Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
File: VvciqIWr65qv-zLadk7wkbWyA0A.mft (raw, json)
Hash identifier: BR9TtUGGUc08eUmui5WJWNP8vtX7Du91x2NY4T4L7Ds=
Subject key identifier: 71:70:4C:23:D5:60:94:63:A7:D4:E7:6F:06:20:2A:EE:AA:DF:08:F4
Authority key identifier: 56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
Certificate issuer: /CN=56f722a885abeb9aaffb32da764ef091b5b20340
Certificate serial: 019965ED36329E3CA02A8093EC5353905CC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
Manifest number: 09B6
Signing time: Sat 20 Sep 2025 07:01:08 +0000
Manifest this update: Sat 20 Sep 2025 07:01:08 +0000
Manifest next update: Sun 21 Sep 2025 07:01:08 +0000
Files and hashes: 1: VvciqIWr65qv-zLadk7wkbWyA0A.crl (hash: yG1Brqfjj0s68HXEGxcJS48VxvUNez4Nwk+sLICimJU=)
2: vpimmj50rM3b693dSW6yAkLWvvA.roa (hash: 5VKPzqmzdczcoLOJtvbaVQfmAQ+1p8lObAjIuI3KfsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 21 Sep 2025 00:54:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:65:ed:36:32:9e:3c:a0:2a:80:93:ec:53:53:90:5c:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56f722a885abeb9aaffb32da764ef091b5b20340
Validity
Not Before: Sep 20 07:01:08 2025 GMT
Not After : Sep 21 07:01:08 2025 GMT
Subject: CN=71704c23d5609463a7d4e76f06202aeeaadf08f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:8a:4d:87:0a:7b:fd:6e:47:fe:9d:91:f7:4c:
16:7d:01:dc:08:93:97:82:a5:62:ca:7c:db:b0:46:
c3:72:6b:57:9d:e9:32:0b:0b:96:f9:df:ec:b9:c4:
7d:3a:39:d3:f9:cb:60:a8:7c:50:58:dd:05:c6:e7:
3d:a9:4a:d4:93:f6:8b:a3:99:1d:c2:6b:b8:f3:0a:
bb:b5:ad:3f:53:29:3d:d8:eb:18:76:c4:d6:37:7e:
40:75:55:86:f7:6f:55:66:19:14:71:18:76:24:bc:
f6:db:94:52:f7:ce:ff:b1:5a:4a:61:55:cd:b7:73:
ba:27:f9:1c:2b:10:35:0f:f2:03:1f:e6:76:c3:7d:
09:69:2b:b9:3f:66:02:07:bf:af:00:e1:f8:e3:31:
e6:73:24:c1:ca:14:88:6b:2c:c0:ee:ff:87:1f:ff:
cc:a7:78:6d:a6:16:41:ab:9d:c2:6b:9e:47:83:98:
7e:fd:e3:87:46:9b:25:29:47:a9:df:35:9a:fc:c2:
32:e5:7f:73:ab:b6:8a:1f:75:cf:75:5a:0d:a9:9c:
b1:48:fb:04:ea:7e:d3:d7:be:0d:4a:e9:20:e8:9b:
a5:a5:06:32:24:b8:43:e6:f4:e6:8a:76:3d:75:49:
a0:fe:7b:08:46:1a:24:5e:24:d0:f0:67:6c:e6:70:
cc:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:70:4C:23:D5:60:94:63:A7:D4:E7:6F:06:20:2A:EE:AA:DF:08:F4
X509v3 Authority Key Identifier:
keyid:56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c5:0d:17:83:1e:72:19:14:08:2b:3f:23:c7:e8:59:26:73:9c:
98:f5:5d:1f:8c:d7:fb:a5:fa:47:d0:b9:15:33:de:c4:96:92:
ce:10:0f:5d:c1:b7:41:0b:ff:8e:89:9d:ef:ad:f2:d6:00:6f:
e3:74:92:66:ee:c5:d3:8b:50:fc:90:06:f2:0a:f0:d8:f4:13:
b4:c9:06:c7:8a:38:39:d8:9b:af:22:63:b8:61:04:0e:fe:b3:
dc:f5:a6:9b:ca:67:95:ec:02:92:0c:10:9c:fe:11:72:2a:a4:
20:9b:12:9b:d1:b0:b0:23:e8:ac:5d:64:e2:7d:12:b7:3c:45:
fc:d3:70:7d:76:b7:d1:7b:92:9b:a1:4d:22:80:86:30:16:92:
4b:16:a0:ff:f6:fe:c9:a0:87:7d:19:66:30:39:30:32:2a:61:
25:52:ad:15:74:f6:3f:93:35:65:5f:8b:ec:22:92:c4:e4:16:
67:e7:60:11:02:9e:24:da:ee:ee:a3:42:81:6e:51:b6:c9:3e:
9f:ac:1b:6b:49:76:a0:88:ac:b1:11:3c:78:fa:be:39:e7:f3:
45:77:a6:cf:b0:c5:80:10:58:14:9c:85:47:f8:a5:2c:99:54:
94:16:f3:ec:c9:9e:45:63:a8:5b:7c:9f:24:42:33:50:1e:cd:
b1:05:bb:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 20 09:09:15 2025 by rpki-client