Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
File: VXe0uHq4aspXflbjjVuKWBPMzD0.mft (raw, json)
Hash identifier: 30efmeE1pSPociiETcHynWw0VyuuaPPdFNZyBufSxhw=
Subject key identifier: 9A:3A:49:F2:35:B4:07:D1:1C:DA:D4:88:E0:52:0E:67:33:5E:D3:49
Authority key identifier: 55:77:B4:B8:7A:B8:6A:CA:57:7E:56:E3:8D:5B:8A:58:13:CC:CC:3D
Certificate issuer: /CN=5577b4b87ab86aca577e56e38d5b8a5813cccc3d
Certificate serial: 0199179AC57C7A7C8445A748DC02FEDD10B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
Manifest number: 119E
Signing time: Fri 05 Sep 2025 02:00:42 +0000
Manifest this update: Fri 05 Sep 2025 02:00:42 +0000
Manifest next update: Sat 06 Sep 2025 02:00:42 +0000
Files and hashes: 1: P9bs-w5DkWpu1aBuTV3PHAzvH6Q.roa (hash: oAepJ4+j0gmtz7XxqoB+yGPsz6tmKuFLhq6h9fcVyTY=)
2: VXe0uHq4aspXflbjjVuKWBPMzD0.crl (hash: Yx+tW8qKDyzDXLsf0FX/820AoK1VoWhGjBcY5UDQSfE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Sep 2025 19:46:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:17:9a:c5:7c:7a:7c:84:45:a7:48:dc:02:fe:dd:10:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5577b4b87ab86aca577e56e38d5b8a5813cccc3d
Validity
Not Before: Sep 5 02:00:42 2025 GMT
Not After : Sep 6 02:00:42 2025 GMT
Subject: CN=9a3a49f235b407d11cdad488e0520e67335ed349
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:7e:8a:9b:29:43:45:61:0c:01:c4:3d:cb:f9:
c5:3e:3c:8b:93:d5:69:9c:cc:a0:e2:19:d1:ab:4d:
94:b4:1c:d0:57:74:c7:be:46:e7:29:15:d7:de:01:
68:35:4c:32:21:96:14:cd:91:b9:0d:6d:fd:a3:e6:
6b:00:52:c1:39:f6:07:11:e2:34:3f:c4:d1:62:16:
7a:ce:83:81:c6:05:9c:dc:77:48:04:f4:80:a4:4e:
1b:f0:13:44:69:cc:c7:76:63:48:b9:1a:37:cd:29:
55:ba:7f:08:8b:68:b5:07:ab:64:8c:19:69:af:be:
d3:09:49:20:72:ca:4d:9b:9e:6b:e5:d3:5b:ce:05:
f9:ed:16:af:a2:6c:29:a1:2e:19:99:49:8d:62:a1:
ee:d0:c5:09:75:a6:52:17:45:13:bb:e1:66:20:9f:
4d:df:f3:90:51:66:4b:2b:33:a5:0a:3b:d5:c3:a1:
07:b6:0e:d5:fb:24:d0:ff:3a:62:4c:ff:34:ee:e7:
da:61:1f:a1:24:23:20:d3:7c:4a:b2:ee:14:62:15:
a9:f9:c7:0f:2c:3b:57:23:9f:8c:b1:19:1a:b1:07:
69:c1:8d:b2:6a:ae:c2:1d:fc:a8:9f:8a:3a:4a:e1:
ef:1c:63:6a:18:6e:b9:a9:70:52:64:c1:af:4d:5c:
b2:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:3A:49:F2:35:B4:07:D1:1C:DA:D4:88:E0:52:0E:67:33:5E:D3:49
X509v3 Authority Key Identifier:
keyid:55:77:B4:B8:7A:B8:6A:CA:57:7E:56:E3:8D:5B:8A:58:13:CC:CC:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:0a:66:ff:ab:58:47:68:0a:b9:3d:5d:d3:a0:74:1b:87:e0:
d6:c0:a6:01:e9:2f:36:9e:8c:ee:67:fd:d1:44:48:00:cf:ab:
97:1a:3a:ee:a4:41:98:77:29:40:a7:e3:c7:f3:de:7c:53:cf:
c0:56:8b:d1:26:04:e8:d1:11:5f:78:3b:b5:d1:72:aa:3d:c0:
bb:c2:a8:9f:05:2a:fb:15:35:31:2f:d9:e9:08:f0:da:af:5f:
7f:9d:ae:fc:dc:54:d3:06:e6:a3:2f:60:36:96:d2:63:97:f7:
31:03:34:19:98:00:6d:63:b5:e9:f7:14:f5:8d:00:f2:bf:4b:
7e:95:23:f2:b8:68:a8:bc:42:17:97:6e:86:f6:51:68:55:8a:
8a:1d:0a:6f:5c:9c:10:a4:5b:7c:af:b4:4f:92:3a:4c:02:24:
e5:56:2a:29:72:ec:d3:2b:4c:ba:36:56:7f:b4:84:d5:95:a2:
7e:6b:bb:2e:0d:9c:d9:df:05:2e:01:df:a3:76:43:53:3c:0d:
7d:20:49:30:c3:72:38:41:7a:66:20:71:48:a7:53:fe:b0:7e:
97:97:b5:ff:52:d2:d4:f1:d5:e7:95:6b:09:2f:7d:1a:88:bb:
b4:36:87:a8:7f:d6:47:b0:8d:6a:84:8a:a5:f1:f8:40:46:5b:
b3:68:28:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Sep 5 04:27:15 2025 by rpki-client