
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
File: vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json)
Hash identifier: oQNALl5bVt/2AaXqnJ1NGgNIZBtMRrJp57q9LVVwnuQ=
Subject key identifier: 36:17:A0:15:FA:95:53:29:9E:D1:E7:7D:B8:3B:1F:7C:BF:25:44:2F
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial: 0198925A4BCA850AE6E819664EB40BEF7F4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
Manifest number: 14FF
Signing time: Sun 10 Aug 2025 05:00:47 +0000
Manifest this update: Sun 10 Aug 2025 05:00:47 +0000
Manifest next update: Mon 11 Aug 2025 05:00:47 +0000
Files and hashes: 1: rEdLOhgJ5xMWvLwmv0wizm-cOW0.roa (hash: 5KEvRv7KqMLhpYGvFA0tU5bp6PFE1qlP3ELvibmeSX4=)
2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: A79Stj+9vWJFiorMBr3H6CcLsGCbcaqbkyWeJav4Knc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 05:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:5a:4b:ca:85:0a:e6:e8:19:66:4e:b4:0b:ef:7f:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Validity
Not Before: Aug 10 05:00:47 2025 GMT
Not After : Aug 11 05:00:47 2025 GMT
Subject: CN=3617a015fa9553299ed1e77db83b1f7cbf25442f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b9:49:ce:31:ee:fc:ea:e7:da:a7:7c:65:fe:
02:0c:6d:ca:85:0e:fa:85:31:40:a2:a3:8d:95:74:
4c:ee:b1:f1:06:e6:05:76:ad:8b:6c:4f:a1:73:a4:
4c:a9:b0:0d:7b:4f:c9:6e:86:f3:16:20:c8:a9:0a:
f9:d8:d7:d9:51:24:18:0b:78:25:ec:3a:b2:89:a5:
da:d3:0c:0f:69:45:6b:c8:f6:72:df:c5:07:57:10:
39:cb:73:7d:cf:8a:6c:5d:db:e1:d4:a0:cc:54:fd:
8f:5f:57:b4:f6:81:37:02:06:e0:6d:a0:cd:c5:af:
bd:2c:99:2c:82:46:b8:57:16:ae:94:5b:a0:ed:05:
f6:a1:34:8b:47:0d:de:e4:a0:d4:8e:5e:b6:0c:cb:
b8:8a:01:af:6d:ec:48:07:b4:98:c9:d8:77:ec:ee:
95:b7:af:5f:1c:26:4d:a0:7f:06:22:77:b4:18:93:
91:a5:48:d8:32:96:1c:cb:2b:88:f5:21:59:d0:fc:
7e:e1:ec:83:b6:49:af:0c:aa:78:68:67:36:cc:91:
64:3f:fd:19:84:ed:1d:85:f3:42:81:2c:8b:31:e6:
e2:cf:2d:1b:ca:93:6b:55:98:b1:8a:72:3e:4a:81:
8d:5e:a6:62:5c:0b:22:33:b6:22:30:9c:f0:35:26:
24:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:17:A0:15:FA:95:53:29:9E:D1:E7:7D:B8:3B:1F:7C:BF:25:44:2F
X509v3 Authority Key Identifier:
keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:98:e2:fc:31:bc:4d:87:13:f0:1c:a6:cf:df:85:b3:d5:be:
6d:cc:38:93:c7:fd:0f:c9:c6:9a:4e:72:8e:76:6d:fa:ad:eb:
1b:32:cf:14:60:d4:44:8e:88:75:4f:63:b8:53:e6:ce:23:e2:
50:5d:c6:8d:a4:94:5d:22:95:96:7e:0c:3a:56:d6:d0:11:a8:
f9:54:27:cd:da:c7:c3:b1:15:d7:a6:c1:66:db:7a:83:3a:df:
04:33:6d:7a:66:75:6f:0b:67:e2:5e:e3:4e:1f:12:07:2e:86:
19:ba:0e:78:fe:cc:cb:da:93:d2:dc:fb:fd:d3:62:92:dd:5c:
1b:e1:ce:8d:86:f9:c6:74:d1:0a:3b:74:6c:26:3d:c5:12:9c:
4e:c5:48:b0:34:fb:59:b1:8a:32:a7:e0:06:90:58:34:73:27:
8d:34:34:1e:9e:86:4f:fc:6b:1b:0d:58:9c:7c:7a:74:d0:e5:
d8:eb:7e:9c:c7:21:1e:04:d6:c8:a4:3b:3c:f8:27:7e:ae:73:
de:30:82:9f:e7:39:11:60:95:87:2d:a9:e7:b9:c1:7e:e6:43:
7a:aa:b9:d7:2d:24:39:56:ab:ba:5f:76:3c:14:56:0e:7e:62:
08:08:c3:ff:bc:2b:db:85:42:d8:99:f9:45:ba:f2:b4:e8:9b:
fa:8f:bb:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 13:48:30 2025 by rpki-client