Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
File: vGNYdq8cfvgkEbQEpw2It5FlCfY.mft (raw, json)
Hash identifier: BrS+7C4OIeJ13CcFEOkSEBr0Ja5xvSL9DaBCNzGkvWI=
Subject key identifier: 25:A2:74:53:83:03:B9:48:0D:40:61:5A:B3:92:13:09:72:14:65:4C
Authority key identifier: BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6
Certificate issuer: /CN=bc635876af1c7ef82411b404a70d88b7916509f6
Certificate serial: 019873E2A08B1101E797C40B6D34232F0554
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
Manifest number: 0556
Signing time: Mon 04 Aug 2025 07:01:28 +0000
Manifest this update: Mon 04 Aug 2025 07:01:28 +0000
Manifest next update: Tue 05 Aug 2025 07:01:28 +0000
Files and hashes: 1: LSy4pwlxx6ifbllGQJDj8D7o8bU.roa (hash: VlWSPvQ7mW3Gy9fHD3zUtzLx6zn5FCR5wnd8Mk9PMXI=)
2: vGNYdq8cfvgkEbQEpw2It5FlCfY.crl (hash: lUGBw6QW2F2RB4BYKJojlrWuwwxabY8SySoXSrOGbQ0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:a0:8b:11:01:e7:97:c4:0b:6d:34:23:2f:05:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc635876af1c7ef82411b404a70d88b7916509f6
Validity
Not Before: Aug 4 07:01:28 2025 GMT
Not After : Aug 5 07:01:28 2025 GMT
Subject: CN=25a274538303b9480d40615ab39213097214654c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:c0:6d:92:81:8a:31:6a:c7:c0:87:62:81:0a:
55:83:44:2a:35:a5:46:25:9f:bb:c0:90:03:d2:f2:
a9:df:0c:8e:eb:d3:a7:cf:ae:e9:f9:67:34:87:22:
75:8b:ab:25:0f:3e:9a:b4:53:5d:9d:99:2d:d1:ab:
a7:de:11:59:3b:d2:c4:dd:bd:87:a6:01:7f:8d:18:
d0:d8:81:49:bb:8a:49:c4:b2:56:f8:78:dc:c3:c4:
a9:0f:3a:23:a6:24:86:24:ac:3f:36:6e:95:b1:23:
bd:24:5f:fb:96:ae:d8:9c:0e:a6:67:49:71:bc:3c:
06:df:42:d9:d7:8b:92:cf:61:8c:fc:70:9a:9f:cc:
f1:bb:13:d4:cd:db:08:30:68:20:29:1e:b0:8b:29:
d8:1d:e9:4f:37:7a:8d:ea:4c:1d:c4:c6:ec:1a:7f:
83:ea:eb:e8:24:ba:e7:80:1e:d3:89:52:b5:42:87:
70:68:2e:ed:8c:9f:5a:65:26:22:ab:8d:97:9e:67:
6a:b2:b8:14:09:f4:90:44:19:ea:68:2f:2c:64:e4:
ec:e5:1c:ac:bf:e7:32:79:d9:5b:a6:80:28:04:a5:
a0:7e:0c:54:09:94:59:5f:7c:0b:c2:9b:76:a7:e8:
f9:29:86:40:90:71:f4:4a:cb:f7:18:24:53:45:05:
49:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:A2:74:53:83:03:B9:48:0D:40:61:5A:B3:92:13:09:72:14:65:4C
X509v3 Authority Key Identifier:
keyid:BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:f9:15:82:e2:1d:9a:61:e1:a7:01:b4:e6:2f:ff:27:48:82:
1c:88:06:7d:5e:be:76:ab:c8:8d:30:ef:9a:3d:74:aa:69:72:
89:77:0e:a7:fb:41:1e:91:1d:0f:06:f7:00:d9:c1:6b:5d:db:
56:88:49:bd:00:f4:22:5b:3c:23:a5:33:f3:80:04:76:78:64:
cd:f2:01:e3:80:f7:fa:ce:66:d9:33:28:ff:97:8c:b5:54:e9:
ac:b5:be:87:9f:6b:d7:12:24:8b:ea:aa:ef:ca:b0:f4:db:95:
ec:d2:11:50:ea:2f:bb:f5:74:11:5d:ae:ff:3f:33:34:c4:3e:
a1:a9:de:57:54:cd:ae:8d:5d:74:49:ed:81:7c:ff:0c:6b:72:
6e:ec:b7:79:40:4b:e3:d6:2f:c0:ff:f6:b4:94:e6:97:27:af:
52:eb:40:ff:62:8c:f9:7e:84:79:3e:f9:ac:ed:1d:aa:2b:ee:
6d:ff:43:99:af:db:5a:b0:c8:45:0c:7d:74:79:66:e0:62:d4:
86:81:db:66:ad:a3:d0:5c:f4:1c:d7:e8:22:e9:fa:c1:cc:0c:
00:97:0e:aa:b4:d1:22:19:dd:cd:09:c6:3d:85:53:fc:c7:8d:
9b:2a:2b:e2:b2:80:c1:41:fb:36:68:5e:04:41:eb:d2:8d:3e:
13:fc:c7:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 10:59:07 2025 by rpki-client