Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
File: vZALuaxgacUTtYLWH9gezNVhpWc.mft (raw, json)
Hash identifier: JteCTiv8drigdlTF37zvI7PJ1/dj6GJfb7zWfdbER0w=
Subject key identifier: 41:A7:F1:20:2B:AA:A7:F3:DA:98:B3:55:BD:67:15:AC:C1:30:28:1B
Authority key identifier: BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
Certificate issuer: /CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Certificate serial: 0198801DC1D3335AD318FCCBFD78B8DD4ED0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
Manifest number: 159D
Signing time: Wed 06 Aug 2025 16:01:30 +0000
Manifest this update: Wed 06 Aug 2025 16:01:30 +0000
Manifest next update: Thu 07 Aug 2025 16:01:30 +0000
Files and hashes: 1: d7tBUWSiQHeiqH-bBOlyLkT02Ns.roa (hash: rmL3xWHBj145jAhqBB3i69rSx83PgbXey8Czqw5Lf3A=)
2: vZALuaxgacUTtYLWH9gezNVhpWc.crl (hash: pVHmV2qc/0tfR7MW2ejt0oEqnuvrXrQ7pyQUBifRbiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 16:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:80:1d:c1:d3:33:5a:d3:18:fc:cb:fd:78:b8:dd:4e:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Validity
Not Before: Aug 6 16:01:30 2025 GMT
Not After : Aug 7 16:01:30 2025 GMT
Subject: CN=41a7f1202baaa7f3da98b355bd6715acc130281b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:80:90:62:62:b7:a8:97:60:e0:fd:28:c0:c7:
73:27:2d:20:43:e5:62:53:24:11:a0:dc:e2:15:13:
bc:6b:9a:7b:0b:88:f2:5a:6d:16:7a:db:62:09:2f:
2d:f9:53:85:7c:4e:84:fb:52:31:6f:97:c0:8e:5c:
c2:a3:a7:82:a9:69:72:b0:4e:c7:c4:e3:c7:4f:84:
d6:fb:9b:e9:88:08:5b:d2:e9:6b:41:90:c3:0c:7f:
5d:4c:0d:83:20:1c:a9:e8:43:63:1b:2d:2a:64:f1:
3d:c0:62:41:c4:da:4e:15:50:71:d4:50:fa:a5:97:
5d:6f:b7:c7:07:02:79:61:ea:81:5d:57:6a:2f:da:
49:67:ba:eb:8c:a5:7c:ee:09:3b:73:a4:28:d7:f5:
b7:9d:46:b6:b7:95:ca:b6:25:75:fb:6a:57:1c:ea:
a7:ca:fa:e5:70:b9:91:f4:71:7c:6a:44:f1:67:ad:
45:f1:b2:7e:d8:43:3b:f0:dd:ce:84:64:e3:e8:d1:
e9:74:17:c5:2d:45:2c:fc:b1:18:23:84:09:9d:39:
72:10:f3:b6:c3:0f:66:11:56:da:75:ae:b9:4f:6a:
ba:39:9c:48:4e:19:b1:58:66:80:53:a8:49:e4:52:
3b:46:63:fd:42:0f:28:75:cf:d1:1e:0a:83:9f:92:
0e:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A7:F1:20:2B:AA:A7:F3:DA:98:B3:55:BD:67:15:AC:C1:30:28:1B
X509v3 Authority Key Identifier:
keyid:BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:b0:d3:da:69:82:e9:27:f0:23:03:55:75:90:40:ed:50:93:
86:9d:59:44:18:ef:99:4a:f5:f5:64:3d:17:03:fe:77:5e:be:
