Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
File: vK-LpZ96PF0A_grUVk2AUk33-pA.mft (raw, json)
Hash identifier: 2plNIP9bA4fs9PTrn+wlPNXuEOsv4Om2CJRCYQvBorc=
Subject key identifier: 0F:A3:CD:D5:DE:4A:A7:78:E5:F2:DA:B1:E3:F5:12:4D:43:C0:06:84
Authority key identifier: BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
Certificate issuer: /CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Certificate serial: 019892FF1ED974CF49314E8706FBA6AFC67F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
Manifest number: 1624
Signing time: Sun 10 Aug 2025 08:00:49 +0000
Manifest this update: Sun 10 Aug 2025 08:00:49 +0000
Manifest next update: Mon 11 Aug 2025 08:00:49 +0000
Files and hashes: 1: A27u4uaTW6Wfn1YJN7sriqWyvlY.roa (hash: eRUT0mnKKp1D1eZhZRZxpjyCM3yHa+jgOt2PMVH/I+o=)
2: vK-LpZ96PF0A_grUVk2AUk33-pA.crl (hash: Fwr9NXdJuF/nYPPDh0YEJhALYocTFStWf9ken9AjLx4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 11 Aug 2025 08:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:92:ff:1e:d9:74:cf:49:31:4e:87:06:fb:a6:af:c6:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Validity
Not Before: Aug 10 08:00:49 2025 GMT
Not After : Aug 11 08:00:49 2025 GMT
Subject: CN=0fa3cdd5de4aa778e5f2dab1e3f5124d43c00684
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:b0:e6:97:89:e1:2f:90:82:86:3c:94:ab:74:
ee:2c:e2:2b:53:f2:b1:c6:39:4e:69:96:11:e3:59:
eb:f1:45:93:49:a0:a1:73:0b:bb:57:82:6e:3c:bf:
42:9c:f1:18:36:df:2d:9b:24:71:ff:78:f5:03:20:
21:33:a7:39:ab:3b:a2:1c:7e:19:26:35:3f:03:37:
0e:d9:b1:24:1a:8f:52:d6:a1:f3:25:7a:1d:5b:43:
cf:97:77:06:ad:ea:43:7b:3f:b7:5c:dd:53:35:aa:
d5:42:5e:bf:36:df:dc:b6:2b:51:7f:04:9b:11:95:
2d:a6:a3:a4:0a:6f:c8:52:f0:0d:7d:59:46:99:f5:
d0:50:1b:3a:b3:a4:47:d6:8d:cf:39:21:a8:21:af:
9b:71:a0:3b:5d:84:72:f3:a3:1d:4f:7f:73:7f:72:
97:86:b8:f3:ff:26:66:a1:b5:b9:77:bb:bb:09:56:
bc:c6:5d:60:55:fc:0b:c4:f7:8b:91:d2:2e:d5:c7:
d6:08:58:ec:00:1b:3b:70:a3:a2:a1:6a:ad:e4:96:
30:86:77:83:33:5f:3c:d5:13:53:ba:ea:4a:9d:7e:
18:25:a7:e3:1e:9f:b4:bb:17:49:d8:25:4a:9a:58:
d2:5c:9b:fd:ad:93:ff:eb:df:a4:f4:59:0f:14:db:
b7:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:A3:CD:D5:DE:4A:A7:78:E5:F2:DA:B1:E3:F5:12:4D:43:C0:06:84
X509v3 Authority Key Identifier:
keyid:BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:cf:cd:f4:df:82:fd:5a:5d:29:55:65:4c:83:0f:00:73:31:
f0:a6:0b:ec:44:db:1d:29:31:32:28:63:6e:b5:4a:3f:b8:b8:
b6:66:b6:e2:cd:6d:38:fe:59:e9:29:eb:1a:94:aa:f3:9c:9f:
d5:a6:9a:78:88:96:aa:e5:7a:fc:5d:92:43:12:4c:ac:21:0a:
02:05:5c:60:4e:3d:45:4c:a7:22:0b:ca:f1:e0:74:76:1b:eb:
7a:15:5b:51:21:48:08:6b:d9:a7:6c:68:89:31:72:92:70:99:
f7:7e:ff:25:cb:a5:c8:75:74:ae:1f:e4:dd:b0:0b:0d:63:c9:
7c:a8:f2:34:d2:f3:04:eb:dc:7d:f0:f9:cc:0c:39:2f:dd:91:
e6:db:1d:78:49:28:db:40:aa:7c:88:65:59:38:69:a0:e6:81:
1a:ff:7f:ab:32:0f:af:f4:0c:6d:1a:cd:ac:ad:ef:76:56:e6:
b2:70:93:5e:a8:33:38:91:d3:0f:f9:20:c9:dd:b1:7f:36:01:
91:ad:76:0d:5e:8b:c7:9a:ef:65:36:3c:fb:b7:19:7a:ab:e4:
db:fd:94:48:f9:e1:aa:23:19:44:bf:19:fd:24:86:67:a9:2e:
4b:e8:33:eb:61:4c:61:a3:89:54:ce:c9:a2:59:c0:10:ce:c0:
8f:9e:c3:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 10 10:46:17 2025 by rpki-client