
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
File: vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft (raw, json)
Hash identifier: dR5w7ksexdS1zKy94gyllbOx0H9zZDPja1CYJLR3Uo4=
Subject key identifier: 4B:4D:CF:05:9D:C8:8C:A4:95:4F:AD:05:A5:09:57:93:7F:88:F8:2F
Authority key identifier: BD:85:31:4D:13:C7:82:C0:52:DD:02:2B:3E:4E:20:14:2B:64:17:0E
Certificate issuer: /CN=bd85314d13c782c052dd022b3e4e20142b64170e
Certificate serial: 0198808B6A2327D2EED9B70CAA3E4F15C8CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUxTRPHgsBS3QIrPk4gFCtkFw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
Manifest number: 11B0
Signing time: Wed 06 Aug 2025 18:01:16 +0000
Manifest this update: Wed 06 Aug 2025 18:01:16 +0000
Manifest next update: Thu 07 Aug 2025 18:01:16 +0000
Files and hashes: 1: 87DcvIoV9C57hb7DwzS0oT0QBdM.roa (hash: 1fwwbxC7tvmVRypNN1d4FXoCK3/5oiWQOQyukuAKNSE=)
2: vYUxTRPHgsBS3QIrPk4gFCtkFw4.crl (hash: u+xXR2RQa3mDDNEdvzCuCm5xcqIzLalL8qbU5LhEK+U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUxTRPHgsBS3QIrPk4gFCtkFw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 18:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:8b:6a:23:27:d2:ee:d9:b7:0c:aa:3e:4f:15:c8:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85314d13c782c052dd022b3e4e20142b64170e
Validity
Not Before: Aug 6 18:01:16 2025 GMT
Not After : Aug 7 18:01:16 2025 GMT
Subject: CN=4b4dcf059dc88ca4954fad05a50957937f88f82f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:da:ab:f2:4b:68:b4:9f:c0:15:2b:41:07:7b:
69:2a:4d:a1:11:ae:90:72:aa:48:31:05:a4:76:48:
97:9d:d8:57:cd:db:ab:7f:fd:c7:56:55:c4:19:bd:
1a:82:54:fa:91:bf:92:9c:2a:36:c3:67:a6:3d:c5:
97:eb:45:20:30:58:08:e4:9b:57:aa:a5:b7:69:2f:
d9:ea:25:e7:87:1c:23:8a:1a:96:3a:d2:bd:86:98:
7d:36:3e:6b:7b:48:2e:ef:5f:ac:d2:87:6b:a3:0d:
f1:63:41:1e:dc:d9:96:dd:78:c2:3d:d6:c8:41:92:
37:dc:64:52:07:4d:bd:de:f6:10:9e:1f:c6:42:d1:
65:98:bd:0a:92:fe:8d:75:7c:59:23:30:d1:3d:e6:
d7:5a:f1:4c:a7:35:47:16:20:9b:ce:37:45:7c:62:
e9:3a:34:aa:73:ef:a6:df:d7:0a:d6:5c:1b:c2:d9:
66:4d:9e:8d:2f:56:55:f8:4f:db:46:4e:57:51:f5:
7e:67:72:f7:0d:53:3c:b1:b9:36:fc:b6:a2:62:30:
3e:68:0b:b1:3a:ed:4c:3f:8e:74:47:d7:7f:df:c4:
16:97:08:a2:71:81:ed:a8:6f:43:9c:f0:b6:a6:a0:
a2:9c:02:0b:a3:1b:51:db:ac:05:bb:39:1a:39:c6:
86:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:4D:CF:05:9D:C8:8C:A4:95:4F:AD:05:A5:09:57:93:7F:88:F8:2F
X509v3 Authority Key Identifier:
