Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: um8dDeLbPvy3AgSHKQTjY2+XcRASoVR12l1bQwK+TfI=
Subject key identifier: 3D:E9:1D:B0:FE:7F:B4:F7:B4:11:80:35:68:DD:04:75:78:E7:96:5F
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 019873E358FABBE47A5006AB96A3404A3D59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0941
Signing time: Mon 04 Aug 2025 07:02:15 +0000
Manifest this update: Mon 04 Aug 2025 07:02:15 +0000
Manifest next update: Tue 05 Aug 2025 07:02:15 +0000
Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: MbdM1yJj3eFAQ/1rELh4xKSbrsQ6O7M4BEVrTYLfMCk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:02:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:58:fa:bb:e4:7a:50:06:ab:96:a3:40:4a:3d:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Aug 4 07:02:15 2025 GMT
Not After : Aug 5 07:02:15 2025 GMT
Subject: CN=3de91db0fe7fb4f7b411803568dd047578e7965f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:24:8f:8f:df:21:99:88:f1:a9:e1:fb:b5:4a:
6d:39:88:7a:b1:78:c6:f8:85:56:d5:b6:07:d2:c8:
6a:a5:42:4f:8e:47:25:83:c9:fd:9b:44:68:7a:ca:
58:cb:b5:f7:e0:29:fd:64:f2:4c:f2:f1:61:b3:03:
72:35:8c:3b:91:b3:cb:28:0f:6a:0e:7d:c8:27:81:
3b:70:4d:2c:37:2c:8f:17:da:00:e5:e1:02:3c:8e:
df:6d:e0:3c:e7:19:a4:3f:6f:65:f1:c7:32:89:07:
af:0b:e2:b5:ec:ec:dc:44:32:3d:f8:b0:f1:6d:cb:
cd:f5:2b:e2:88:9f:72:03:6c:27:81:26:13:b0:3d:
fc:f3:5e:3e:22:7e:f0:47:53:72:79:d1:7c:32:09:
49:b2:02:b0:c3:25:60:06:0a:27:86:80:21:30:7e:
1b:47:ee:be:b5:7b:c7:70:32:b0:26:0b:fb:81:21:
69:1a:f9:6a:d1:9c:41:7d:30:ca:31:91:8a:d1:2b:
35:15:1a:1a:b8:2b:9c:7c:54:9e:14:53:d6:64:b1:
a8:0e:76:9e:26:90:69:a5:70:2e:54:df:17:6b:5e:
69:6a:c4:a6:1a:7b:be:4f:8e:59:61:d9:27:3a:26:
62:5e:fc:0f:27:a1:61:92:2e:95:c4:b1:22:22:a1:
11:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E9:1D:B0:FE:7F:B4:F7:B4:11:80:35:68:DD:04:75:78:E7:96:5F
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:c7:43:89:34:29:89:f7:27:bb:5e:4a:4c:68:38:c8:aa:32:
10:f2:2d:54:54:46:73:b1:d5:9a:d6:f8:55:a0:14:e7:65:ff:
e0:99:0f:b7:60:b5:17:68:a1:01:4f:1e:1d:d7:df:ea:a4:9c:
a3:d2:8f:b9:9f:dd:1b:54:14:43:77:ef:da:5b:ec:b5:d7:93:
85:bd:16:dc:1f:d4:39:5f:cb:84:35:67:b8:0a:d4:56:9e:1b:
e2:e3:d9:93:72:9e:c4:10:fd:5f:b3:2c:87:02:25:2f:74:fa:
f7:6a:5e:5f:1a:bd:20:5f:0b:57:90:ae:c4:5f:8f:6e:4f:ee:
5a:eb:9f:a1:4d:f1:f7:7a:ab:3b:28:b4:1c:78:05:82:2f:1f:
6c:95:73:3b:f0:00:8f:e2:9b:37:29:7d:99:4c:9a:e0:a9:37:
a3:bf:05:9d:c6:67:dc:71:e2:10:d5:a3:88:cc:88:9f:cb:58:
81:d9:51:fb:ea:4d:b4:35:93:51:a5:14:e1:59:0c:6d:64:d5:
94:a8:0e:c2:6f:71:20:c2:59:4d:2e:09:fc:05:c9:ec:a8:a9:
de:02:f7:56:af:b5:52:50:32:5b:81:5e:ee:fc:b3:2f:c1:96:
61:e9:e7:1a:39:2f:68:7b:cd:79:2a:a9:7c:2d:12:56:44:da:
dc:67:17:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 15:37:44 2025 by rpki-client