Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
File: vJldFVAngKzfe25qGGXttaDn3Es.mft (raw, json)
Hash identifier: z0F3AMTdu/7xNlL2FdWPkGCAYYOdhw5wo2SJHHDQOGw=
Subject key identifier: 5C:D2:DF:38:A7:FB:6D:AF:9A:4F:12:DA:2B:A1:8E:39:E9:77:19:58
Authority key identifier: BC:99:5D:15:50:27:80:AC:DF:7B:6E:6A:18:65:ED:B5:A0:E7:DC:4B
Certificate issuer: /CN=bc995d15502780acdf7b6e6a1865edb5a0e7dc4b
Certificate serial: 019A4F6204496109D0F34F15E4F3AFCACAC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
Manifest number: 04C2
Signing time: Tue 04 Nov 2025 15:00:14 +0000
Manifest this update: Tue 04 Nov 2025 15:00:14 +0000
Manifest next update: Wed 05 Nov 2025 15:00:14 +0000
Files and hashes: 1: vJldFVAngKzfe25qGGXttaDn3Es.crl (hash: cY4Oe3vw06HeoatR9cuplcgcSXQaA04O1F5LNk3x1uM=)
2: ylPOOnSs52DARSEahPLXBl4_KnA.roa (hash: lVDEfOqJ+hS5o1tAWzlyu4ZG8E1RuFvF7CBIziXEhTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 15:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:62:04:49:61:09:d0:f3:4f:15:e4:f3:af:ca:ca:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc995d15502780acdf7b6e6a1865edb5a0e7dc4b
Validity
Not Before: Nov 4 15:00:14 2025 GMT
Not After : Nov 5 15:00:14 2025 GMT
Subject: CN=5cd2df38a7fb6daf9a4f12da2ba18e39e9771958
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:92:f4:10:d9:86:f6:5d:cf:5e:92:1e:61:46:
58:8d:18:a4:c9:ef:30:bc:06:6a:59:56:73:05:e5:
d2:68:59:e3:fa:60:f1:0e:77:fc:2b:73:32:5e:74:
1d:f2:77:fc:d5:52:a3:0d:9a:21:e0:f7:3e:69:a9:
01:3d:d7:2d:11:0e:2b:69:af:f6:a1:27:ad:f1:6e:
42:a5:c1:e0:46:bd:b6:c1:f7:86:9d:2f:3c:02:cc:
80:ce:c9:4e:fd:74:0c:52:7f:dd:65:90:17:41:99:
98:a1:55:97:2b:65:04:03:39:5d:1f:8f:4e:dd:45:
66:5a:70:91:e0:ea:14:b4:5d:cb:ff:48:f3:64:0d:
9d:e3:57:9e:f8:ba:da:b5:37:df:85:70:bc:2d:b9:
35:a1:15:0a:43:df:2a:01:51:a9:fb:da:41:85:c6:
1f:64:d1:38:21:00:42:f2:91:73:2b:cb:6f:c9:79:
3b:25:96:9a:50:83:ff:ba:69:92:e9:fa:18:3e:63:
6a:34:22:9e:d9:73:ed:3d:73:de:1a:9d:3a:78:10:
74:8a:14:d5:51:75:a8:9a:d9:ae:23:78:51:88:3c:
1a:82:93:a4:f0:bc:b9:3e:05:90:a5:8e:fc:8c:92:
51:b9:d8:d3:ca:24:cb:e1:5c:42:3f:0e:d2:08:9f:
43:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:D2:DF:38:A7:FB:6D:AF:9A:4F:12:DA:2B:A1:8E:39:E9:77:19:58
X509v3 Authority Key Identifier:
keyid:BC:99:5D:15:50:27:80:AC:DF:7B:6E:6A:18:65:ED:B5:A0:E7:DC:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:52:e5:d2:1b:bf:64:fd:cb:87:bc:56:1b:65:dd:a4:8e:ab:
