Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
File: VvciqIWr65qv-zLadk7wkbWyA0A.mft (raw, json)
Hash identifier: i7ae4Ho3RyIH9d6UxTSEiE7CRx33Aq4M5Q07QSqO4Cs=
Subject key identifier: DA:D0:F5:E1:42:3D:65:5F:7D:B0:C3:A7:A5:A5:DF:F8:EB:00:13:E3
Authority key identifier: 56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
Certificate issuer: /CN=56f722a885abeb9aaffb32da764ef091b5b20340
Certificate serial: 019A64D81CBED718C981FE22E0C861EC95B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
Manifest number: 0A3A
Signing time: Sat 08 Nov 2025 19:01:15 +0000
Manifest this update: Sat 08 Nov 2025 19:01:15 +0000
Manifest next update: Sun 09 Nov 2025 19:01:15 +0000
Files and hashes: 1: VvciqIWr65qv-zLadk7wkbWyA0A.crl (hash: cK8+FhlKqyTSNuyUAvili2mBxRbxfcEhiQadqDpbPjM=)
2: vpimmj50rM3b693dSW6yAkLWvvA.roa (hash: 5VKPzqmzdczcoLOJtvbaVQfmAQ+1p8lObAjIuI3KfsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 09 Nov 2025 18:36:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:64:d8:1c:be:d7:18:c9:81:fe:22:e0:c8:61:ec:95:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56f722a885abeb9aaffb32da764ef091b5b20340
Validity
Not Before: Nov 8 19:01:15 2025 GMT
Not After : Nov 9 19:01:15 2025 GMT
Subject: CN=dad0f5e1423d655f7db0c3a7a5a5dff8eb0013e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:39:c2:63:9a:bc:5e:eb:ad:48:28:50:58:84:
24:b9:75:4d:83:a9:ce:b9:0c:da:c8:75:47:63:9a:
97:b3:74:98:4d:22:20:2e:6a:a1:be:46:84:a6:68:
ce:ad:f9:ce:8b:6b:e8:23:c2:b1:e0:2c:a5:fe:af:
06:a5:f9:63:ee:cb:75:0f:be:e2:55:a1:1b:4f:a3:
81:e5:2f:40:2b:b3:14:f7:b0:e2:6a:4c:6e:39:ff:
5a:94:72:4f:51:f7:af:bd:ec:93:b8:a3:a3:fa:11:
46:5e:bd:dd:04:73:7b:97:38:bf:8b:9a:9f:58:62:
b4:d6:fd:62:73:d4:79:89:dc:8f:13:e9:98:f7:4a:
aa:5f:c3:e6:3b:6f:c9:07:97:19:9e:08:8a:3b:07:
dd:a7:26:e9:78:73:92:0a:00:a1:9f:6c:b6:c3:1c:
c3:90:e6:3d:ea:18:f0:61:d8:80:a9:18:05:76:e8:
d9:7a:1f:dd:9b:e6:2c:c1:8b:f6:e0:9e:42:cf:7b:
40:fd:8b:aa:09:ab:0a:76:88:17:c3:57:64:c9:04:
d6:c6:bf:25:34:0d:9c:3a:52:78:7a:b6:1c:10:cb:
55:ec:a7:87:cd:90:6a:5e:fc:65:8f:73:bd:90:36:
3d:41:bf:50:54:17:6d:68:af:3e:9c:df:93:14:6d:
a2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:D0:F5:E1:42:3D:65:5F:7D:B0:C3:A7:A5:A5:DF:F8:EB:00:13:E3
X509v3 Authority Key Identifier:
keyid:56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d3:08:e9:99:d1:b8:e3:74:15:84:83:13:4d:5d:d3:7c:b5:66:
cb:ab:07:95:dd:5a:9a:4a:86:98:41:8b:4f:ba:83:40:87:84:
57:de:98:da:d6:94:96:71:b3:4d:6d:dd:c3:71:8a:4a:25:d6:
32:fb:da:79:4c:c1:c8:86:77:ef:4c:8f:81:e6:17:c3:b7:cc:
7d:24:c2:c8:cd:ef:85:aa:ac:c3:99:ec:05:85:de:49:ca:8d:
4a:27:1b:7e:5f:58:03:77:9f:47:ef:2f:b7:72:4c:00:6c:dd:
f9:53:d3:6d:62:32:af:1c:40:b6:71:1b:8d:e1:b0:f9:cb:d0:
1e:2a:f1:f7:4f:c6:22:1e:35:f1:1e:f0:df:b3:7b:e4:3f:db:
c0:3e:c3:f8:f4:ef:12:82:84:9f:e5:9d:66:c2:2a:8f:87:90:
02:28:b8:bf:14:a2:24:16:8f:ae:7a:65:49:cf:a5:32:e0:df:
d6:2c:46:91:63:5c:c3:f4:51:d2:56:7e:ef:54:54:77:9c:03:
a0:53:b0:43:28:3d:9c:63:5e:bf:62:69:20:ec:c3:36:da:47:
63:a6:8c:92:21:86:5d:69:7f:1c:c5:c0:f1:4d:96:ad:08:85:
3f:58:70:5b:87:ae:46:dd:dd:5a:8e:c0:d8:5c:42:a0:95:d7:
48:9b:db:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 8 21:41:40 2025 by rpki-client