Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
File: VKwN3sMOJORX4W5lB9IZcoMQiT0.mft (raw, json)
Hash identifier: IfaYb6JvetMs3h+0WGlSP13/TxbY522KcCWaDGJSnZI=
Subject key identifier: D4:BD:58:1C:64:A6:72:11:16:21:93:15:8F:C3:6A:F4:AD:B7:DC:60
Authority key identifier: 54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D
Certificate issuer: /CN=54ac0ddec30e24e457e16e6507d219728310893d
Certificate serial: 0199FFC75FB76C6575CFC3F5007E4C531CC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
Manifest number: 024C
Signing time: Mon 20 Oct 2025 04:01:20 +0000
Manifest this update: Mon 20 Oct 2025 04:01:20 +0000
Manifest next update: Tue 21 Oct 2025 04:01:20 +0000
Files and hashes: 1: 3gl-l3qU8MpI3MVFIGvCINJyADE.roa (hash: utYF7PoXBqNr3o1w6VDP9HkMKeBzXvpa+DHx3iRNsmk=)
2: VKwN3sMOJORX4W5lB9IZcoMQiT0.crl (hash: 9XzP/+jK1PB+KYV5sYcBD7dH2cdPv2XKrQ1FenOhM6k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 04:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:c7:5f:b7:6c:65:75:cf:c3:f5:00:7e:4c:53:1c:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ac0ddec30e24e457e16e6507d219728310893d
Validity
Not Before: Oct 20 04:01:20 2025 GMT
Not After : Oct 21 04:01:20 2025 GMT
Subject: CN=d4bd581c64a67211162193158fc36af4adb7dc60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:3b:69:d2:6d:87:f4:e0:a0:8f:01:21:5d:31:
36:26:74:a4:b0:7d:3f:49:dc:40:c5:f5:44:18:48:
f3:00:06:96:da:91:d8:00:48:7b:6d:c9:33:13:9e:
14:49:f4:39:d6:a0:18:5f:d4:41:b7:bc:9e:63:f7:
42:92:26:eb:9e:45:e1:5c:22:1d:26:29:76:4e:22:
05:9b:58:f4:a5:96:b8:0e:82:23:8f:e4:c5:60:e0:
33:fb:09:b4:fd:7b:3f:83:49:28:7b:f7:3d:a2:64:
ff:34:19:76:f1:9d:68:e7:7a:e1:6a:fa:c8:71:ec:
e6:67:ed:77:b8:ff:28:06:06:5a:ad:5f:1b:4f:e5:
60:3b:70:46:54:74:74:fb:2b:4b:f0:de:e2:02:a9:
39:75:af:32:75:4a:8e:34:e1:13:67:7d:04:23:70:
a5:25:98:6d:f6:22:e6:73:c3:16:f6:e3:ad:9b:4e:
d2:cf:70:81:f9:dc:bb:7c:38:87:d2:0e:34:c9:76:
23:49:36:0c:a3:ad:93:d9:e4:27:ab:65:58:d8:4a:
dc:91:a0:bd:cf:c8:2f:5a:e9:ed:f7:06:c1:98:a5:
02:1d:79:c6:71:3d:bf:14:26:ac:3b:11:d7:15:92:
19:6e:04:6f:69:7b:21:6f:15:75:f5:e6:24:65:09:
b8:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:BD:58:1C:64:A6:72:11:16:21:93:15:8F:C3:6A:F4:AD:B7:DC:60
X509v3 Authority Key Identifier:
keyid:54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:94:27:ae:b3:f6:89:6c:3a:16:d1:a0:6d:1b:67:6a:7f:63:
