Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: f9NkFYUTtRUKvMN64KT6zDKGtyLhYqxTrg0BqHMUgR4=
Subject key identifier: 3E:76:32:FB:4C:7C:12:7F:FA:9C:6B:A1:77:F6:CB:71:65:63:21:76
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 019A5307C3048C4A8FCFE5B66E2E634EA323
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 0504
Signing time: Wed 05 Nov 2025 08:00:08 +0000
Manifest this update: Wed 05 Nov 2025 08:00:08 +0000
Manifest next update: Thu 06 Nov 2025 08:00:08 +0000
Files and hashes: 1: O7wVhYp5aN-EHbBcAt5o4QIzfyg.roa (hash: 1pH3pLqu6QshZ8HwYPfHNSe335AW5zx9SMrVG3Y2btc=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: vUMmXahKs82gZVtMZNQ8APihshpMCHkoKuQkQdRFs+g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 08:00:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:53:07:c3:04:8c:4a:8f:cf:e5:b6:6e:2e:63:4e:a3:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: Nov 5 08:00:08 2025 GMT
Not After : Nov 6 08:00:08 2025 GMT
Subject: CN=3e7632fb4c7c127ffa9c6ba177f6cb7165632176
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:1e:3e:bc:ec:bd:bf:cc:ec:a9:ac:ec:15:3e:
01:a2:95:a8:10:83:2b:40:af:86:71:22:1b:df:91:
e5:8e:75:a1:4d:d5:d7:4e:19:78:c8:c3:d9:73:06:
90:f7:b7:03:65:a7:e3:9a:30:08:4a:18:f2:46:6b:
c5:dc:8f:c0:74:b6:30:58:8c:1e:ed:3e:40:61:0e:
76:f9:a3:f9:56:f8:16:b2:dc:ca:e6:44:40:ec:7a:
4c:7a:3c:7d:72:85:48:dc:44:3d:3a:55:29:8d:51:
2e:6a:42:9c:68:e6:fc:87:cf:d0:5e:12:1e:84:19:
75:fa:55:3b:c3:f5:72:83:e6:3f:5a:02:f0:7e:17:
b0:50:e2:9d:2e:bd:5c:08:08:7b:47:52:9a:c3:c0:
46:fa:cd:90:5d:2f:03:2b:40:63:a7:4a:27:c3:e2:
ff:46:e3:7e:d8:c2:e4:2e:9c:ac:fa:07:48:2d:d2:
58:e7:2c:6d:c3:d5:1d:64:11:38:55:7f:4b:fa:ee:
77:49:aa:ef:43:aa:1e:81:c7:d1:43:11:98:d4:18:
e3:be:9b:29:88:df:61:d8:43:c6:03:d6:47:e4:59:
74:ff:19:0b:1e:85:7c:c6:a2:57:f0:40:bd:ea:3b:
bf:33:94:25:8f:f0:1a:a3:d7:ca:94:a6:09:25:aa:
e2:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:76:32:FB:4C:7C:12:7F:FA:9C:6B:A1:77:F6:CB:71:65:63:21:76
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:57:06:c2:d2:d0:6d:1c:cd:20:49:5e:c6:a5:bb:75:f6:6a:
59:8a:a9:36:0c:34:ef:b4:a0:ee:9b:2c:a2:09:25:27:fd:32:
fa:07:f4:4c:3f:b8:45:e4:76:ae:75:40:79:52:6a:72:fa:7d:
8d:6f:92:81:bc:11:49:f2:89:4c:72:60:e8:c1:b5:7c:93:73:
0f:b0:85:e2:44:08:83:74:ea:10:26:4f:35:ea:40:bc:c7:89:
17:fb:11:3f:54:22:ae:e8:47:01:4a:52:34:9a:96:d4:32:3d:
8e:2e:b5:da:7a:40:ad:25:90:27:a6:d5:25:8d:17:02:fe:1c:
8e:b9:0e:a5:17:4c:72:0c:e9:ce:57:18:1f:10:99:65:82:13:
e5:82:f8:26:2d:94:fa:7a:a1:c6:07:a6:8f:a9:f2:69:81:91:
62:08:c0:aa:99:3b:a1:dd:86:cd:f2:77:58:15:87:9f:6f:92:
e2:b6:87:ea:20:1d:62:0e:5b:0d:fd:22:e8:3d:85:81:35:8e:
7a:8a:cc:53:1d:1e:3f:0d:0a:3f:e1:1b:e8:01:6f:ec:95:66:
83:41:37:f9:0e:d4:1d:2b:63:8a:a0:2b:a9:7a:d0:e4:94:bb:
9d:79:88:12:3d:e0:85:f8:94:84:af:ab:20:ea:bc:2e:cd:a6:
1c:ac:29:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 13:47:32 2025 by rpki-client