Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
File: vPI0wEREFriFL7NHh4rTdtCBjWQ.mft (raw, json)
Hash identifier: fy/T+lqJaF4vo6fmL7NfCkl+hIOkw2VE8iFarCxzdrA=
Subject key identifier: CA:83:92:04:17:0C:9B:31:96:4A:3D:6C:7F:79:64:BA:B0:5E:1A:2F
Authority key identifier: BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64
Certificate issuer: /CN=bcf234c0444416b8852fb347878ad376d0818d64
Certificate serial: 019A522C88FA80A47FF44E9B5351D10E9B9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
Manifest number: 0A99
Signing time: Wed 05 Nov 2025 04:00:41 +0000
Manifest this update: Wed 05 Nov 2025 04:00:41 +0000
Manifest next update: Thu 06 Nov 2025 04:00:41 +0000
Files and hashes: 1: vPI0wEREFriFL7NHh4rTdtCBjWQ.crl (hash: crtX8euVivQ1TQX517vbvzBMvI7WLPE5q1J0weWg9hg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:88:fa:80:a4:7f:f4:4e:9b:53:51:d1:0e:9b:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcf234c0444416b8852fb347878ad376d0818d64
Validity
Not Before: Nov 5 04:00:41 2025 GMT
Not After : Nov 6 04:00:41 2025 GMT
Subject: CN=ca839204170c9b31964a3d6c7f7964bab05e1a2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:f2:e0:2a:fa:b3:ed:b2:8f:62:c7:36:fd:5b:
84:91:45:7b:ab:39:8b:46:3a:a3:77:a6:1c:85:72:
44:6f:09:7b:9b:76:69:a6:12:78:d5:5d:c8:75:66:
88:5f:af:85:5f:8f:d4:a9:a5:25:73:57:1a:c8:3c:
b7:07:07:db:f4:e5:ed:2e:44:13:08:f1:a5:01:f2:
da:05:4c:e5:03:80:08:94:de:0d:7d:f7:49:7a:47:
ef:70:9d:ce:33:9f:07:06:e6:79:84:c2:85:2a:c3:
e3:f3:41:7c:13:6a:52:6d:f7:92:83:d6:50:31:99:
07:bc:c7:fb:12:66:be:e1:b4:15:97:4a:b3:5c:a2:
ae:42:b6:87:0b:60:91:97:88:73:25:13:c1:9a:92:
d5:b8:a7:47:5c:ff:c6:72:0b:fb:ed:92:ae:35:86:
ac:93:b1:74:fa:9e:e6:e3:e6:24:f4:4d:3e:bd:28:
3b:c0:90:0a:fc:4a:66:99:7d:a4:1c:03:16:75:f1:
a8:75:6d:3d:2b:10:89:c0:23:3a:12:4c:47:93:7d:
d5:e1:5c:f6:45:92:97:cb:ae:8c:58:a5:89:16:e0:
b7:d2:95:1c:a8:f6:dc:1d:74:b3:9d:3e:a8:8e:76:
74:0b:ae:5f:24:fd:8f:85:70:cc:cc:5e:2c:dc:3a:
69:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:83:92:04:17:0C:9B:31:96:4A:3D:6C:7F:79:64:BA:B0:5E:1A:2F
X509v3 Authority Key Identifier:
keyid:BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:07:7e:7c:bf:93:d1:b9:a2:f8:32:ea:21:32:01:56:43:6c:
83:43:6e:66:2a:09:56:c5:0e:22:2e:bb:13:6e:59:4e:f9:45:
d0:d3:bd:0a:7a:75:c0:41:43:64:38:25:3c:7a:6f:0a:a6:1f:
99:31:f4:c8:fc:65:d6:6e:8b:67:55:49:42:4e:2c:42:f4:69:
a8:b0:f1:18:83:77:a1:fe:67:cb:ba:52:6d:06:5f:56:fd:6e:
58:be:b4:b0:3a:f4:2f:57:ea:6e:f5:cd:e5:f1:2b:2d:e5:77:
79:0e:88:17:73:59:0a:2d:63:8f:b0:e6:ee:69:f6:23:d4:59:
fe:92:b2:8d:2d:cd:ee:4a:6c:c9:99:80:0a:cb:9a:38:3b:e7:
37:8b:d0:52:0d:92:27:b6:1a:0b:21:34:fb:fc:14:4f:d2:26:
89:ad:9a:72:dc:e2:ae:ff:05:ec:35:2a:41:33:10:9c:d3:2f:
e0:03:af:70:b7:46:cb:a8:56:4e:22:b8:f2:e8:e9:98:19:c9:
90:3a:d7:e4:e2:de:59:11:63:63:44:33:ff:ea:e4:c1:ed:73:
a5:84:29:15:a8:07:16:b0:45:4a:14:29:65:a1:f9:81:23:fd:
df:e7:bb:40:9a:21:93:df:f0:0e:fa:d7:0d:25:f5:db:58:81:
57:c7:28:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 07:52:23 2025 by rpki-client