Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
File: VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft (raw, json)
Hash identifier: iG9IMi48DlFh5nSkDsgfz4sZszbQMAtNWEhezRj4Bsc=
Subject key identifier: 57:C2:50:AC:76:04:95:50:7D:4F:2A:7B:A5:70:37:35:76:61:57:53
Authority key identifier: 54:49:5A:2F:41:CD:10:5A:EF:06:F2:87:0A:76:33:98:01:ED:B9:0D
Certificate issuer: /CN=54495a2f41cd105aef06f2870a76339801edb90d
Certificate serial: 019921E7E40C7CF7B7B4067D7986A83614A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
Manifest number: 0260
Signing time: Sun 07 Sep 2025 02:01:09 +0000
Manifest this update: Sun 07 Sep 2025 02:01:09 +0000
Manifest next update: Mon 08 Sep 2025 02:01:09 +0000
Files and hashes: 1: VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl (hash: D4g1cVXoAkYK1wGPeFilhvkSg5aXSrtK22xrODRLu+c=)
2: iWKzGh5m2_oz6qvqBjoyFnizgxw.roa (hash: YVbdlpkB57bicqIuUwT2dIakABg210l0QU3avOsuQbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 02:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:e7:e4:0c:7c:f7:b7:b4:06:7d:79:86:a8:36:14:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54495a2f41cd105aef06f2870a76339801edb90d
Validity
Not Before: Sep 7 02:01:09 2025 GMT
Not After : Sep 8 02:01:09 2025 GMT
Subject: CN=57c250ac760495507d4f2a7ba570373576615753
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:28:e8:8d:bf:05:02:85:f0:47:35:3b:22:79:
0e:d3:93:33:72:6a:f1:84:88:db:a3:61:b2:6d:1d:
8a:19:b3:bd:2f:bc:d2:48:97:89:be:4c:b6:f6:7c:
cd:f4:9d:7b:60:b3:64:fa:23:56:af:98:c8:cc:58:
ed:94:86:80:13:4a:8a:54:ea:47:fa:c1:f6:83:00:
4f:8f:4a:ef:e1:6d:63:5c:a5:f9:f0:fa:f1:05:3c:
d9:4a:d7:4d:81:6e:37:3f:82:26:b2:e0:d5:be:d0:
43:54:ba:c6:8f:90:a9:5b:7a:68:c4:54:f3:95:2e:
a7:56:f2:86:98:06:6c:67:50:02:ab:33:6f:bc:45:
d0:22:d6:80:bb:f6:0b:98:bc:1c:cb:ae:f2:d9:eb:
cd:9a:d4:7f:04:5b:c9:a9:81:f7:82:22:d3:6b:63:
62:eb:c3:f8:e0:b0:4d:2e:10:c0:d5:c2:6c:54:d9:
0b:2b:8a:93:15:49:8a:e0:3a:eb:2f:34:01:d8:b9:
2a:1c:3d:88:24:78:d7:a1:e2:01:fc:2a:e4:1e:68:
0c:5d:53:db:b7:db:2d:2a:43:c0:ad:d1:da:eb:76:
d1:54:d4:15:27:88:9d:67:57:6b:54:24:5e:fc:db:
ee:6b:f5:68:f0:55:23:19:a1:95:56:43:83:d1:94:
b5:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:C2:50:AC:76:04:95:50:7D:4F:2A:7B:A5:70:37:35:76:61:57:53
X509v3 Authority Key Identifier:
keyid:54:49:5A:2F:41:CD:10:5A:EF:06:F2:87:0A:76:33:98:01:ED:B9:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:bf:5f:bb:11:af:91:2f:8d:b6:e2:d4:09:0f:36:27:d9:59:
