Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
File: vzrHIKEXt01NE8Jj95R3kp7btLw.mft (raw, json)
Hash identifier: URrAcXmRypJ6vdaShp+8rU5IF6SNrgJXcCx81aRl5DY=
Subject key identifier: E8:9E:62:60:31:C0:AD:24:C7:6A:27:CC:5B:3A:C1:CB:87:98:DC:C9
Authority key identifier: BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
Certificate issuer: /CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Certificate serial: 01984BF828DE4A91CD7411B785BD4A2CE51E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
Manifest number: 03EC
Signing time: Sun 27 Jul 2025 13:00:11 +0000
Manifest this update: Sun 27 Jul 2025 13:00:11 +0000
Manifest next update: Mon 28 Jul 2025 13:00:11 +0000
Files and hashes: 1: vzrHIKEXt01NE8Jj95R3kp7btLw.crl (hash: 8/B+92c8kuS0Kg/+8VfEsV8X2dl0xyWC9KE+7wCE3nk=)
2: y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa (hash: ce+FeJaNssRXQv9hff7wkEZwcN/xUnX9DV6JIGk2oTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:f8:28:de:4a:91:cd:74:11:b7:85:bd:4a:2c:e5:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Validity
Not Before: Jul 27 13:00:11 2025 GMT
Not After : Jul 28 13:00:11 2025 GMT
Subject: CN=e89e626031c0ad24c76a27cc5b3ac1cb8798dcc9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:53:a6:20:98:a0:b9:9b:27:5b:14:3a:81:04:
53:a6:e2:b4:0c:72:d1:cb:6a:6f:c4:94:34:89:aa:
2a:5e:62:fa:1b:18:82:4c:cf:08:10:af:dc:0e:46:
4a:44:15:22:81:3a:67:6c:54:19:d5:53:25:01:23:
5f:0a:e7:de:15:b7:fe:69:c6:f9:56:34:c2:f6:ec:
30:20:e3:5d:da:7e:f2:2f:9d:29:4d:6e:ee:62:dc:
87:42:2d:e3:92:41:a7:6c:40:59:37:78:69:49:c4:
31:15:1d:a7:6c:2a:2b:f2:67:33:3c:1c:86:75:c3:
e5:77:28:b8:9f:fe:39:44:de:a6:33:23:04:79:a1:
fb:84:41:6a:6a:52:db:64:f5:69:0c:9f:b4:ce:8d:
a3:d3:0a:e9:e5:c6:d3:84:9c:49:b8:18:30:eb:46:
e7:6d:4a:28:1d:c2:2f:52:e5:7e:c6:1b:ac:30:0c:
12:2f:36:10:72:79:0d:0d:a0:fd:a4:a3:b9:0b:0e:
9f:15:73:b9:af:2f:ed:2b:e1:40:ef:72:91:a5:20:
35:45:98:45:46:fa:3d:db:ae:ea:98:3e:b8:ad:3a:
81:23:8b:ac:f1:bd:51:72:3d:17:16:84:cf:3e:da:
d1:92:3c:c4:b4:f2:f8:05:6f:92:9e:90:b1:23:15:
09:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:9E:62:60:31:C0:AD:24:C7:6A:27:CC:5B:3A:C1:CB:87:98:DC:C9
X509v3 Authority Key Identifier:
keyid:BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:20:9a:8f:75:ba:19:2e:b8:6c:57:3c:ec:b6:55:88:96:2e:
89:44:67:68:fd:1c:2b:87:08:b9:4b:b8:1c:30:b1:b3:66:12:
