Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
File: vkjMNUiL2ebzErIPx2oQJy8M3to.mft (raw, json)
Hash identifier: RMW9eHUz5pPjWSDhE9qUfViLvTX1pVaVge/nAc5U03E=
Subject key identifier: 3B:F0:1B:DE:13:91:37:B2:E4:5D:A8:78:65:10:71:F5:99:F9:CD:70
Authority key identifier: BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
Certificate issuer: /CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Certificate serial: 019A0B93C0D0D580A5D8AF892E210FD9A918
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
Manifest number: 16ED
Signing time: Wed 22 Oct 2025 11:00:23 +0000
Manifest this update: Wed 22 Oct 2025 11:00:23 +0000
Manifest next update: Thu 23 Oct 2025 11:00:23 +0000
Files and hashes: 1: YmYarA5XO8juvrriR0BtAqIdcCU.roa (hash: J8e/3PBcMoffAup3qudGNq5pMDjkvtJSIDtohCQMO8M=)
2: vkjMNUiL2ebzErIPx2oQJy8M3to.crl (hash: buj+TWUl7yG6ObamtvneEp1BlTOKbYGNCsy0GSaJyuo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 11:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0b:93:c0:d0:d5:80:a5:d8:af:89:2e:21:0f:d9:a9:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Validity
Not Before: Oct 22 11:00:23 2025 GMT
Not After : Oct 23 11:00:23 2025 GMT
Subject: CN=3bf01bde139137b2e45da878651071f599f9cd70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:3f:b9:f4:77:4e:2a:bd:05:85:ea:e0:4c:4b:
15:f5:97:46:a2:fb:06:45:06:a5:af:ae:45:91:36:
e9:42:84:f0:ae:25:03:73:e7:aa:b1:27:22:05:7c:
2e:90:05:90:b0:26:db:03:4c:db:0e:f1:1b:6f:e7:
5b:7b:71:44:12:7b:bb:ec:59:fe:c7:7b:35:ac:26:
6d:5f:d5:44:27:8e:35:28:6b:7d:c7:c5:40:19:b1:
9d:c6:2f:73:bb:a9:bc:ab:23:bb:1c:a8:6c:03:ed:
55:f3:e0:56:8b:83:3f:35:be:67:af:0b:0f:f2:9e:
fd:9f:a1:7c:08:bb:43:bc:81:2f:a4:25:90:c7:12:
f0:49:cf:f6:6b:fc:43:6d:0d:b3:c9:97:dc:73:40:
c9:63:19:ca:9d:1f:44:b4:8e:9d:7b:60:cb:8f:85:
33:e3:b8:52:47:97:a3:e8:1a:9e:10:0f:ac:57:00:
28:bd:fa:0e:a4:0a:53:d3:fb:a0:11:50:06:84:ef:
e9:4d:8d:72:5f:00:f2:71:90:a9:2e:24:9c:a0:10:
20:a9:6a:0d:12:0f:de:21:00:65:fa:10:ba:98:ca:
57:3b:7f:6c:36:61:ae:d0:fe:f6:0e:19:c5:cc:b0:
b5:41:7f:e4:96:3d:fc:2f:01:67:9d:4a:ce:54:32:
02:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:F0:1B:DE:13:91:37:B2:E4:5D:A8:78:65:10:71:F5:99:F9:CD:70
X509v3 Authority Key Identifier:
keyid:BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a0:df:5a:7e:45:96:df:3c:14:bc:1b:5b:e7:d1:79:76:63:46:
15:d9:fe:e9:e8:bd:0b:be:03:5b:ab:16:0f:a2:71:c2:4e:ef:
6c:ce:0f:90:1c:37:2e:47:3f:85:2b:41:09:e9:db:d4:41:99:
fd:04:bb:45:c8:dd:c6:0d:61:27:38:02:08:47:3f:d9:f7:90:
65:bf:cc:2e:5d:be:ce:67:9d:da:38:6d:a7:8f:c4:30:36:bf:
5a:c3:09:87:6c:a7:f2:7f:f3:0e:72:5a:24:64:d0:b7:42:0f:
10:dd:b8:11:c0:35:d8:9e:2a:71:f7:29:4f:23:14:c2:fd:ff:
94:ff:f6:51:11:79:69:68:e5:2c:84:3f:e2:52:8b:03:05:96:
7a:05:1d:2b:c7:c5:1a:28:63:22:b0:b9:0c:8e:60:d9:b4:e4:
8c:61:7d:b0:e9:6b:58:9c:5c:37:42:44:34:f1:76:4b:37:66:
ab:89:fc:84:b0:fa:47:ba:c5:de:5a:8d:f7:41:8e:e7:b4:9c:
9e:35:c1:2b:ba:0d:06:ca:f2:6b:8c:4b:d2:b5:9f:03:64:59:
a4:67:41:dd:26:0c:50:58:bf:88:1f:7e:66:ac:0e:c6:b6:6b:
bd:d3:5f:13:79:cd:c3:46:a0:93:e6:b2:2c:8e:65:d6:d1:63:
dc:cf:60:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 19:43:00 2025 by rpki-client