ae:f0:aa:3d:27:fd:66:77:58:c2:3c:01:ef:3e:a4:77:ab:bd:
f0:c2:36:b0:f4:a1:35:31:41:8a:78:2b:85:a8:b3:28:dd:5b:
99:b2:15:14:9f:0a:42:e2:41:25:ae:73:0a:a4:18:fd:58:3c:
27:ff:c2:51:b1:55:a8:44:0c:27:db:fd:8f:d4:12:f0:a2:8d:
a7:ad:bd:29:f0:31:36:ef:77:1f:b6:e7:1a:3d:ed:45:1e:4a:
4f:39:12:ba:e7:3d:c9:3a:c2:02:73:d7:bb:ff:37:48:c0:6f:
a1:dd:35:60:19:fd:fc:00:1d:14:33:2d:70:09:ac:e1:cf:58:
b9:60:5f:14:17:aa:6a:2c:a8:ca:87:92:90:79:d0:5c:f6:54:
f7:a6:e8:53:0b:f1:31:69:1b:4f:6b:71:dd:8c:78:f6:08:d4:
34:64:2e:ad:25:f2:3a:8a:b9:3a:5e:fc:8f:fa:10:34:2e:06:
bf:7b:07:84:28:83:58:6c:d3:f6:e3:24:36:c3:6b:89:fa:88:
1a:32:39:e4:68:d8:f7:28:37:f5:e4:41:e0:c0:a6:61:1d:2c:
0d:4d:aa:22:fd:54:ee:57:69:c6:96:f3:88:f5:5e:64:78:1a:
ff:1c:f1:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpPYgRJYQnQ808V5POvysrFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjOTk1ZDE1NTAyNzgwYWNkZjdiNmU2YTE4NjVlZGI1YTBl
N2RjNGIwHhcNMjUxMTA0MTUwMDE0WhcNMjUxMTA1MTUwMDE0WjAzMTEwLwYDVQQD
Eyg1Y2QyZGYzOGE3ZmI2ZGFmOWE0ZjEyZGEyYmExOGUzOWU5NzcxOTU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA45L0ENmG9l3PXpIeYUZYjRikye8w
vAZqWVZzBeXSaFnj+mDxDnf8K3MyXnQd8nf81VKjDZoh4Pc+aakBPdctEQ4raa/2
oSet8W5CpcHgRr22wfeGnS88AsyAzslO/XQMUn/dZZAXQZmYoVWXK2UEAzldH49O
3UVmWnCR4OoUtF3L/0jzZA2d41ee+LratTffhXC8Lbk1oRUKQ98qAVGp+9pBhcYf
ZNE4IQBC8pFzK8tvyXk7JZaaUIP/ummS6foYPmNqNCKe2XPtPXPeGp06eBB0ihTV
UXWomtmuI3hRiDwagpOk8Ly5PgWQpY78jJJRudjTyiTL4VxCPw7SCJ9DPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFzS3zin+22vmk8S2iuhjjnpdxlYMB8GA1UdIwQY
MBaAFLyZXRVQJ4Cs33tuahhl7bWg59xLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkpsZEZWQW5nS3pmZTI1cUdHWHR0YURuM0VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wNDQzNTAtOGNjOS00ODZkLTg3Yzkt
NTcyYzRlMTI5ZDMyLzEvdkpsZEZWQW5nS3pmZTI1cUdHWHR0YURuM0VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS8wNDQzNTAtOGNjOS00ODZkLTg3YzktNTcyYzRlMTI5ZDMy
LzEvdkpsZEZWQW5nS3pmZTI1cUdHWHR0YURuM0VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD1Ll0hu/
ZP3Lh7xWG2XdpI6rrvCqPSf9ZndYwjwB7z6kd6u98MI2sPShNTFBingrhaizKN1b
mbIVFJ8KQuJBJa5zCqQY/Vg8J//CUbFVqEQMJ9v9j9QS8KKNp629KfAxNu93H7bn
Gj3tRR5KTzkSuuc9yTrCAnPXu/83SMBvod01YBn9/AAdFDMtcAms4c9YuWBfFBeq
aiyoyoeSkHnQXPZU96boUwvxMWkbT2tx3Yx49gjUNGQurSXyOoq5Ol78j/oQNC4G
v3sHhCiDWGzT9uMkNsNrifqIGjI55GjY9yg39eRB4MCmYR0sDU2qIv1U7ldpxpbz
iPVeZHga/xzxHA==
-----END CERTIFICATE-----
Generated at Tue Nov 4 22:48:17 2025 by rpki-client