Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
File: VKzhXkXvtaAGDAZeJ06o46-wJes.mft (raw, json)
Hash identifier: YJTDy6Zj4SyU1c9PJrDhSdE9LKqHifzXSf1cUxZbFCg=
Subject key identifier: 94:BC:3D:85:4C:8D:DD:07:60:E1:12:A5:15:65:EC:50:98:77:A9:7C
Authority key identifier: 54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
Certificate issuer: /CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Certificate serial: 0199221F04169C30D2DBEFDB21A908542373
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
Manifest number: 1670
Signing time: Sun 07 Sep 2025 03:01:21 +0000
Manifest this update: Sun 07 Sep 2025 03:01:21 +0000
Manifest next update: Mon 08 Sep 2025 03:01:21 +0000
Files and hashes: 1: VKzhXkXvtaAGDAZeJ06o46-wJes.crl (hash: Zl63WmbXEbNqMSP3nSzAYFx2eaw/1pueg8bTy/z10HI=)
2: agadNAkdL8gZSJjhebbq78b-GQQ.roa (hash: AWs3/nEl7KZJPMZNEu10pqsOCcoVUqcD7DcXZsQJMg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:04:16:9c:30:d2:db:ef:db:21:a9:08:54:23:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Validity
Not Before: Sep 7 03:01:21 2025 GMT
Not After : Sep 8 03:01:21 2025 GMT
Subject: CN=94bc3d854c8ddd0760e112a51565ec509877a97c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:75:76:c6:5c:82:d3:91:e9:3c:b7:c9:7d:76:
82:37:e2:2e:36:13:60:d3:6b:99:3a:d5:10:58:5b:
84:15:a2:3e:12:ff:50:b0:84:de:36:72:bb:00:84:
85:e3:81:ae:c2:aa:fc:71:6c:8f:0e:0b:6f:51:34:
e8:ca:3d:07:42:e3:96:f9:7e:98:d4:01:34:7c:74:
bb:19:1d:ff:31:b9:d1:19:86:29:7e:73:bb:4a:48:
80:37:6c:7a:c2:ad:18:c3:b5:08:54:d8:38:ed:9b:
7a:cc:4c:5f:7b:2f:22:ca:e5:96:40:94:63:2a:bc:
89:6c:38:94:0c:ea:9a:a4:5f:99:bc:57:19:1c:77:
02:9d:8f:96:fd:51:17:eb:02:bc:f2:5c:5c:24:a5:
9a:87:a3:39:61:b9:7a:65:07:82:57:69:a4:1b:bd:
75:b0:19:86:2a:1a:cb:19:3f:21:d1:20:b0:8a:f9:
ba:4b:69:d5:e7:2b:54:51:5b:5c:26:2e:38:d5:2d:
ed:50:06:5c:63:9c:f4:8f:b2:88:8e:07:4f:62:42:
0b:a8:83:1a:97:82:57:d1:ce:ec:e9:77:27:c0:f3:
93:bd:46:32:c5:22:27:b6:46:d3:42:80:2d:a9:a4:
79:16:5b:8a:fe:0a:a3:2f:a2:44:16:bb:28:75:30:
ff:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:BC:3D:85:4C:8D:DD:07:60:E1:12:A5:15:65:EC:50:98:77:A9:7C
X509v3 Authority Key Identifier:
keyid:54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:cb:74:fb:1c:3d:22:4d:0c:7c:d3:d9:3d:a8:d4:52:a0:27:
63:0b:06:62:2d:f6:b1:f7:fb:02:82:0e:07:29:2f:ee:15:33:
97:7a:e5:03:b0:3c:4d:84:38:f4:23:71:b8:21:7f:f5:63:dd:
cd:e8:d6:1a:fa:d9:bb:f0:dc:57:e0:14:7d:7e:18:c1:8f:f2:
63:56:0a:01:86:88:bc:4d:c1:90:5d:e7:df:ed:ea:18:7c:31:
03:c5:9d:35:5d:0d:5d:74:8f:e7:e4:e2:66:08:e1:76:58:8c:
5b:c4:43:e9:5a:00:6e:ad:c3:7b:c9:7d:ca:e5:7d:06:1b:55:
f6:6a:c2:6d:6d:ba:a3:ec:d1:34:57:6d:c8:6e:b9:e5:77:fd:
1c:f3:12:6d:9e:70:bb:a2:9a:f7:a7:ad:85:ab:5e:03:2b:9d:
fe:a0:33:60:fa:b2:b2:d4:de:ed:6b:48:90:de:7a:6a:1f:af:
8f:55:bb:d0:6b:57:5a:db:24:7c:82:bb:79:9c:11:53:53:c0:
8e:2e:d2:df:f3:d5:b5:6c:b7:04:91:62:ea:b3:47:97:b7:28:
b5:eb:32:d8:78:56:3b:2f:b0:a1:ff:4f:93:cd:54:82:94:10:
f4:62:19:ba:f1:45:3d:92:20:98:92:fb:6d:4d:1b:0c:08:70:
a8:00:31:c0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZkiHwQWnDDS2+/bIakIVCNzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0YWNlMTVlNDVlZmI1YTAwNjBjMDY1ZTI3NGVhOGUzYWZi
MDI1ZWIwHhcNMjUwOTA3MDMwMTIxWhcNMjUwOTA4MDMwMTIxWjAzMTEwLwYDVQQD
Eyg5NGJjM2Q4NTRjOGRkZDA3NjBlMTEyYTUxNTY1ZWM1MDk4NzdhOTdjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvnV2xlyC05HpPLfJfXaCN+IuNhNg
02uZOtUQWFuEFaI+Ev9QsITeNnK7AISF44Guwqr8cWyPDgtvUTToyj0HQuOW+X6Y
1AE0fHS7GR3/MbnRGYYpfnO7SkiAN2x6wq0Yw7UIVNg47Zt6zExfey8iyuWWQJRj
KryJbDiUDOqapF+ZvFcZHHcCnY+W/VEX6wK88lxcJKWah6M5Ybl6ZQeCV2mkG711
sBmGKhrLGT8h0SCwivm6S2nV5ytUUVtcJi441S3tUAZcY5z0j7KIjgdPYkILqIMa
l4JX0c7s6XcnwPOTvUYyxSIntkbTQoAtqaR5FluK/gqjL6JEFrsodTD/SQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJS8PYVMjd0HYOESpRVl7FCYd6l8MB8GA1UdIwQY
MBaAFFSs4V5F77WgBgwGXidOqOOvsCXrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEt
YWQyYjYxMzgwYmUxLzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEtYWQyYjYxMzgwYmUx
LzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArct0+xw9
Ik0MfNPZPajUUqAnYwsGYi32sff7AoIOBykv7hUzl3rlA7A8TYQ49CNxuCF/9WPd
zejWGvrZu/DcV+AUfX4YwY/yY1YKAYaIvE3BkF3n3+3qGHwxA8WdNV0NXXSP5+Ti
ZgjhdliMW8RD6VoAbq3De8l9yuV9BhtV9mrCbW26o+zRNFdtyG655Xf9HPMSbZ5w
u6Ka96ethateAyud/qAzYPqystTe7WtIkN56ah+vj1W70GtXWtskfIK7eZwRU1PA
ji7S3/PVtWy3BJFi6rNHl7cotesy2HhWOy+wof9Pk81UgpQQ9GIZuvFFPZIgmJL7
bU0bDAhwqAAxwA==
-----END CERTIFICATE-----
Generated at Sun Sep 7 10:01:46 2025 by rpki-client