Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: l/qb3LrHKAztBW8kVtPkJWEaoEUtn5dQSjfSJKCLq2s=
Subject key identifier: 3F:0B:E9:20:A8:45:84:69:67:0E:D0:71:D7:5E:16:51:38:F3:ED:66
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 01988B45CD650E76F719977E89F3F9FD3589
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 0418
Signing time: Fri 08 Aug 2025 20:01:04 +0000
Manifest this update: Fri 08 Aug 2025 20:01:04 +0000
Manifest next update: Sat 09 Aug 2025 20:01:04 +0000
Files and hashes: 1: O7wVhYp5aN-EHbBcAt5o4QIzfyg.roa (hash: 1pH3pLqu6QshZ8HwYPfHNSe335AW5zx9SMrVG3Y2btc=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: CrOxfVty2pnSh7nuXv6WUR91hKRAcDm4a/b0CD+M9ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 20:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8b:45:cd:65:0e:76:f7:19:97:7e:89:f3:f9:fd:35:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: Aug 8 20:01:04 2025 GMT
Not After : Aug 9 20:01:04 2025 GMT
Subject: CN=3f0be920a8458469670ed071d75e165138f3ed66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:af:0a:fc:56:94:25:86:49:be:fb:f7:3c:e7:
7c:ae:16:65:b9:3a:d5:26:f7:5e:2e:35:26:f8:ee:
c4:62:1f:c0:fd:d2:13:76:96:09:5a:cf:32:08:a1:
25:a6:78:d6:03:90:33:03:bb:a7:ac:9c:34:6d:4f:
d0:cf:b2:b8:41:35:bd:89:93:7b:1e:90:d0:06:db:
40:68:13:6f:f4:48:d1:c7:69:c8:56:44:2c:ea:60:
54:7f:19:c6:f6:8c:c4:93:9c:41:02:b9:66:8b:4e:
a0:da:45:5a:e1:25:76:6b:e2:e5:fc:0e:62:4d:53:
16:60:89:47:8d:fb:2d:6e:04:1e:6f:31:87:7c:03:
c6:3d:19:ef:7b:7f:48:76:ec:5b:22:a1:85:ac:07:
63:cf:87:95:9a:ec:08:fb:31:42:5e:5d:63:ca:77:
50:d3:be:fe:88:a3:64:2b:8a:36:5c:16:b4:c8:4d:
fa:5f:26:10:7f:f1:9a:aa:02:a2:3a:5d:ca:23:0e:
22:41:b8:27:61:c8:37:32:cf:92:ef:6a:be:d1:c5:
62:65:45:e2:34:9a:7b:cd:4a:ad:42:27:f5:b8:c7:
d0:4e:95:37:73:f0:d5:64:33:8c:01:06:c0:55:37:
9f:09:86:6d:90:7e:72:80:e3:54:9f:ab:65:24:b3:
40:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:0B:E9:20:A8:45:84:69:67:0E:D0:71:D7:5E:16:51:38:F3:ED:66
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:c2:52:9d:66:99:55:fe:1a:fa:54:84:8f:46:a2:31:71:bc:
f5:7c:ca:5d:14:82:9c:7b:1b:f5:b1:c1:02:b8:8f:98:4e:a2:
aa:9d:11:a9:0c:fa:bf:e8:18:b9:51:6e:62:09:25:ac:b5:4a:
d0:97:c4:cd:6d:24:b5:29:a4:6e:37:eb:df:67:e0:cf:d8:0b:
f1:b0:1d:25:46:53:60:0c:00:2f:1c:90:70:27:e1:5f:9c:3d:
ec:7c:e6:2a:59:32:e3:75:cc:be:a5:e6:8e:fd:fa:33:36:cf:
31:d1:9f:9c:18:92:24:4d:b5:c9:c2:fc:00:a6:b7:1e:80:6a:
fb:f5:1e:00:3f:6a:b5:58:dc:24:fd:a5:24:fe:be:ac:f1:ce:
27:4d:18:0c:36:2a:3b:26:6c:28:59:12:e4:c8:2e:89:c0:a4:
3a:ad:22:23:94:d3:c1:56:39:cb:66:95:2d:3c:1c:e6:31:46:
b9:d9:51:48:c5:e0:9c:75:87:ac:86:01:9a:22:76:c3:92:d8:
8b:13:d1:c1:c5:2f:47:67:9f:2e:cd:a7:a3:7c:5b:79:31:3f:
6c:b5:fd:fc:2a:ab:18:6e:1b:37:02:de:89:b8:5c:9d:71:0f:
6c:77:9d:c7:19:83:84:a6:c0:23:7b:f6:10:d6:87:e8:dc:0f:
6a:30:74:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 01:07:34 2025 by rpki-client