75:a8:63:5e:ae:dc:e5:3e:d3:41:ee:4f:5e:eb:bd:e4:6c:db:
27:31:5a:97:0d:f0:e2:92:72:81:f5:e6:ca:cf:c3:fb:1b:96:
87:25:72:a7:8d:2e:52:6a:97:06:21:04:93:0e:c1:73:1a:8d:
7a:db:ba:92:c3:4f:26:a9:a2:4c:11:30:41:a1:3f:48:c2:b1:
14:93:09:b6:6f:c7:17:eb:31:95:fc:1c:58:8b:4c:b8:ee:40:
e3:fe:95:83:d0:29:df:29:83:65:a1:3e:a8:4c:d6:16:bf:69:
d6:6b:cc:59:f9:2f:fa:92:13:ac:25:59:7b:be:4c:6c:ea:da:
5b:1d:50:6f:c3:c9:85:15:0a:60:ab:1c:01:0a:b1:d7:73:fb:
81:85:76:54:d1:29:ac:27:f7:38:99:8f:43:70:ff:ed:ee:71:
10:21:4d:06:08:8a:96:29:69:b6:85:f4:4f:d5:4c:81:23:54:
30:93:77:a3:96:5d:e7:85:09:4e:a5:37:20:a8:d2:e3:48:69:
38:4c:70:4c:ae:32:60:73:2b:ca:77:75:ce:69:ad:89:f6:ea:
a1:9f:19:74
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZhL+CjeSpHNdBG3hb1KLOUeMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmM2FjNzIwYTExN2I3NGQ0ZDEzYzI2M2Y3OTQ3NzkyOWVk
YmI0YmMwHhcNMjUwNzI3MTMwMDExWhcNMjUwNzI4MTMwMDExWjAzMTEwLwYDVQQD
EyhlODllNjI2MDMxYzBhZDI0Yzc2YTI3Y2M1YjNhYzFjYjg3OThkY2M5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVOmIJiguZsnWxQ6gQRTpuK0DHLR
y2pvxJQ0iaoqXmL6GxiCTM8IEK/cDkZKRBUigTpnbFQZ1VMlASNfCufeFbf+acb5
VjTC9uwwIONd2n7yL50pTW7uYtyHQi3jkkGnbEBZN3hpScQxFR2nbCor8mczPByG
dcPldyi4n/45RN6mMyMEeaH7hEFqalLbZPVpDJ+0zo2j0wrp5cbThJxJuBgw60bn
bUooHcIvUuV+xhusMAwSLzYQcnkNDaD9pKO5Cw6fFXO5ry/tK+FA73KRpSA1RZhF
Rvo9267qmD64rTqBI4us8b1Rcj0XFoTPPtrRkjzEtPL4BW+SnpCxIxUJbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOieYmAxwK0kx2onzFs6wcuHmNzJMB8GA1UdIwQY
MBaAFL86xyChF7dNTRPCY/eUd5Ke27S8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnpySElLRVh0MDFORThKajk1UjNrcDdidEx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjVmNWUtN2I3ZC00YjI4LWE5YjMt
MGFjMWJiZDQzNGQwLzEvdnpySElLRVh0MDFORThKajk1UjNrcDdidEx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9kYjVmNWUtN2I3ZC00YjI4LWE5YjMtMGFjMWJiZDQzNGQw
LzEvdnpySElLRVh0MDFORThKajk1UjNrcDdidEx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACSCaj3W6
GS64bFc87LZViJYuiURnaP0cK4cIuUu4HDCxs2YSdahjXq7c5T7TQe5PXuu95Gzb
JzFalw3w4pJygfXmys/D+xuWhyVyp40uUmqXBiEEkw7BcxqNetu6ksNPJqmiTBEw
QaE/SMKxFJMJtm/HF+sxlfwcWItMuO5A4/6Vg9Ap3ymDZaE+qEzWFr9p1mvMWfkv
+pITrCVZe75MbOraWx1Qb8PJhRUKYKscAQqx13P7gYV2VNEprCf3OJmPQ3D/7e5x
ECFNBgiKlilptoX0T9VMgSNUMJN3o5Zd54UJTqU3IKjS40hpOExwTK4yYHMrynd1
zmmtifbqoZ8ZdA==
-----END CERTIFICATE-----
Generated at Sun Jul 27 15:13:34 2025 by rpki-client