Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
File: vtJXlaaCsRmplIBal2V4U9dUoFw.mft (raw, json)
Hash identifier: iCdBTLE43WrsjotWNzwppTS3t06f9PIs1zFjXvrllG8=
Subject key identifier: EE:96:76:68:37:00:2B:87:48:01:6A:EE:CB:D8:E2:AA:94:9D:E4:21
Authority key identifier: BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C
Certificate issuer: /CN=bed25795a682b119a994805a97657853d754a05c
Certificate serial: 0199221E5CAE82C9FA3D4CB696172D63AEF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
Manifest number: 0AFF
Signing time: Sun 07 Sep 2025 03:00:39 +0000
Manifest this update: Sun 07 Sep 2025 03:00:39 +0000
Manifest next update: Mon 08 Sep 2025 03:00:39 +0000
Files and hashes: 1: vtJXlaaCsRmplIBal2V4U9dUoFw.crl (hash: XF0kvpk5d6mR+kt2AHmu/ODimxfO3uaPLmlZWHli3/A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:5c:ae:82:c9:fa:3d:4c:b6:96:17:2d:63:ae:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bed25795a682b119a994805a97657853d754a05c
Validity
Not Before: Sep 7 03:00:39 2025 GMT
Not After : Sep 8 03:00:39 2025 GMT
Subject: CN=ee96766837002b8748016aeecbd8e2aa949de421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6d:ba:71:76:dd:16:8a:06:84:c7:55:0f:d3:
da:55:fe:92:97:c6:36:c5:46:fe:90:41:94:ab:f3:
f3:94:ff:d1:e3:52:f0:93:4a:82:7d:ff:79:a8:66:
cd:b6:7c:33:67:b9:bc:43:e9:b9:c2:bd:60:09:cc:
3b:5a:1d:14:f9:7e:35:47:23:a9:be:88:b9:c3:34:
8c:d9:7e:2a:3a:f2:20:b4:cb:07:14:b9:7c:e5:27:
51:f3:b2:39:a9:b8:88:9e:f4:ae:91:00:27:b6:53:
a8:e6:f2:2b:5b:69:76:45:35:a9:6d:13:97:36:38:
97:5d:8d:01:de:1f:9b:dd:c1:2b:a6:85:2c:b3:52:
3f:2d:28:59:84:de:24:ca:f5:12:62:04:3f:3d:7d:
6e:24:97:a2:ee:2a:5f:47:00:8c:53:7d:8f:9f:4a:
87:88:08:38:51:1e:29:99:7d:5f:f5:51:67:4a:a8:
cf:d3:26:21:b7:44:02:26:59:06:13:93:54:60:62:
0a:d5:ce:16:47:01:aa:ca:bb:93:c6:42:9e:26:86:
6b:0d:af:31:04:77:6b:cc:b3:83:04:4e:62:26:63:
f4:6c:d5:de:0f:be:25:26:e0:fb:aa:80:21:fa:5a:
f4:31:ca:56:c2:ea:a6:2f:0f:7a:3c:88:f4:d1:b7:
84:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EE:96:76:68:37:00:2B:87:48:01:6A:EE:CB:D8:E2:AA:94:9D:E4:21
X509v3 Authority Key Identifier:
keyid:BE:D2:57:95:A6:82:B1:19:A9:94:80:5A:97:65:78:53:D7:54:A0:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vtJXlaaCsRmplIBal2V4U9dUoFw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/6bd104-25f6-4826-b234-11d0f20e8cb0/1/vtJXlaaCsRmplIBal2V4U9dUoFw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:26:79:b2:90:4b:8d:24:a9:d3:70:db:56:8c:40:ca:c1:a4:
60:69:5d:36:4c:84:d9:1b:a3:1b:66:84:d6:33:cc:44:f3:93:
f6:4e:39:f9:bc:a7:78:ea:b2:1a:cf:52:ca:73:14:53:b4:60:
21:a6:04:60:4e:00:1d:9a:c9:6c:0e:8b:d6:86:ac:f8:62:84:
13:c6:cc:21:9d:47:b1:da:bc:e7:9b:80:2a:db:7e:f7:af:b9:
fe:89:d3:d4:95:9f:55:49:a2:a4:c2:7d:61:c0:83:8a:3c:e7:
76:39:3f:18:ce:ef:b3:cb:5c:35:71:03:d2:91:1a:55:87:7b:
ce:e0:b8:0d:64:73:21:9d:1f:c2:3b:ed:33:52:dd:0e:91:e7:
f9:7d:25:14:53:ac:22:97:ec:fc:9f:c2:85:79:81:cb:66:3a:
d1:4a:19:c4:24:47:e4:f0:46:23:d9:b0:55:96:61:1a:d6:e8:
89:9e:ec:cc:d6:fd:ce:62:6f:32:80:70:22:f9:28:5b:4d:2d:
27:fb:a2:1d:b5:77:e1:d1:5e:ac:6d:8f:5f:9a:30:88:1c:b2:
d5:03:0a:e6:57:8e:d1:55:1a:f8:7d:c7:ab:11:5d:c4:e5:f4:
ce:cf:5f:5a:05:1f:5d:be:8a:42:d7:af:34:98:af:88:1a:fb:
d4:67:9b:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:20:18 2025 by rpki-client