Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
File: VytO2SaC1xio_ESIFAAnQGlgeV8.mft (raw, json)
Hash identifier: JjnwFrz2ufDNz18oqfYLiIGG62DhAbucYJ1TU57Awgg=
Subject key identifier: 61:19:A6:9A:E5:B8:01:AB:88:92:5C:33:36:26:59:D3:14:F5:11:8C
Authority key identifier: 57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
Certificate issuer: /CN=572b4ed92682d718a8fc4488140027406960795f
Certificate serial: 019A217726F371CBF63896CD247552E69464
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
Manifest number: 0D52
Signing time: Sun 26 Oct 2025 17:00:48 +0000
Manifest this update: Sun 26 Oct 2025 17:00:48 +0000
Manifest next update: Mon 27 Oct 2025 17:00:48 +0000
Files and hashes: 1: 8R_SRNPLxmibFS1usJIWud4x3Z8.roa (hash: b2dIcGiMsdbDXAx7DhwSvU4UC5F6aoWQ/Pjpo9tIfQA=)
2: HSPZejR5lJB8cqlG1i1XbvBd4AY.roa (hash: LYg4VkRRLjikz7I2hzCQk0ST28urIdVmK83g08e6nBA=)
3: VytO2SaC1xio_ESIFAAnQGlgeV8.crl (hash: N+RIFCGINA4o3hxVWoZozA1UG0EMqIB3jJ2Sx2A4mAI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 27 Oct 2025 14:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:21:77:26:f3:71:cb:f6:38:96:cd:24:75:52:e6:94:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572b4ed92682d718a8fc4488140027406960795f
Validity
Not Before: Oct 26 17:00:48 2025 GMT
Not After : Oct 27 17:00:48 2025 GMT
Subject: CN=6119a69ae5b801ab88925c33362659d314f5118c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:93:e6:47:fe:e2:81:92:33:c8:0f:5a:9c:d8:
fe:44:eb:8c:eb:9c:37:78:a8:68:a7:90:fd:99:f3:
d0:f6:a3:42:db:fa:82:b6:a9:ba:ab:2c:b2:de:da:
95:7c:2f:13:33:4e:c5:1b:c8:f8:f5:d9:0a:81:d8:
ab:13:eb:14:56:57:0a:64:1a:97:cc:2f:84:34:20:
96:fc:b7:55:02:66:57:e0:39:2b:00:e6:b1:45:e8:
d5:7e:4b:34:f4:80:7c:7f:a8:0d:b6:7f:6f:7e:7f:
61:1b:21:d7:dd:40:12:ff:b6:54:b7:8e:14:fb:20:
13:11:f4:a7:f0:8a:b7:d2:2d:b6:35:d1:46:ed:c7:
ad:ac:53:40:12:dd:7d:ef:77:e2:ed:a6:49:ee:08:
5f:9b:70:ce:d9:92:e5:be:9d:89:5d:bd:a4:18:e5:
8f:02:00:68:11:45:9c:aa:b6:88:ef:16:5b:c4:c9:
d6:55:b0:e8:af:5d:c9:6a:64:64:dd:3d:88:bf:57:
43:6c:75:61:6a:f6:c7:b7:2c:7d:e1:d4:0c:d9:73:
73:3a:11:9b:ad:27:d4:c8:6e:04:9e:0c:c6:a0:8e:
8e:9c:07:03:80:e2:1f:ae:0b:ae:da:ac:d6:4f:bf:
15:04:75:f4:6c:f8:3d:34:16:b0:4b:8f:d4:86:cb:
e5:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:19:A6:9A:E5:B8:01:AB:88:92:5C:33:36:26:59:D3:14:F5:11:8C
X509v3 Authority Key Identifier:
keyid:57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:28:66:4d:9d:76:b7:b4:dd:30:c8:5c:e8:d4:55:e1:1e:ac:
e4:e9:fa:d7:ac:df:a1:83:f1:ab:d3:70:e9:1e:b0:ec:59:9b:
90:ef:e0:ed:de:c5:17:c8:88:e7:37:db:2f:f3:e9:71:88:5a:
82:c9:9e:b6:c5:36:e7:05:a7:1d:be:3d:07:32:e4:02:2f:c5:
7b:28:89:f6:f2:70:e8:01:84:a5:b4:1c:1d:41:5d:cd:84:af:
ad:a0:d2:90:38:9f:03:44:b4:80:ba:ea:b1:b9:8e:3f:63:8d:
c6:4c:eb:4c:46:41:2a:a5:91:2d:43:18:14:77:6c:55:1e:d8:
e4:1a:e3:5b:60:5d:60:7f:00:07:72:ed:da:ed:6f:c5:3d:2c:
ac:5f:1c:ef:59:99:7e:2b:4e:d7:f0:af:5f:84:c0:6d:e2:bc:
a2:d7:92:1e:b4:8c:32:b3:8d:2c:d4:6e:c3:08:99:c1:e8:58:
0b:5e:c2:1e:10:45:f3:c1:e1:ed:6f:d5:f2:50:b6:04:54:23:
ff:a7:68:53:43:66:21:b2:9a:9c:ff:bf:97:a8:ae:d9:6b:23:
6f:4b:16:37:a3:14:ea:6e:80:98:4e:db:5e:ec:dc:7e:57:87:
c1:34:35:59:77:54:d6:77:60:29:82:15:cd:a4:c1:f0:7f:fd:
a7:12:7d:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 26 22:42:02 2025 by rpki-client