Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
File: vklD9SA9Q0YKE61OqdfVuVDGE80.mft (raw, json)
Hash identifier: SrR1WCwa9eyWIvxwLZFpCcr/ZadHgxpOiEHzB55w7Ec=
Subject key identifier: 28:97:02:6C:38:65:22:1F:84:9E:4C:36:4E:66:59:6F:18:E5:EB:CD
Authority key identifier: BE:49:43:F5:20:3D:43:46:0A:13:AD:4E:A9:D7:D5:B9:50:C6:13:CD
Certificate issuer: /CN=be4943f5203d43460a13ad4ea9d7d5b950c613cd
Certificate serial: 019A4E4F94D58D725447C9CE741A81A5DF71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
Manifest number: 15F5
Signing time: Tue 04 Nov 2025 10:00:29 +0000
Manifest this update: Tue 04 Nov 2025 10:00:29 +0000
Manifest next update: Wed 05 Nov 2025 10:00:29 +0000
Files and hashes: 1: FvmWK8AMx-teHQ5tWkhhyLwCTdQ.roa (hash: coWDehO4MQ177+hdG6n28lrng5GzRH0clwFKkBo/jyg=)
2: P0eLHT9-M-aTFtL_3Zf0a5B6Ndg.roa (hash: uyQciIXo2hsIiWCjmOsDyTK0I4LR9Xab2ALuXJDMpzQ=)
3: s1Gqcb4cma0dzStLOOm8HvEO5jQ.roa (hash: NwYmvG8onNhwCfDmhQjAdYoUGMe+Y6N54avr4BG3ekE=)
4: vklD9SA9Q0YKE61OqdfVuVDGE80.crl (hash: sGLHO8NuuEfu0tA+rLTXzqmAfp+UGapOom9qPSvb+JQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:94:d5:8d:72:54:47:c9:ce:74:1a:81:a5:df:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be4943f5203d43460a13ad4ea9d7d5b950c613cd
Validity
Not Before: Nov 4 10:00:29 2025 GMT
Not After : Nov 5 10:00:29 2025 GMT
Subject: CN=2897026c3865221f849e4c364e66596f18e5ebcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:58:8a:a7:11:aa:08:ee:a9:18:63:c1:c6:28:
da:9d:3e:e8:f4:bd:5e:4f:cc:ae:2e:e3:73:b5:b0:
13:14:71:92:59:64:10:80:37:96:a7:97:eb:f4:98:
b7:6f:69:66:7f:97:5f:74:9d:b8:43:b3:47:b5:d7:
8c:44:40:60:ea:99:44:bf:15:94:c4:44:c2:7c:8e:
93:3a:de:60:77:c5:06:6f:cb:39:21:df:19:04:e7:
90:90:a5:60:27:a8:f1:f4:5a:6c:ec:c1:96:c0:ff:
14:c8:88:05:23:33:41:3d:84:0b:d4:94:5b:71:4b:
1a:de:a6:08:2f:0d:06:32:34:d1:81:cb:76:3d:8c:
ed:c9:ce:11:69:19:16:02:5c:da:7c:b8:d2:8d:d3:
d5:24:0b:14:7a:51:af:ef:cf:23:74:67:94:5a:d6:
63:0b:a6:f9:b5:c4:90:87:51:c0:1e:37:f9:b7:ac:
9b:57:27:02:eb:25:68:65:57:9f:0d:51:19:e0:85:
00:f3:2b:49:47:66:48:cf:c6:a9:d7:c1:b2:2d:54:
97:58:47:9c:a8:a6:78:e7:e0:36:e6:bc:24:67:11:
dc:2e:7b:04:06:2d:0c:e1:df:9f:3c:09:cc:d1:62:
c9:87:a1:69:75:99:ae:fd:3c:9e:e9:b6:f5:c4:d6:
55:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:97:02:6C:38:65:22:1F:84:9E:4C:36:4E:66:59:6F:18:E5:EB:CD
X509v3 Authority Key Identifier:
keyid:BE:49:43:F5:20:3D:43:46:0A:13:AD:4E:A9:D7:D5:B9:50:C6:13:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:54:54:cb:83:20:fc:dd:15:4b:93:a3:1e:82:dc:fe:64:56:
e7:53:ac:bd:09:23:82:bb:fc:e6:a6:37:e7:7c:d1:eb:f4:e5:
92:41:c0:35:5c:db:44:05:e1:4a:f6:f7:1e:b1:fc:06:52:24:
d4:e4:22:11:e6:c2:35:24:77:c8:ff:af:ba:56:d2:f3:0d:de:
5f:36:39:e6:dc:e6:8b:7c:e0:4e:fd:7d:34:51:04:71:ef:74:
6d:9d:cb:b6:53:87:25:35:ef:aa:7a:71:f4:30:f0:3a:0c:d6:
2b:86:ec:01:5e:a3:5a:c1:14:95:16:58:e3:66:38:c8:05:f5:
80:5c:52:ad:b8:ac:d1:0c:26:d3:4e:7d:7a:f1:8d:b4:c3:f2:
6c:47:3b:e4:bf:07:21:82:d7:73:7b:2d:eb:13:50:0f:5c:be:
f5:72:ee:31:33:ad:cd:26:a7:42:d0:3b:0b:0d:82:6b:31:11:
d2:25:20:e5:a5:46:ee:87:ff:43:50:a5:5c:c2:ad:d5:c9:24:
18:d2:5b:cc:f3:1e:b2:9b:aa:4f:07:82:ea:19:b4:3c:31:50:
b4:c3:62:4b:52:3d:64:1a:2f:e3:d2:f5:ef:c4:8e:35:68:93:
97:a7:ce:d3:04:26:49:6d:92:21:37:ef:44:ac:92:1a:66:58:
21:95:b1:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:05:53 2025 by rpki-client