Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
File: vGNYdq8cfvgkEbQEpw2It5FlCfY.mft (raw, json)
Hash identifier: 7IKGuXSo6iHUjjbxk6kH+ZZs+XHIcgBRk3GRiayb2cQ=
Subject key identifier: 8F:4C:32:2C:9C:D4:10:69:73:A8:56:B6:AA:26:C0:53:EE:89:B6:4C
Authority key identifier: BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6
Certificate issuer: /CN=bc635876af1c7ef82411b404a70d88b7916509f6
Certificate serial: 019A4EF46FA53668A3285952DD5675DF1E83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
Manifest number: 064C
Signing time: Tue 04 Nov 2025 13:00:33 +0000
Manifest this update: Tue 04 Nov 2025 13:00:33 +0000
Manifest next update: Wed 05 Nov 2025 13:00:33 +0000
Files and hashes: 1: LSy4pwlxx6ifbllGQJDj8D7o8bU.roa (hash: VlWSPvQ7mW3Gy9fHD3zUtzLx6zn5FCR5wnd8Mk9PMXI=)
2: vGNYdq8cfvgkEbQEpw2It5FlCfY.crl (hash: qXsqcRsCO5PUL9rWSVOS2rpHxvp6HjM1ZqBTw8xNHQk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f4:6f:a5:36:68:a3:28:59:52:dd:56:75:df:1e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc635876af1c7ef82411b404a70d88b7916509f6
Validity
Not Before: Nov 4 13:00:33 2025 GMT
Not After : Nov 5 13:00:33 2025 GMT
Subject: CN=8f4c322c9cd4106973a856b6aa26c053ee89b64c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:c5:0e:5d:93:4c:23:7f:b6:8b:be:39:48:27:
c9:dd:4b:33:d5:b1:0d:85:6e:0a:87:92:c7:b8:76:
b1:23:bb:06:cf:85:6b:8b:50:83:11:89:bb:10:00:
3e:74:4d:0c:c6:3d:71:5e:44:2d:99:4e:61:f2:ba:
cb:aa:c8:12:91:44:28:ab:c7:b4:c6:d8:68:7e:b7:
40:46:c3:71:be:2e:26:9e:d0:0d:54:f4:c4:4e:9e:
8b:4d:d4:5b:11:f0:1d:be:d6:39:e7:f9:13:99:91:
cd:9a:1b:e2:ca:bb:9c:ad:97:76:5e:17:9c:d9:f1:
ac:5e:2f:c8:1f:6d:4c:9a:b3:8d:c7:3f:d8:d4:43:
73:47:29:f7:b1:77:c3:3a:24:76:7a:62:c3:c4:49:
a7:6e:90:f8:26:00:5b:6e:9d:4b:85:a3:06:4f:2f:
32:ef:48:d3:b4:ff:99:6a:ee:d7:e9:a8:ff:f8:ae:
fe:c0:fb:28:2f:9a:58:8d:07:c0:ed:92:2a:25:c6:
df:ad:df:a9:e7:5a:71:af:bd:2c:87:7d:35:e6:a1:
ec:5a:b9:1b:22:9a:21:c8:db:f3:b7:7a:e4:1b:e2:
e2:52:4b:55:9b:76:85:dd:9c:7e:53:03:de:ea:e1:
07:36:16:5d:92:2c:bf:68:ef:d8:0c:79:fa:7b:06:
fb:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:4C:32:2C:9C:D4:10:69:73:A8:56:B6:AA:26:C0:53:EE:89:B6:4C
X509v3 Authority Key Identifier:
keyid:BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:8f:30:a0:df:d1:90:ab:05:dc:84:fd:4b:26:6a:29:2a:c5:
9b:2e:a6:e6:19:e8:0d:15:ff:2d:0e:e0:ff:b1:c8:28:4e:3f:
74:3b:1a:d8:61:eb:b4:b3:2c:90:bd:9c:77:be:4e:68:83:54:
be:1d:d3:ec:88:d0:88:23:6e:d7:a1:62:c7:7c:df:25:72:07:
71:67:e1:d7:e8:b9:b2:54:25:05:a3:02:c3:78:2c:1f:64:14:
12:2c:e5:86:92:6b:11:b6:2f:17:c8:c2:bb:cf:de:1f:f5:8d:
10:11:dd:7f:92:3a:f5:1e:68:85:98:8a:3d:ec:e6:a5:f5:27:
1f:1e:c4:31:3d:45:a2:4d:4a:cc:46:ad:8c:84:54:ac:8e:e7:
18:78:de:7b:a6:f7:d5:99:d4:85:50:e7:60:c5:a1:9f:f2:9b:
c1:af:1f:01:19:36:91:7d:cb:a4:aa:4d:41:f8:f7:c1:df:9e:
b9:ed:26:61:60:19:ef:4d:38:eb:1e:96:aa:5f:99:3e:8f:5c:
6f:7a:54:d5:9e:15:14:e2:dc:7e:e1:38:26:9c:5c:7f:fe:67:
d4:6d:8b:90:1b:6c:a6:75:b0:ac:ee:47:d4:8f:bb:80:08:52:
f5:8a:b6:06:15:66:62:c2:a5:08:56:7f:6a:e3:c0:7f:1f:53:
40:96:66:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:05:08 2025 by rpki-client