Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
File: vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json)
Hash identifier: 1EVOBZ8g46MtLIMmK6JZjKDlC9I1YgM8OBYnHzop4rg=
Subject key identifier: B6:9D:23:83:1B:68:81:CD:F3:27:D3:71:4E:68:CB:22:4C:EA:86:CE
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial: 019923315FA4AA6EDD61B946492800400C19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
Manifest number: 154A
Signing time: Sun 07 Sep 2025 08:01:02 +0000
Manifest this update: Sun 07 Sep 2025 08:01:02 +0000
Manifest next update: Mon 08 Sep 2025 08:01:02 +0000
Files and hashes: 1: rEdLOhgJ5xMWvLwmv0wizm-cOW0.roa (hash: 5KEvRv7KqMLhpYGvFA0tU5bp6PFE1qlP3ELvibmeSX4=)
2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: W8FttgoHiJF5ftDpmPEFzHqzFWl9QLRRA4Ris6W32OE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:5f:a4:aa:6e:dd:61:b9:46:49:28:00:40:0c:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Validity
Not Before: Sep 7 08:01:02 2025 GMT
Not After : Sep 8 08:01:02 2025 GMT
Subject: CN=b69d23831b6881cdf327d3714e68cb224cea86ce
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:da:cf:87:63:e0:f3:ca:6b:c1:94:2b:62:97:
36:65:2a:02:24:cc:ed:e3:be:1b:4d:9c:9c:b9:06:
75:a7:b3:58:88:d7:d7:17:e7:34:0d:47:b9:a5:d1:
6e:85:f1:a9:96:bb:43:6c:aa:0b:ea:e7:d1:ec:62:
f0:0c:69:53:dc:66:62:29:36:03:84:11:88:49:da:
bd:e0:8a:4d:05:52:67:72:b5:05:d6:f6:01:eb:38:
dd:28:51:b3:96:fb:61:5c:52:45:35:b2:ca:85:f2:
5b:18:ed:e4:48:6b:bb:20:e8:db:2b:18:fb:ad:71:
77:78:46:66:71:8f:8f:af:44:69:a0:5a:c0:9d:ba:
73:bc:77:7e:43:d2:da:7a:97:e4:78:5b:f6:95:3b:
86:07:99:45:85:b6:db:9e:3a:0e:3d:df:48:96:b3:
d0:95:fa:55:a2:74:2f:ec:b0:3e:fc:3a:5f:57:6c:
49:e5:00:b7:f0:a7:db:5e:7e:b3:32:d0:f4:35:a6:
eb:e2:51:e4:b4:6a:49:91:cc:62:07:7f:ed:c4:ac:
3b:dc:d1:0b:f9:5f:52:4d:ae:4a:e6:0a:15:9b:3e:
8e:0e:cb:04:fc:20:45:c7:eb:51:90:80:81:1c:8c:
6e:26:df:fe:54:23:82:8e:f4:da:e7:e4:6c:16:a2:
82:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:9D:23:83:1B:68:81:CD:F3:27:D3:71:4E:68:CB:22:4C:EA:86:CE
X509v3 Authority Key Identifier:
keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:f7:83:ff:39:27:dd:63:bf:8e:71:92:0e:84:7b:2d:8b:24:
e2:42:7d:c6:59:3b:08:3f:dc:66:ec:44:b9:73:e8:49:91:3c:
da:6a:71:d9:15:ee:27:68:d9:c4:61:9b:ed:67:56:f1:44:29:
df:e9:3f:be:c1:cf:0f:ef:e2:f7:8c:a1:c2:39:6c:9a:b3:a1:
c3:3c:72:3c:11:68:41:cf:14:41:de:80:50:ce:b2:5a:1c:8b:
66:fa:07:58:01:ff:f5:74:f4:e6:13:04:b9:49:e9:44:6e:c8:
8d:46:ab:5d:1d:5c:fb:aa:b5:22:47:06:6d:99:dc:3d:fd:68:
60:39:59:c0:66:28:24:44:96:30:b4:5e:11:94:45:ed:aa:a8:
88:d9:25:99:5f:86:10:5a:81:8c:ec:5d:e2:0a:8f:6f:96:5f:
f0:07:c5:4d:e9:fc:5e:0a:b5:80:45:84:06:2b:15:d4:c6:6e:
d1:f3:2e:60:2e:cd:3e:82:3f:d0:5d:e9:c4:c4:96:94:4f:cb:
2f:b9:4e:0c:3f:bd:7d:ca:e2:a6:d9:4e:e1:f8:cb:c8:e6:5f:
ad:5f:2d:8a:2f:4d:b8:19:fa:17:fb:6c:ee:86:42:05:d2:eb:
7f:41:f9:19:a1:19:54:44:e4:7a:93:7c:0e:3b:ed:ac:67:51:
62:1e:3c:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:20:59 2025 by rpki-client