Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
File: vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft (raw, json)
Hash identifier: 2pAiPpqzw7kAb4zwciK8EtNLCl+ObDZhXdv1RmJ/Zas=
Subject key identifier: 91:41:1D:AF:FE:80:05:7E:4E:89:6F:22:7E:02:04:89:E3:BB:22:0C
Authority key identifier: BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
Certificate issuer: /CN=be722a99732c9c3cbc20b0a47292a823782603ac
Certificate serial: 019881D52F37F2FC94D0C8D2C678CA045A8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
Manifest number: 15AF
Signing time: Thu 07 Aug 2025 00:01:28 +0000
Manifest this update: Thu 07 Aug 2025 00:01:28 +0000
Manifest next update: Fri 08 Aug 2025 00:01:28 +0000
Files and hashes: 1: KEoMu2N6_T8O9ufaf0Y2clZ16n8.roa (hash: TtnWx5gcstoPtaU3BdfsPkG0EZi+JY/3eJmxv3P7PTM=)
2: vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl (hash: W7woxUASdHcu+a4+9qiaoZ4u/SVAWc0BJvjNeKwHgaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:d5:2f:37:f2:fc:94:d0:c8:d2:c6:78:ca:04:5a:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be722a99732c9c3cbc20b0a47292a823782603ac
Validity
Not Before: Aug 7 00:01:28 2025 GMT
Not After : Aug 8 00:01:28 2025 GMT
Subject: CN=91411daffe80057e4e896f227e020489e3bb220c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:36:20:6f:e7:fb:98:67:da:0b:fa:78:9b:7e:
b1:33:8e:13:89:74:e6:4f:bc:c1:3c:78:ab:cf:b2:
58:0c:31:cd:52:de:80:bc:22:85:5a:78:bc:86:cd:
cf:f8:f3:c5:80:98:e0:74:ad:63:98:4f:ab:48:78:
91:e6:14:f8:19:08:98:f1:19:df:7e:f2:a9:5e:c8:
e5:f0:7c:f8:59:3b:8c:d0:74:d8:62:86:3b:42:fb:
17:e3:06:98:f3:75:1b:da:97:e3:b8:2d:b0:ad:49:
2a:a2:2b:6e:e6:ca:90:ba:d3:5b:0f:61:e5:1f:41:
b9:88:2c:4b:2f:96:74:70:82:92:a5:87:78:cc:6b:
5d:67:f0:69:6f:de:e4:bc:70:12:9f:a5:45:6a:06:
ca:e9:d6:0b:a5:ea:f1:99:b1:f4:88:a5:0d:ca:ed:
a7:0f:41:78:1d:54:24:b1:fd:87:bd:0f:22:bf:d3:
97:42:09:99:3e:be:d4:08:1c:6f:6d:b9:ad:8a:2c:
e1:3d:bc:2c:be:dd:d5:3f:e6:a9:6a:8e:a4:b9:05:
ab:77:83:32:d9:53:2b:df:e1:ac:07:ee:40:38:4e:
f5:64:52:85:92:68:a7:4f:06:1e:37:15:07:ae:8d:
22:aa:ef:4e:a4:11:86:aa:3b:86:8a:71:9c:4c:b5:
c7:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:41:1D:AF:FE:80:05:7E:4E:89:6F:22:7E:02:04:89:E3:BB:22:0C
X509v3 Authority Key Identifier:
keyid:BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:d6:e7:56:d2:21:c3:53:1e:c3:20:85:91:41:a3:f6:ad:d8:
9e:90:e8:ba:71:28:d9:67:ae:bb:61:9a:14:dc:6e:42:53:5a:
37:43:c7:90:4a:46:11:09:32:d3:52:c7:5d:31:1f:d2:f6:15:
13:73:98:ae:74:a8:cf:87:b5:50:9f:6e:c2:6a:70:95:7c:c8:
35:93:87:89:99:30:5a:47:a9:8e:d1:5c:7a:14:03:bf:cc:fb:
9d:db:9b:4f:7f:64:8b:e0:c3:28:be:80:8c:4b:91:4c:ba:87:
7d:be:4c:bb:55:dd:77:d1:0e:6b:61:01:32:b7:8a:db:07:73:
eb:43:5f:b9:85:dc:14:b3:13:9d:56:00:da:be:d0:16:23:4b:
67:0b:21:c4:5e:10:13:7b:14:55:91:73:d7:fc:f9:b4:a2:b1:
e7:9e:89:8f:ac:02:3e:e0:c1:32:d1:1f:6d:c1:af:83:99:96:
bd:8c:32:01:9a:b9:7d:86:6a:56:4d:67:e4:e5:63:44:37:84:
2f:f2:32:ab:a8:47:27:b0:ef:ed:b3:85:54:1d:86:1d:90:c5:
7e:10:d9:e8:ed:a3:98:36:a5:7a:19:88:11:e9:fe:40:51:7b:
2a:34:85:14:21:56:a1:70:74:44:24:7c:6b:e1:92:c5:2a:f6:
48:cd:3d:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 03:52:55 2025 by rpki-client