Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
File: VytO2SaC1xio_ESIFAAnQGlgeV8.mft (raw, json)
Hash identifier: TxKkXsZIEpjfFrKEa2bf0WKVhugxHk6msYTKyOwncEg=
Subject key identifier: 73:02:FE:13:62:A1:3F:42:E3:97:59:23:14:EF:8A:1A:E3:FB:64:64
Authority key identifier: 57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
Certificate issuer: /CN=572b4ed92682d718a8fc4488140027406960795f
Certificate serial: 019930118485330122D795CEA3249DBF3166
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
Manifest number: 0CD5
Signing time: Tue 09 Sep 2025 20:01:18 +0000
Manifest this update: Tue 09 Sep 2025 20:01:18 +0000
Manifest next update: Wed 10 Sep 2025 20:01:18 +0000
Files and hashes: 1: 8R_SRNPLxmibFS1usJIWud4x3Z8.roa (hash: b2dIcGiMsdbDXAx7DhwSvU4UC5F6aoWQ/Pjpo9tIfQA=)
2: HSPZejR5lJB8cqlG1i1XbvBd4AY.roa (hash: LYg4VkRRLjikz7I2hzCQk0ST28urIdVmK83g08e6nBA=)
3: VytO2SaC1xio_ESIFAAnQGlgeV8.crl (hash: tHPHp9BC6B1GWcty5zC31uzvWgcb75rmRh0tPhWvV9E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 10 Sep 2025 20:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:30:11:84:85:33:01:22:d7:95:ce:a3:24:9d:bf:31:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572b4ed92682d718a8fc4488140027406960795f
Validity
Not Before: Sep 9 20:01:18 2025 GMT
Not After : Sep 10 20:01:18 2025 GMT
Subject: CN=7302fe1362a13f42e397592314ef8a1ae3fb6464
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:9c:0d:e0:53:b6:25:12:a5:a5:99:16:50:bd:
2e:36:32:73:b9:a7:2a:95:ab:3a:9b:6f:e7:dd:f7:
dc:34:a5:0e:09:6b:42:b4:c4:2f:5a:a5:a3:ee:ab:
a3:14:36:1c:19:46:93:e3:af:b4:49:25:db:70:32:
52:4b:46:d7:e2:02:3d:33:52:23:d4:a2:a0:ad:c1:
c3:8c:7b:4d:6a:c9:ef:77:7f:4d:f5:e7:37:db:96:
88:9b:17:51:ee:f5:1d:cc:46:de:6a:3a:67:58:e6:
a4:3e:a2:00:6b:92:17:6d:e7:c0:ba:e3:f2:aa:16:
9e:12:86:39:4a:3d:8f:d6:48:d7:d9:b0:39:42:e2:
45:2b:f2:0b:85:42:5a:f0:3b:08:e8:ee:d4:5b:a0:
27:62:c2:2c:8f:63:2a:70:80:cb:91:55:d5:10:78:
ad:f5:13:f1:1c:79:77:1a:48:db:ef:0d:08:9c:28:
2b:d1:6e:29:fc:4d:88:f1:26:2e:7f:2c:00:2c:c8:
a3:5b:9c:df:a3:ba:f4:e3:d9:45:f2:28:5b:c9:2e:
8b:f3:50:9c:26:95:38:fd:6e:a9:e0:d8:ea:e1:35:
1a:77:61:f0:11:b9:80:65:ef:0d:01:e3:77:4c:3e:
de:25:88:44:73:46:e0:36:2e:19:a4:37:57:8f:09:
a4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:02:FE:13:62:A1:3F:42:E3:97:59:23:14:EF:8A:1A:E3:FB:64:64
X509v3 Authority Key Identifier:
keyid:57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:51:d3:b5:96:94:9e:8f:cd:74:cf:43:9e:9d:9a:02:84:83:
4b:83:23:c9:30:8e:2b:50:5b:a0:2f:bb:d1:2b:34:d3:65:8b:
5c:40:92:47:a8:94:ab:cb:69:b1:2a:87:24:15:70:5c:8f:0d:
8e:9e:aa:e4:7a:16:ea:23:c0:78:98:af:4b:91:1d:e2:e8:77:
43:87:e5:41:f3:4a:7f:1a:39:b2:19:2f:82:6d:53:19:67:1e:
ca:92:15:f2:ac:6b:95:6a:37:26:4a:3b:c4:f8:c7:3e:7c:cd:
f6:ec:f9:fa:bd:e1:c6:8d:f3:55:66:29:0c:5f:7e:21:92:56:
b9:87:8e:4b:0b:d3:a3:cf:67:3b:ae:e2:d3:f0:da:8a:29:25:
2b:e3:ca:25:c9:e7:52:32:cb:b0:71:c8:15:34:f0:b3:e4:d9:
d4:cb:32:c9:b9:0f:1a:0d:41:76:e7:9a:fa:3c:82:ed:ed:a9:
13:b9:73:99:86:16:49:32:29:84:5f:61:7e:7d:ba:48:b9:8d:
91:26:be:d2:58:04:ea:85:fe:38:87:57:0c:e2:f0:6d:e7:2e:
53:f2:c1:6b:07:02:06:2a:12:12:d9:ee:e6:5f:91:36:cd:ff:
83:af:b7:11:73:69:2a:d3:3d:e3:e7:c4:cb:05:d6:69:aa:07:
89:e8:12:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Sep 10 04:17:01 2025 by rpki-client