keyid:BD:85:31:4D:13:C7:82:C0:52:DD:02:2B:3E:4E:20:14:2B:64:17:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUxTRPHgsBS3QIrPk4gFCtkFw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:2e:09:3d:ed:bb:9c:48:a3:a7:df:8f:55:c7:03:92:9b:1d:
16:8d:f3:37:a8:03:ae:77:56:99:26:2b:24:cd:f1:04:e7:25:
23:4f:5f:fa:6a:15:66:40:ef:07:38:7e:aa:6e:3e:8f:04:d2:
5d:e5:02:c0:3d:f4:45:f5:f5:5c:4c:76:46:2c:b5:cf:fe:ac:
e8:44:22:c7:3b:68:c5:9c:35:bf:df:91:ba:bd:d6:15:48:7e:
9a:a2:b3:1b:3a:4d:1c:ac:d8:a5:78:d7:44:7b:43:9d:ee:ca:
00:bc:da:a4:90:d2:09:b1:76:13:82:32:72:4a:67:c0:a0:42:
52:f4:62:20:74:41:01:ac:21:39:e4:fb:4b:1e:ac:c8:3d:64:
6d:61:c0:c4:11:39:69:9c:a2:9a:e3:b7:03:a7:71:2a:5b:06:
46:9d:60:b0:91:c7:23:9b:1a:2c:30:ef:3e:59:f5:c5:a8:84:
0c:86:23:12:38:cf:51:8f:94:cc:19:5e:f9:bb:a6:2f:9d:ba:
0f:c2:43:32:9d:ff:e9:a6:bf:0c:1e:1c:38:07:7e:9c:62:27:
38:5c:7d:77:c7:e3:96:34:12:55:63:e0:27:bf:33:7a:7f:73:
8f:03:9b:b1:b4:6f:6f:2b:70:b4:e0:a6:0f:62:fb:74:3a:14:
5d:30:2e:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAi2ojJ9Lu2bcMqj5PFcjNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkODUzMTRkMTNjNzgyYzA1MmRkMDIyYjNlNGUyMDE0MmI2
NDE3MGUwHhcNMjUwODA2MTgwMTE2WhcNMjUwODA3MTgwMTE2WjAzMTEwLwYDVQQD
Eyg0YjRkY2YwNTlkYzg4Y2E0OTU0ZmFkMDVhNTA5NTc5MzdmODhmODJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlNqr8ktotJ/AFStBB3tpKk2hEa6Q
cqpIMQWkdkiXndhXzdurf/3HVlXEGb0aglT6kb+SnCo2w2emPcWX60UgMFgI5JtX
qqW3aS/Z6iXnhxwjihqWOtK9hph9Nj5re0gu71+s0odrow3xY0Ee3NmW3XjCPdbI
QZI33GRSB0293vYQnh/GQtFlmL0Kkv6NdXxZIzDRPebXWvFMpzVHFiCbzjdFfGLp
OjSqc++m39cK1lwbwtlmTZ6NL1ZV+E/bRk5XUfV+Z3L3DVM8sbk2/LaiYjA+aAux
Ou1MP450R9d/38QWlwiicYHtqG9DnPC2pqCinAILoxtR26wFuzkaOcaGrQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEtNzwWdyIyklU+tBaUJV5N/iPgvMB8GA1UdIwQY
MBaAFL2FMU0Tx4LAUt0CKz5OIBQrZBcOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdllVeFRSUEhnc0JTM1FJclBrNGdGQ3RrRnc0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yy8wNTJkMzgtNjA4MC00ZTc5LThhNGIt
NjI1NTE1ZmY1OTQ0LzEvdllVeFRSUEhnc0JTM1FJclBrNGdGQ3RrRnc0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Yy8wNTJkMzgtNjA4MC00ZTc5LThhNGItNjI1NTE1ZmY1OTQ0
LzEvdllVeFRSUEhnc0JTM1FJclBrNGdGQ3RrRnc0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACS4JPe27
nEijp9+PVccDkpsdFo3zN6gDrndWmSYrJM3xBOclI09f+moVZkDvBzh+qm4+jwTS
XeUCwD30RfX1XEx2Riy1z/6s6EQixztoxZw1v9+Rur3WFUh+mqKzGzpNHKzYpXjX
RHtDne7KALzapJDSCbF2E4IyckpnwKBCUvRiIHRBAawhOeT7Sx6syD1kbWHAxBE5
aZyimuO3A6dxKlsGRp1gsJHHI5saLDDvPln1xaiEDIYjEjjPUY+UzBle+bumL526
D8JDMp3/6aa/DB4cOAd+nGInOFx9d8fjljQSVWPgJ78zen9zjwObsbRvbytwtOCm
D2L7dDoUXTAu6Q==
-----END CERTIFICATE-----
Generated at Thu Aug 7 01:13:03 2025 by rpki-client