Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
File: vJldFVAngKzfe25qGGXttaDn3Es.mft (raw, json)
Hash identifier: 80ylFF4+Ta2KG4j+ObYQMSTQP1imjY2sV8dKupQskM0=
Subject key identifier: 9C:37:AD:52:6D:78:4C:8E:8F:21:69:BE:3F:BD:D7:26:D3:00:B5:58
Authority key identifier: BC:99:5D:15:50:27:80:AC:DF:7B:6E:6A:18:65:ED:B5:A0:E7:DC:4B
Certificate issuer: /CN=bc995d15502780acdf7b6e6a1865edb5a0e7dc4b
Certificate serial: 01987C0920FFF8F5E14420EF886CAEEBB1ED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
Manifest number: 03D0
Signing time: Tue 05 Aug 2025 21:00:29 +0000
Manifest this update: Tue 05 Aug 2025 21:00:29 +0000
Manifest next update: Wed 06 Aug 2025 21:00:29 +0000
Files and hashes: 1: vJldFVAngKzfe25qGGXttaDn3Es.crl (hash: 0aMAZhn7C/BQajY4FGvHQ4p6frSvdoi9rSMxG3ERcR8=)
2: ylPOOnSs52DARSEahPLXBl4_KnA.roa (hash: lVDEfOqJ+hS5o1tAWzlyu4ZG8E1RuFvF7CBIziXEhTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 06 Aug 2025 21:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7c:09:20:ff:f8:f5:e1:44:20:ef:88:6c:ae:eb:b1:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc995d15502780acdf7b6e6a1865edb5a0e7dc4b
Validity
Not Before: Aug 5 21:00:29 2025 GMT
Not After : Aug 6 21:00:29 2025 GMT
Subject: CN=9c37ad526d784c8e8f2169be3fbdd726d300b558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:d8:46:fa:ad:d0:1a:26:d8:58:82:9f:20:fb:
6d:40:a1:ef:ed:3e:43:af:71:f9:62:de:1f:96:05:
51:d0:05:a2:c5:24:43:49:67:6b:a6:30:0d:0b:07:
8a:db:e1:30:d1:6a:9d:fa:92:62:03:32:75:26:70:
62:a8:22:12:7e:4f:eb:ad:21:2f:5a:d8:12:a5:a7:
a9:42:24:92:32:bc:4f:bd:2e:50:45:ce:ca:4a:79:
a7:d3:97:05:f3:1a:ae:e1:2d:af:e9:9c:23:8f:a1:
7a:fa:bb:ac:41:f4:bb:91:01:3c:47:3f:4c:f8:02:
27:4c:98:d6:37:64:93:69:67:be:55:b7:4c:a8:95:
c5:3f:c8:43:67:e0:d3:f1:06:0d:5c:3b:f2:d7:08:
2b:0e:c3:70:af:ff:9f:2e:05:06:41:5a:95:52:56:
4c:d0:62:d9:5e:19:68:77:e8:74:ff:d3:b7:a6:8b:
51:b7:65:88:8c:4f:f9:5a:3c:3e:c8:7b:66:8e:07:
c0:41:ac:7b:9c:6e:25:a1:c8:67:04:b7:83:4c:bc:
f6:d7:38:21:9a:60:c8:53:3a:d4:d0:e3:27:0a:fa:
5f:17:d8:14:4e:9f:ca:fc:97:e6:98:5c:f2:72:4a:
f6:93:5a:49:c5:b1:22:a1:21:49:ae:af:2c:85:72:
d6:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:37:AD:52:6D:78:4C:8E:8F:21:69:BE:3F:BD:D7:26:D3:00:B5:58
X509v3 Authority Key Identifier:
keyid:BC:99:5D:15:50:27:80:AC:DF:7B:6E:6A:18:65:ED:B5:A0:E7:DC:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:24:29:e5:32:8a:44:4c:9a:ab:7d:8c:21:ac:d1:1f:34:4d:
38:64:eb:87:6a:aa:39:d0:1e:b0:69:24:f0:9e:25:74:1c:db:
fe:6b:a2:89:4c:65:f6:9f:88:4a:2c:82:90:1e:7f:d4:17:aa:
05:db:df:10:1a:7b:67:b9:72:d6:eb:ce:65:29:dd:3d:cb:b2:
bf:41:6c:1b:cd:eb:1a:15:e7:0e:fb:21:38:d4:b9:bd:8a:85:
46:f2:13:a0:22:35:a3:cb:5e:c9:df:ef:8a:db:03:3c:40:2f:
04:5d:bd:32:0c:4c:54:36:ab:3d:ff:8f:a3:02:67:32:1a:75:
7c:05:95:fb:e0:0c:72:4d:2d:36:30:1e:81:40:0e:cc:b8:c8:
de:44:05:9e:30:a3:39:38:93:3f:6d:c8:72:b2:a4:b7:ba:42:
58:a7:f4:57:2e:ad:61:af:be:b7:48:20:6b:fc:e1:ba:eb:da:
c5:9b:34:bb:ae:61:79:53:f2:da:14:ae:49:ae:21:59:d5:03:
8d:ba:55:68:23:15:56:e7:63:c6:57:ea:c2:55:90:d5:8d:e8:
a3:74:51:9c:36:1d:c8:8b:56:a3:1d:ba:19:5a:0a:82:72:0c:
5f:9b:78:be:70:83:56:63:7e:48:28:73:bf:18:d1:d5:bf:80:
28:17:b3:30
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 05:51:53 2025 by rpki-client