Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
File: vSpaBrm0P86hiFQdMMbcNDCq85I.mft (raw, json)
Hash identifier: n6fGKWMMycRsrpji/CJF+phPfRDFrCoO2lpLSbN4Fu8=
Subject key identifier: 13:07:CE:1C:56:30:45:9F:04:23:8B:2B:98:63:E5:13:60:44:0D:97
Authority key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
Certificate issuer: /CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Certificate serial: 01988053EA18296CDC138C991FBD4BE9474E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
Manifest number: 10F2
Signing time: Wed 06 Aug 2025 17:00:39 +0000
Manifest this update: Wed 06 Aug 2025 17:00:39 +0000
Manifest next update: Thu 07 Aug 2025 17:00:39 +0000
Files and hashes: 1: dNOXWcyjBwUcXV5oIaNhLVVvSEU.roa (hash: 4Fft0psn/kwpjVEKZgVhKcfKwufV2SXuxRSuxxvAa+k=)
2: vSpaBrm0P86hiFQdMMbcNDCq85I.crl (hash: ppo1gyptf3GwR4hENbSybsAYlmr2Z9HU7U17alqfdb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 14:26:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:53:ea:18:29:6c:dc:13:8c:99:1f:bd:4b:e9:47:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Validity
Not Before: Aug 6 17:00:39 2025 GMT
Not After : Aug 7 17:00:39 2025 GMT
Subject: CN=1307ce1c5630459f04238b2b9863e51360440d97
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:3e:29:87:b1:23:32:3e:72:f8:dd:19:3e:1e:
70:ca:8e:50:29:7f:35:83:a6:a8:be:84:24:ef:f7:
c7:52:c1:2e:29:d8:97:07:2f:6a:dc:ad:9b:b9:a5:
dc:b9:b0:9c:41:f6:60:0d:c9:f1:bb:db:ef:00:7b:
87:4d:cc:41:a1:3f:4a:1c:58:7a:dc:62:d1:19:13:
47:47:e6:12:c0:f6:d8:9b:b6:35:91:a4:4e:46:0c:
1d:bc:34:02:1a:aa:df:11:4d:db:12:71:38:6a:f5:
96:64:34:68:00:79:71:f8:7b:81:d1:05:bc:b3:c8:
a3:1c:2c:35:a5:20:50:6f:76:fa:f9:1d:86:a0:9c:
12:e6:e0:33:f4:4d:c7:f1:07:90:2d:86:c5:52:2d:
8a:39:67:bd:dc:f5:b8:fd:6e:38:e3:e8:80:e2:db:
37:74:3d:7a:07:30:61:7c:af:c4:13:2a:66:11:bc:
3b:ef:19:42:43:df:7a:19:8e:a3:c3:c9:8a:5e:36:
b1:6d:fa:ba:da:f5:df:d0:1c:8a:5f:bd:4c:43:af:
2e:82:fd:7e:4c:6b:eb:6a:a1:09:fa:e1:39:1c:b6:
bb:70:25:ca:bf:41:0a:9a:08:e2:8d:8a:bd:f3:9f:
fa:46:b5:76:98:e0:15:50:6c:43:21:33:e4:6f:47:
2d:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:07:CE:1C:56:30:45:9F:04:23:8B:2B:98:63:E5:13:60:44:0D:97
X509v3 Authority Key Identifier:
keyid:BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:92:26:12:1d:bd:62:96:a6:62:7d:d7:bb:4b:a3:ae:2e:fc:
71:ea:40:d9:6d:05:88:33:be:aa:40:5c:d6:cd:60:37:96:c3:
50:70:1a:38:d8:c0:f8:ea:59:2e:c2:e2:7b:c0:bb:5f:0f:2c:
9a:1c:7c:fc:5f:95:f9:18:e8:50:39:24:8c:65:e0:ae:76:5b:
01:2b:91:13:45:d1:12:41:fd:4e:63:04:c6:d5:39:50:5f:69:
1e:1f:bd:00:89:e8:90:37:27:8c:5c:71:2e:05:20:9a:8b:9f:
23:19:1f:49:35:72:02:81:d8:55:22:7c:93:86:25:3a:5f:bd:
af:38:c5:a0:af:a5:fb:25:39:4d:21:eb:3d:e7:12:6a:cf:cb:
18:00:b7:13:96:f8:ce:7b:16:4f:06:09:e2:13:04:fd:4e:db:
c2:39:2f:b0:d0:41:c6:1c:e7:9a:28:09:bd:7f:07:9a:3a:d7:
73:da:62:75:67:82:e2:69:e6:fe:05:c4:8d:97:1b:fa:88:f8:
ab:5d:5a:99:ee:c8:cf:47:b6:6f:28:9b:b0:5e:a8:8a:ad:b8:
33:02:a1:95:73:9d:2b:6a:53:3b:3a:52:84:ba:07:52:2e:f4:
7b:73:8a:1b:b0:6e:a7:f0:16:42:89:ac:70:53:71:75:12:fd:
32:70:36:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 18:48:00 2025 by rpki-client