fd:cd:10:54:ae:cd:5d:ba:0e:16:a8:5b:c5:e1:14:28:66:c9:
27:3d:65:bf:0a:ab:97:ea:b5:e5:f1:7b:4e:df:a0:f5:a3:39:
ef:8e:8d:d4:fa:4a:09:24:24:a4:f0:b1:19:bd:ce:a7:b5:0f:
7f:ae:7a:fa:cb:bd:26:a1:66:e1:e4:6d:3d:7b:8f:0a:b8:ef:
77:f0:26:21:07:a6:0e:e4:18:3a:93:3b:7e:b8:d5:30:5f:72:
75:a9:c8:cf:5f:f9:b1:9c:b6:de:3e:61:d5:25:68:97:6b:94:
64:34:23:38:70:86:0b:e6:dc:cb:0c:ec:ac:8a:00:79:9c:5d:
59:69:60:14:75:04:ae:36:5d:35:20:eb:6c:5a:b7:c5:dd:71:
3b:85:bd:3d:a8:f2:ee:ad:72:cf:22:3a:cd:f5:89:54:5c:17:
f4:18:5e:b9:1c:24:28:66:28:1c:04:67:4b:74:dc:c0:a6:a0:
da:7a:dd:85:4e:38:4e:35:b0:bf:33:da:1c:7e:4d:82:19:25:
9f:aa:76:5a:69:4f:49:62:92:b7:8c:09:27:01:5d:d8:98:3a:
c6:8d:9f:2a:32:a0:e0:76:a3:ea:89:c7:3c:50:08:16:73:58:
28:90:ed:6e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn/x1+3bGV1z8P1AH5MUxzJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0YWMwZGRlYzMwZTI0ZTQ1N2UxNmU2NTA3ZDIxOTcyODMx
MDg5M2QwHhcNMjUxMDIwMDQwMTIwWhcNMjUxMDIxMDQwMTIwWjAzMTEwLwYDVQQD
EyhkNGJkNTgxYzY0YTY3MjExMTYyMTkzMTU4ZmMzNmFmNGFkYjdkYzYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwjtp0m2H9OCgjwEhXTE2JnSksH0/
SdxAxfVEGEjzAAaW2pHYAEh7bckzE54USfQ51qAYX9RBt7yeY/dCkibrnkXhXCId
Jil2TiIFm1j0pZa4DoIjj+TFYOAz+wm0/Xs/g0koe/c9omT/NBl28Z1o53rhavrI
cezmZ+13uP8oBgZarV8bT+VgO3BGVHR0+ytL8N7iAqk5da8ydUqONOETZ30EI3Cl
JZht9iLmc8MW9uOtm07Sz3CB+dy7fDiH0g40yXYjSTYMo62T2eQnq2VY2ErckaC9
z8gvWunt9wbBmKUCHXnGcT2/FCasOxHXFZIZbgRvaXshbxV19eYkZQm47wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNS9WBxkpnIRFiGTFY/DavStt9xgMB8GA1UdIwQY
MBaAFFSsDd7DDiTkV+FuZQfSGXKDEIk9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkt3TjNzTU9KT1JYNFc1bEI5SVpjb01RaVQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC8yZGRkMzktZTdiZC00NGJhLWFiMjEt
MmYwNjU1ZjAxMDI5LzEvVkt3TjNzTU9KT1JYNFc1bEI5SVpjb01RaVQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZC8yZGRkMzktZTdiZC00NGJhLWFiMjEtMmYwNjU1ZjAxMDI5
LzEvVkt3TjNzTU9KT1JYNFc1bEI5SVpjb01RaVQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf5QnrrP2
iWw6FtGgbRtnan9j/c0QVK7NXboOFqhbxeEUKGbJJz1lvwqrl+q15fF7Tt+g9aM5
746N1PpKCSQkpPCxGb3Op7UPf656+su9JqFm4eRtPXuPCrjvd/AmIQemDuQYOpM7
frjVMF9ydanIz1/5sZy23j5h1SVol2uUZDQjOHCGC+bcywzsrIoAeZxdWWlgFHUE
rjZdNSDrbFq3xd1xO4W9Pajy7q1yzyI6zfWJVFwX9BheuRwkKGYoHARnS3TcwKag
2nrdhU44TjWwvzPaHH5Nghkln6p2WmlPSWKSt4wJJwFd2Jg6xo2fKjKg4Haj6onH
PFAIFnNYKJDtbg==
-----END CERTIFICATE-----
Generated at Mon Oct 20 13:06:26 2025 by rpki-client