Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
File: vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft (raw, json)
Hash identifier: gK+t0KM1rAyZagu17CNW/eMngr+U4ceDvW2Yjx03ixE=
Subject key identifier: 65:7D:5E:E0:D3:55:73:46:46:35:BF:FB:E4:E0:9B:B9:31:C9:88:97
Authority key identifier: BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
Certificate issuer: /CN=be5539afe925db80b415efb14c631b2d82c8cedd
Certificate serial: 019A2AE7ADF958084547C8630D84F71F0683
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
Manifest number: 02D7
Signing time: Tue 28 Oct 2025 13:00:17 +0000
Manifest this update: Tue 28 Oct 2025 13:00:17 +0000
Manifest next update: Wed 29 Oct 2025 13:00:17 +0000
Files and hashes: 1: vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl (hash: NgdlwddAeU7fOEFOVTknY5A/F6CN4rY+4wsPBXD7/XQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Oct 2025 13:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:2a:e7:ad:f9:58:08:45:47:c8:63:0d:84:f7:1f:06:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be5539afe925db80b415efb14c631b2d82c8cedd
Validity
Not Before: Oct 28 13:00:17 2025 GMT
Not After : Oct 29 13:00:17 2025 GMT
Subject: CN=657d5ee0d35573464635bffbe4e09bb931c98897
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:15:5c:fc:81:ad:fb:c4:bd:8e:b5:b1:a9:3a:
0b:78:c6:b1:7c:4a:95:06:5d:6c:a5:f1:19:a8:c5:
cc:79:48:33:10:36:7c:1c:fe:8e:2d:97:59:09:52:
63:00:1d:cb:5e:81:93:fd:85:c6:0e:35:96:72:35:
0d:c6:27:09:9a:bb:5b:04:7c:81:b6:91:70:21:cb:
22:05:6c:53:9f:26:84:d2:15:29:8c:84:d6:9a:32:
d0:eb:6f:5b:2d:cb:c6:9d:0d:31:7f:77:29:78:79:
43:8b:79:ea:d3:77:61:f3:50:b3:64:c9:bf:36:b9:
de:21:08:5e:b0:d3:ab:a2:54:e7:6a:b8:a1:82:24:
ab:50:d4:54:8a:cd:28:28:41:ff:73:4c:d6:c5:d1:
58:02:af:e8:c2:83:b6:dc:8f:26:7a:5e:fc:87:13:
c4:cf:44:53:dd:95:00:68:36:66:fe:5b:29:ac:7c:
26:7b:44:c5:db:37:46:d6:f4:66:ee:7a:41:af:a6:
60:96:f1:3c:e1:37:57:a5:77:91:cf:4a:da:bf:41:
89:80:e3:96:db:30:e4:a8:e4:b7:81:e0:96:12:4a:
d0:fb:9c:09:19:97:35:cb:fb:e1:44:d5:be:6d:41:
18:db:e5:fc:19:59:1f:0e:0d:56:85:fa:87:83:25:
1d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:7D:5E:E0:D3:55:73:46:46:35:BF:FB:E4:E0:9B:B9:31:C9:88:97
X509v3 Authority Key Identifier:
keyid:BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:f7:37:01:85:88:a9:c2:e7:d0:fe:da:7a:7a:91:21:0f:ef:
2d:5d:4d:28:d3:31:76:63:87:42:9e:39:bf:3f:fb:15:70:4e:
dd:d0:18:92:a1:5d:0b:21:a0:53:f3:ea:9e:03:48:82:7a:6d:
8a:4a:18:ce:93:04:6b:2e:09:b8:8d:0b:ff:af:34:2f:3c:cd:
fb:92:e6:f5:0c:10:c1:a5:53:44:0a:be:21:af:23:aa:9e:ba:
03:de:f9:9c:c2:47:dc:93:e5:7f:3b:14:a7:c5:87:74:f9:05:
49:c0:f7:05:f7:5c:66:4a:18:57:d9:14:8e:40:a6:2c:38:f3:
62:b7:3e:51:7a:76:4c:1f:ed:cf:8e:d4:a9:b9:4a:df:f8:95:
c5:ed:86:2d:bc:c5:b1:db:07:20:8c:ec:84:53:63:7d:4f:1d:
2d:ed:5f:19:13:a9:e9:7c:28:5f:e0:cb:ee:ab:d9:6d:51:e2:
39:a0:cf:4e:f7:7a:f9:19:f2:ec:da:7b:f1:a6:cf:f6:11:34:
1b:54:b3:ce:db:6f:7e:6e:25:0c:85:26:cf:07:d1:de:40:45:
3d:fa:00:f6:bd:bc:2a:36:2a:ff:e3:33:37:e7:c0:5d:ba:75:
00:a6:0d:d9:73:31:5f:9d:0b:0c:be:a2:07:9f:82:66:eb:e7:
3d:9d:77:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Oct 28 15:53:02 2025 by rpki-client