Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
File: vK-LpZ96PF0A_grUVk2AUk33-pA.mft (raw, json)
Hash identifier: ropCqEZ8I/N8h5ByZgJPFXbJeANfeGM9fD9PA2a8Rys=
Subject key identifier: 81:BA:E0:85:F0:18:CB:AD:4F:48:2A:F1:03:E8:5C:A0:3B:A5:C4:EA
Authority key identifier: BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
Certificate issuer: /CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Certificate serial: 019A4D3D369C48D41D71A0992F920A0DEA53
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
Manifest number: 1709
Signing time: Tue 04 Nov 2025 05:00:48 +0000
Manifest this update: Tue 04 Nov 2025 05:00:48 +0000
Manifest next update: Wed 05 Nov 2025 05:00:48 +0000
Files and hashes: 1: A27u4uaTW6Wfn1YJN7sriqWyvlY.roa (hash: eRUT0mnKKp1D1eZhZRZxpjyCM3yHa+jgOt2PMVH/I+o=)
2: vK-LpZ96PF0A_grUVk2AUk33-pA.crl (hash: wCrRxxFyTr/H6IlnkBlsa1ZbcH1OqGLPJkLj70LEmU4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 05:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:3d:36:9c:48:d4:1d:71:a0:99:2f:92:0a:0d:ea:53
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Validity
Not Before: Nov 4 05:00:48 2025 GMT
Not After : Nov 5 05:00:48 2025 GMT
Subject: CN=81bae085f018cbad4f482af103e85ca03ba5c4ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:8a:55:d5:80:9d:3f:22:4d:82:27:0f:e1:18:
88:d2:9f:2f:c6:57:98:24:69:43:f8:45:09:d8:64:
78:8b:13:e6:dc:8f:03:3b:a0:d9:38:2b:b8:e6:d5:
05:85:66:a1:ae:dd:e9:9a:d6:4b:d3:5b:17:fb:90:
3e:da:76:c6:5d:74:e0:fd:d3:74:7d:50:23:d2:fc:
71:0c:d2:34:ae:01:28:13:17:87:7c:75:6b:8b:20:
28:35:e5:2a:90:7d:bf:53:2f:5b:7e:b1:34:cc:14:
af:03:2e:ab:a0:1a:bc:68:47:88:a2:7c:62:28:49:
c5:b9:42:22:c8:5a:59:ca:e6:5a:e8:dd:52:51:08:
d7:6b:ba:7a:d3:c9:a4:1e:bf:f2:99:e4:5b:25:9b:
88:d1:ba:1e:e5:8d:4a:0e:16:eb:2d:cb:70:c6:23:
1a:7a:4d:7d:cf:2d:39:d5:95:fc:12:ac:49:1b:4f:
80:1d:f2:98:51:a7:22:ee:cb:c6:14:82:df:38:09:
4a:99:65:69:0d:47:05:8e:66:6b:ec:91:79:9a:1e:
47:76:f9:8b:59:df:19:e7:4d:0f:de:ac:7c:51:c5:
d7:7f:67:55:a8:1a:f3:2f:e0:79:36:6a:18:0b:76:
6a:a4:82:c7:85:ff:9e:4f:6a:53:d5:5f:02:7d:dd:
e0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
81:BA:E0:85:F0:18:CB:AD:4F:48:2A:F1:03:E8:5C:A0:3B:A5:C4:EA
X509v3 Authority Key Identifier:
keyid:BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:b1:81:fc:7c:d2:dd:64:ff:02:e5:5d:5b:c0:48:3b:09:61:
ff:b4:e1:12:78:61:27:57:94:2a:15:a0:48:06:72:d3:ca:5f:
e6:d2:b5:cc:3e:fb:f1:12:e8:70:76:2a:72:40:d6:b9:4b:0b:
3f:9f:b8:56:ee:49:e7:6a:9f:79:6c:e8:e3:a0:f8:88:9f:da:
45:f9:66:2e:1d:ca:ee:6a:0e:bf:12:e7:1d:ae:ec:69:f5:3e:
f1:b6:cb:ae:6d:ed:ae:f5:33:ba:b7:b3:b3:38:01:ba:0f:6d:
d1:3d:02:f0:73:ae:c8:2b:18:d9:01:e7:06:2e:c1:0e:88:ca:
af:d8:19:55:99:d2:48:21:7f:63:1e:af:b6:58:b2:a3:36:94:
a8:28:02:be:0b:39:1e:64:83:ef:53:2a:8c:de:c1:3b:00:e3:
43:15:03:e2:92:40:59:b2:f3:91:f4:a2:ee:58:4e:c5:99:58:
88:ef:96:e4:cb:be:80:73:ab:32:43:f7:9c:19:ef:da:50:7e:
d4:01:8e:89:43:e3:9b:bf:50:7f:ee:61:ed:2e:67:d3:e9:d1:
17:00:5b:f0:0a:39:49:91:4b:3a:e2:6b:43:0c:ed:03:ac:50:
60:64:2e:8d:84:b4:d0:42:1b:e6:66:39:d7:57:4a:fc:9e:3b:
8a:93:82:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 11:19:48 2025 by rpki-client