55:49:1c:b1:05:71:13:50:01:18:3f:87:75:31:15:f8:7a:31:
fb:9e:7c:9b:0a:3c:31:73:9e:da:2a:d3:f5:7f:03:35:2e:cd:
55:02:75:4f:c1:33:97:34:a3:ed:e6:5f:c3:a8:b2:59:f4:96:
ca:c8:70:d7:42:3d:b4:1f:1d:c9:12:50:0a:5c:86:89:da:88:
d7:f4:ef:99:50:17:84:3c:c9:1d:57:11:c2:80:16:58:04:9a:
d9:0b:69:06:5c:40:63:57:5a:00:8b:fd:b7:7b:b0:9e:ca:9f:
a7:d4:49:d3:41:4e:42:a4:b8:9f:15:98:08:cb:54:65:ac:21:
24:36:d8:c7:04:b3:af:ef:c1:74:ac:ab:50:7e:f2:0a:10:2d:
6a:3f:40:18:ac:01:dc:04:ab:ba:f1:af:e6:7d:bd:31:8e:1f:
a4:cd:84:78:47:21:ca:ce:82:b5:38:2b:a0:06:0a:d2:3e:c0:
d8:67:7d:50:d1:ac:c6:10:cb:b3:54:f0:5e:97:3b:27:11:c5:
5d:d1:55:7e:88:f5:14:24:83:0e:fd:f0:e3:fa:1a:dd:a8:87:
00:de:3d:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZiAHcHTM1rTGPzL/Xi43U7QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkOTAwYmI5YWM2MDY5YzUxM2I1ODJkNjFmZDgxZWNjZDU2
MWE1NjcwHhcNMjUwODA2MTYwMTMwWhcNMjUwODA3MTYwMTMwWjAzMTEwLwYDVQQD
Eyg0MWE3ZjEyMDJiYWFhN2YzZGE5OGIzNTViZDY3MTVhY2MxMzAyODFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2ICQYmK3qJdg4P0owMdzJy0gQ+Vi
UyQRoNziFRO8a5p7C4jyWm0WettiCS8t+VOFfE6E+1Ixb5fAjlzCo6eCqWlysE7H
xOPHT4TW+5vpiAhb0ulrQZDDDH9dTA2DIByp6ENjGy0qZPE9wGJBxNpOFVBx1FD6
pZddb7fHBwJ5YeqBXVdqL9pJZ7rrjKV87gk7c6Qo1/W3nUa2t5XKtiV1+2pXHOqn
yvrlcLmR9HF8akTxZ61F8bJ+2EM78N3OhGTj6NHpdBfFLUUs/LEYI4QJnTlyEPO2
ww9mEVbada65T2q6OZxIThmxWGaAU6hJ5FI7RmP9Qg8odc/RHgqDn5IOGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEGn8SArqqfz2pizVb1nFazBMCgbMB8GA1UdIwQY
MBaAFL2QC7msYGnFE7WC1h/YHszVYaVnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlpBTHVheGdhY1VUdFlMV0g5Z2V6TlZocFdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9lM2VhNWItZDUzZS00Y2Q3LWJiN2It
ZTFiOWY2ZDM1N2MwLzEvdlpBTHVheGdhY1VUdFlMV0g5Z2V6TlZocFdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNi9lM2VhNWItZDUzZS00Y2Q3LWJiN2ItZTFiOWY2ZDM1N2Mw
LzEvdlpBTHVheGdhY1VUdFlMV0g5Z2V6TlZocFdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKrDT2mmC
6SfwIwNVdZBA7VCThp1ZRBjvmUr19WQ9FwP+d16+VUkcsQVxE1ABGD+HdTEV+Hox
+558mwo8MXOe2irT9X8DNS7NVQJ1T8EzlzSj7eZfw6iyWfSWyshw10I9tB8dyRJQ
ClyGidqI1/TvmVAXhDzJHVcRwoAWWASa2QtpBlxAY1daAIv9t3uwnsqfp9RJ00FO
QqS4nxWYCMtUZawhJDbYxwSzr+/BdKyrUH7yChAtaj9AGKwB3ASruvGv5n29MY4f
pM2EeEchys6CtTgroAYK0j7A2Gd9UNGsxhDLs1TwXpc7JxHFXdFVfoj1FCSDDv3w
4/oa3aiHAN49yA==
-----END CERTIFICATE-----
Generated at Thu Aug 7 00:26:50 2025 by rpki-client