51:ab:91:e9:90:cf:61:9f:ad:5b:45:5f:db:8b:79:5d:c0:3b:
24:82:6a:a9:08:1f:21:53:58:88:08:de:ff:43:63:1a:f3:b2:
d2:60:87:f3:89:99:6b:ad:93:75:4e:71:1e:36:44:01:91:2d:
f3:95:dc:85:47:5a:d4:de:2d:ee:23:80:ba:98:a8:15:7f:c1:
2e:a4:99:b9:84:00:b2:62:58:5e:c7:df:f8:9b:61:d7:71:b9:
e4:43:90:c9:26:28:ec:34:91:71:5e:36:5b:da:1b:c8:a1:c0:
25:99:a2:94:e1:a6:8e:bb:b8:1c:ac:33:48:59:4a:1c:ef:a5:
44:73:73:34:39:af:44:05:ab:ef:ed:e2:ce:70:06:2c:06:a0:
2c:5a:04:8f:ad:48:a9:19:ef:4a:0a:4e:f5:d1:48:bf:f1:bf:
90:31:af:e7:cc:95:60:4c:4c:f3:cb:9d:9e:2c:03:a6:eb:66:
dd:86:83:83:e3:a3:8e:f8:9f:40:3c:49:c7:b8:10:e2:17:af:
37:dc:b8:c9:c2:74:92:13:09:97:e9:48:1c:0b:fa:0a:ef:95:
69:67:eb:d0:70:fb:0a:4b:37:15:c5:09:0f:6a:9d:cc:16:af:
ea:6a:e6:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkh5+QMfPe3tAZ9eYaoNhSlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NDk1YTJmNDFjZDEwNWFlZjA2ZjI4NzBhNzYzMzk4MDFl
ZGI5MGQwHhcNMjUwOTA3MDIwMTA5WhcNMjUwOTA4MDIwMTA5WjAzMTEwLwYDVQQD
Eyg1N2MyNTBhYzc2MDQ5NTUwN2Q0ZjJhN2JhNTcwMzczNTc2NjE1NzUzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6yjojb8FAoXwRzU7InkO05Mzcmrx
hIjbo2GybR2KGbO9L7zSSJeJvky29nzN9J17YLNk+iNWr5jIzFjtlIaAE0qKVOpH
+sH2gwBPj0rv4W1jXKX58PrxBTzZStdNgW43P4ImsuDVvtBDVLrGj5CpW3poxFTz
lS6nVvKGmAZsZ1ACqzNvvEXQItaAu/YLmLwcy67y2evNmtR/BFvJqYH3giLTa2Ni
68P44LBNLhDA1cJsVNkLK4qTFUmK4DrrLzQB2LkqHD2IJHjXoeIB/CrkHmgMXVPb
t9stKkPArdHa63bRVNQVJ4idZ1drVCRe/Nvua/Vo8FUjGaGVVkOD0ZS1PwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFfCUKx2BJVQfU8qe6VwNzV2YVdTMB8GA1UdIwQY
MBaAFFRJWi9BzRBa7wbyhwp2M5gB7bkNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkVsYUwwSE5FRnJ2QnZLSENuWXptQUh0dVEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMS9kNjdhNTgtMzgwZi00MjdhLTg0OWEt
Zjk5NDBmYTFlMTA4LzEvVkVsYUwwSE5FRnJ2QnZLSENuWXptQUh0dVEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yMS9kNjdhNTgtMzgwZi00MjdhLTg0OWEtZjk5NDBmYTFlMTA4
LzEvVkVsYUwwSE5FRnJ2QnZLSENuWXptQUh0dVEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABr9fuxGv
kS+NtuLUCQ82J9lZUauR6ZDPYZ+tW0Vf24t5XcA7JIJqqQgfIVNYiAje/0NjGvOy
0mCH84mZa62TdU5xHjZEAZEt85XchUda1N4t7iOAupioFX/BLqSZuYQAsmJYXsff
+Jth13G55EOQySYo7DSRcV42W9obyKHAJZmilOGmjru4HKwzSFlKHO+lRHNzNDmv
RAWr7+3iznAGLAagLFoEj61IqRnvSgpO9dFIv/G/kDGv58yVYExM88udniwDputm
3YaDg+OjjvifQDxJx7gQ4hevN9y4ycJ0khMJl+lIHAv6Cu+VaWfr0HD7Cks3FcUJ
D2qdzBav6mrmlA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 11:33:59 2025 by rpki-client