Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
File: VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft (raw, json)
Hash identifier: uAwJlujT4QrlziIvb1U/cf/5MVaQulIPZy47HafYTI8=
Subject key identifier: CF:8F:64:E7:53:52:35:A0:94:31:EE:E8:AE:75:96:59:BB:C8:D3:56
Authority key identifier: 55:9A:76:94:12:D2:D9:63:B4:91:EB:E3:1D:44:11:1D:CA:FC:CC:94
Certificate issuer: /CN=559a769412d2d963b491ebe31d44111dcafccc94
Certificate serial: 019921B24E619B85DDC983ACC6EAB1DA5A4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
Manifest number: 0554
Signing time: Sun 07 Sep 2025 01:02:37 +0000
Manifest this update: Sun 07 Sep 2025 01:02:37 +0000
Manifest next update: Mon 08 Sep 2025 01:02:37 +0000
Files and hashes: 1: VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl (hash: NW5cRImnSge0JV7TNaZN4zDWnKKvltgGLMnA3N+NNxw=)
2: r1lquQ-XjIWjOg1LAkyGn6KMjo0.roa (hash: wZhXEM3Xxa5+Fz5oyJ1++QkvfDJcpfPRAfCqMyTq70w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 01:02:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:21:b2:4e:61:9b:85:dd:c9:83:ac:c6:ea:b1:da:5a:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=559a769412d2d963b491ebe31d44111dcafccc94
Validity
Not Before: Sep 7 01:02:37 2025 GMT
Not After : Sep 8 01:02:37 2025 GMT
Subject: CN=cf8f64e7535235a09431eee8ae759659bbc8d356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:a7:2d:b3:0e:72:62:61:c3:98:2b:05:d8:68:
6a:a9:05:d7:0e:81:28:17:c4:62:fe:58:b5:a7:5d:
43:18:e5:63:29:b1:e8:db:40:dd:bc:f0:b5:d7:8d:
5a:c3:8c:5d:cd:6d:77:99:8d:e1:e3:24:80:8f:64:
72:c3:7e:78:3e:9c:18:4d:82:4c:cf:8f:63:22:0b:
f2:e2:6e:24:9c:37:1b:5f:20:4a:71:dd:9f:2c:9f:
f7:1e:34:a5:9b:c7:1b:24:36:48:b9:5f:9e:28:a6:
a1:17:e1:90:c9:7d:08:83:46:d0:e8:a7:37:30:50:
77:47:ea:29:9d:aa:5b:ee:62:05:76:26:53:ee:8e:
6f:21:8e:8b:74:b3:b0:36:7e:40:f2:a2:5f:cf:2c:
63:55:8f:92:aa:52:b2:67:a2:12:72:cd:a7:16:bd:
b0:4e:52:db:ed:9b:7c:a1:0a:8d:2d:12:5f:9a:7b:
76:ff:c7:52:16:14:53:29:f7:15:1e:c3:1c:4d:5c:
a5:bf:af:32:f9:4a:fd:87:37:df:4b:d2:ca:96:4d:
95:5e:20:09:ba:48:2b:bf:af:18:c5:48:13:0f:7c:
10:d9:a6:a5:ed:88:1c:c5:15:92:c2:dd:81:b2:5a:
a6:18:c4:62:2b:69:61:eb:39:11:39:c3:53:92:58:
05:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:8F:64:E7:53:52:35:A0:94:31:EE:E8:AE:75:96:59:BB:C8:D3:56
X509v3 Authority Key Identifier:
keyid:55:9A:76:94:12:D2:D9:63:B4:91:EB:E3:1D:44:11:1D:CA:FC:CC:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:69:20:35:69:75:4d:17:48:ae:5c:50:b4:2c:9e:82:03:c7:
ae:fb:a1:52:57:ca:96:bb:d9:77:35:74:68:c2:2c:6e:50:d9:
61:c6:bd:8d:44:55:a5:19:ec:1c:42:d8:71:78:32:39:f4:84:
8e:23:34:33:55:f1:2a:a5:94:b4:ce:66:af:b8:f6:73:d0:64:
bf:1e:a3:2c:b3:ff:37:a5:80:bd:d7:97:93:06:13:35:68:be:
10:c6:ed:7a:db:36:8b:21:c2:6c:3a:42:54:ef:ea:f7:db:9d:
54:45:b0:d6:0d:39:67:0c:f0:6f:c3:99:0a:62:c0:80:b1:f7:
42:cd:e1:65:9c:55:03:3c:20:7a:b7:55:e1:9e:0a:bc:f0:58:
50:cf:d1:24:76:f8:51:43:5a:ca:c5:02:56:58:69:67:46:e1:
be:db:3c:51:56:c0:ab:12:c0:23:47:c3:f9:5f:e7:06:8e:b2:
98:af:4d:9b:68:3a:79:94:e1:61:03:dc:43:04:59:4b:e8:9b:
57:d5:fd:f0:93:1e:f2:80:1c:1a:3e:9b:ad:47:e4:ab:f6:10:
63:0b:8e:17:94:14:85:4f:e2:65:8c:1e:cf:ba:7e:ca:af:89:
b3:a5:40:d2:81:50:42:3f:2a:b3:49:fb:28:f3:05:3c:79:0d:
08:8c:26:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:16:15 2025 by rpki-client