:1d:
59:b7:da:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 00:51:55 2025 by rpki-client