Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
File: vjcHM7jbYU2qdgoALCQEgCgwDi0.mft (raw, json)
Hash identifier: 13WL5oZwW2Z4+zcGqP9uTlajRmtwVe4Jw6hDuXRulcg=
Subject key identifier: F8:67:BD:A9:E4:BC:C2:65:F2:07:07:D0:70:B8:92:B3:98:62:79:34
Authority key identifier: BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D
Certificate issuer: /CN=be370733b8db614daa760a002c24048028300e2d
Certificate serial: 019A70DBE5CEC67480675B0DA6976A26FCC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
Manifest number: 171E
Signing time: Tue 11 Nov 2025 03:00:50 +0000
Manifest this update: Tue 11 Nov 2025 03:00:50 +0000
Manifest next update: Wed 12 Nov 2025 03:00:50 +0000
Files and hashes: 1: paMGJN73rjp1fa_w9RA1xrwwx18.roa (hash: Z6fxiaAqnra9zk/dGdgt7claLY2U/7DrFceSHabOI5E=)
2: vjcHM7jbYU2qdgoALCQEgCgwDi0.crl (hash: VghaJq7mLFNaZPmtF5yNLO8Hda6yezBQQ+2080Zo9Lk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 03:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:70:db:e5:ce:c6:74:80:67:5b:0d:a6:97:6a:26:fc:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be370733b8db614daa760a002c24048028300e2d
Validity
Not Before: Nov 11 03:00:50 2025 GMT
Not After : Nov 12 03:00:50 2025 GMT
Subject: CN=f867bda9e4bcc265f20707d070b892b398627934
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:0a:c1:12:e7:23:21:14:bc:56:f5:8d:1e:96:
0a:e9:9b:29:1f:b7:2d:5c:c1:5c:29:0b:f8:d4:7c:
23:ea:c8:2b:50:b3:f1:e5:db:ca:0f:3d:a9:e9:fc:
e6:3a:99:07:6e:15:b4:06:c2:80:19:b3:df:84:8a:
e4:36:60:87:69:e7:73:17:b7:46:af:8f:25:35:50:
c9:a2:ae:c2:98:5e:47:dc:b4:33:91:52:cf:35:a9:
45:29:bf:ad:32:8d:71:2a:f7:f6:9b:1b:83:4b:fd:
f3:79:6c:8c:70:5a:b8:17:76:30:73:3b:08:a3:ca:
f5:7d:cd:00:5e:8b:2e:25:6d:89:c2:52:37:75:82:
37:8e:e7:1b:9a:c7:04:46:57:c9:6a:1f:3b:46:22:
7d:7f:61:3b:1b:e6:aa:7d:5e:32:04:7e:3c:82:0e:
7e:11:e4:92:42:2f:eb:00:02:95:73:5d:ec:34:e1:
c1:c5:fb:eb:49:f6:7b:e7:e5:6b:6b:ba:c5:c3:15:
79:0f:54:d9:78:22:fe:7e:91:76:5c:7a:24:78:38:
c5:b2:dd:7c:96:da:27:3e:eb:9f:a4:5f:b0:d3:29:
f4:dc:12:8d:d6:ac:88:9a:a0:1c:88:14:d1:e2:79:
c5:37:a7:34:f6:53:8e:40:1b:3d:b4:b4:d5:62:99:
e1:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:67:BD:A9:E4:BC:C2:65:F2:07:07:D0:70:B8:92:B3:98:62:79:34
X509v3 Authority Key Identifier:
keyid:BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:88:b0:db:62:53:7d:b5:b5:76:0f:92:ac:87:7a:60:43:f0:
4b:ea:f6:c6:61:e7:ce:61:5b:4f:74:32:38:a5:f9:8a:db:1a:
b9:2d:ab:32:3d:7e:ed:9f:6f:92:62:f1:b3:4f:1b:d4:69:ce:
e3:03:7b:ff:02:db:6c:09:05:0b:a7:06:98:a8:33:c1:e4:21:
c5:9f:0c:70:9a:e6:d8:8d:3a:8d:ae:10:21:cc:6f:1d:1d:74:
65:97:9b:76:9f:9f:ee:31:38:4c:64:d1:3f:10:d9:bf:04:a5:
6a:e2:c5:84:83:95:0c:02:51:8b:ca:7e:e9:9e:56:9d:f8:8b:
37:42:41:d0:c0:d8:b5:c4:0b:2f:c3:dd:3f:14:b4:45:6b:b0:
08:10:27:1f:50:38:ea:c7:7b:37:80:4e:4e:41:d2:1d:1b:0c:
d9:4f:15:54:3d:a9:cd:00:d8:8e:83:fa:96:e6:cd:cd:80:5e:
bf:80:5c:82:a7:dd:7d:af:05:d3:c7:20:50:c1:fe:82:23:e6:
e1:f4:d4:ec:4d:88:3e:43:74:0d:d0:8d:45:44:cc:1c:1e:2d:
a6:ad:f8:97:06:0f:a8:56:fa:4b:25:be:6e:22:f0:3c:99:32:
22:a9:da:d0:75:45:35:c9:47:c8:6e:7f:f5:04:6e:6d:95:5b:
81:22:70:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 13:16:23 2025 by rpki-client