Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: Gu+7joxEZYDTe0r/chNX21mP1glUa8NraqdjnGglPWs=
Subject key identifier: 5B:18:BC:B7:15:A7:76:AE:D3:AE:DF:84:F9:0A:97:EA:7C:3A:B4:19
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 0199239F084D5180FF16CF47BCFD1B13DAEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 099C
Signing time: Sun 07 Sep 2025 10:00:48 +0000
Manifest this update: Sun 07 Sep 2025 10:00:48 +0000
Manifest next update: Mon 08 Sep 2025 10:00:48 +0000
Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: JD+ujuXS4Cir0I16Y7NBd3MjT0gnI4LIEspjbRxXl0w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 07:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:08:4d:51:80:ff:16:cf:47:bc:fd:1b:13:da:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Sep 7 10:00:48 2025 GMT
Not After : Sep 8 10:00:48 2025 GMT
Subject: CN=5b18bcb715a776aed3aedf84f90a97ea7c3ab419
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c0:54:86:bc:34:38:47:44:91:df:da:18:8d:
25:a8:48:e8:ea:25:6f:d3:23:86:46:1d:d5:03:f7:
31:75:4a:d5:38:2c:73:f7:15:eb:c6:48:e5:6f:50:
0c:4e:3b:29:1c:ca:27:9e:5c:0c:92:4b:53:3d:06:
7b:6c:15:39:73:ff:32:f0:d6:f0:a0:ae:80:77:e5:
9b:32:91:4c:de:f6:11:a8:6d:41:09:e1:63:aa:62:
fa:c2:d5:69:a9:c1:29:0d:0f:37:cc:c9:8c:6a:a8:
c6:84:a5:ea:33:fc:9c:f7:28:fc:49:96:3f:f3:21:
cc:a2:e6:f9:4c:9c:0b:00:60:0f:27:e6:08:7e:24:
e7:76:f4:5b:7e:c7:0b:bb:f7:20:43:8a:6c:09:5e:
a6:6e:96:cd:67:e9:ed:44:ee:fd:8c:13:0b:bf:42:
8f:a8:de:d1:28:69:9a:1a:cc:75:14:35:c2:37:bd:
23:23:a3:d9:55:aa:f4:96:47:f0:13:6d:c4:a2:47:
2b:35:3b:3f:9f:15:ae:00:9b:e6:00:86:b5:6c:f2:
28:25:45:cf:57:d2:4b:fb:dd:d4:75:79:90:80:37:
88:d8:fb:87:44:d9:e1:a5:b0:1b:52:be:4b:53:69:
94:1a:54:b7:7f:7a:c9:85:6f:0f:80:3d:a1:7e:61:
db:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:18:BC:B7:15:A7:76:AE:D3:AE:DF:84:F9:0A:97:EA:7C:3A:B4:19
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:89:d9:34:16:99:23:6e:b6:0e:4b:92:33:85:e9:8f:8a:c5:
74:6b:15:bb:55:58:90:67:aa:07:19:f0:7d:6e:e6:06:d1:c7:
20:75:16:98:57:1c:c3:2a:6d:14:d3:74:bc:a5:7c:55:37:40:
c0:bf:bb:e9:d1:1a:cd:ba:0d:5f:6b:14:a4:1e:c2:4e:df:c4:
bd:97:d3:1e:35:95:22:a5:18:10:e4:05:80:8c:fd:a5:a4:94:
65:f6:a2:89:b0:df:85:47:10:ac:37:17:2a:ac:ab:a4:37:8e:
51:61:fa:79:cd:ce:71:d8:c8:67:e9:e8:ce:5f:5f:43:71:86:
7b:18:f6:91:6a:0b:78:3d:47:f6:ac:6f:ee:6f:22:9c:93:94:
dd:9d:51:72:a6:c6:a4:f9:28:df:53:4d:55:6d:70:cb:f1:bf:
d9:e5:9f:a7:5c:8e:94:84:d0:8d:6f:5f:0f:49:04:eb:37:b2:
12:cd:9a:3a:d2:40:48:a8:4e:d8:aa:a7:9c:19:8e:44:4d:31:
d9:73:e1:1e:ff:4b:5e:00:31:90:30:ef:27:48:83:bb:0b:dc:
ee:fe:68:d4:81:28:d1:f9:9e:da:30:fb:08:df:ad:55:4b:f6:
15:16:de:97:c6:29:91:f1:dd:db:95:a6:53:73:22:d2:80:15:
66:ce:2b:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 13:54:34 2025 by rpki-client