Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
File: vkjMNUiL2ebzErIPx2oQJy8M3to.mft (raw, json)
Hash identifier: nqrkB9+yULrvX8sYSIZyE4snQWp8EU30+bExh5ATq7A=
Subject key identifier: 3D:E3:EE:B3:4E:52:11:82:C5:88:EA:7D:3B:95:85:3B:22:2E:7D:96
Authority key identifier: BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
Certificate issuer: /CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Certificate serial: 01991C1C3377CEED561B488D4951188F7194
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
Manifest number: 1671
Signing time: Fri 05 Sep 2025 23:00:34 +0000
Manifest this update: Fri 05 Sep 2025 23:00:34 +0000
Manifest next update: Sat 06 Sep 2025 23:00:34 +0000
Files and hashes: 1: YmYarA5XO8juvrriR0BtAqIdcCU.roa (hash: J8e/3PBcMoffAup3qudGNq5pMDjkvtJSIDtohCQMO8M=)
2: vkjMNUiL2ebzErIPx2oQJy8M3to.crl (hash: AF5iT+AhyTWi9NvsdXqkSNIWEzKORQhDrw8MXmiD4Lk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 06 Sep 2025 17:17:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:1c:1c:33:77:ce:ed:56:1b:48:8d:49:51:18:8f:71:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Validity
Not Before: Sep 5 23:00:34 2025 GMT
Not After : Sep 6 23:00:34 2025 GMT
Subject: CN=3de3eeb34e521182c588ea7d3b95853b222e7d96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:e6:ea:d9:52:2b:95:d7:62:7f:0e:3a:8a:3e:
9a:9c:68:c1:13:b8:15:4c:bb:a2:e3:bb:ee:d8:f4:
c4:d8:32:24:8d:22:02:5e:7b:ac:06:32:b4:75:9d:
26:9c:4d:4f:a9:9e:96:24:97:63:f7:18:88:ad:65:
4b:22:d3:04:26:19:92:08:f7:af:55:02:44:bc:6f:
ad:17:3e:70:51:70:28:93:ab:58:46:1d:7f:23:a5:
44:20:ed:e9:da:d6:7b:2f:59:0b:5b:51:08:df:62:
18:c1:3e:91:f8:3d:60:5f:d4:af:ff:37:62:a2:65:
84:35:46:3d:76:a5:f7:31:69:9e:5a:32:ef:91:d8:
09:d9:d0:3d:f0:d2:55:da:d4:7e:3d:f0:88:ee:5e:
a2:3a:02:ac:2b:0e:48:52:b0:47:fd:fa:82:d3:d6:
2a:61:f4:fd:bc:ed:5a:7b:f3:4f:63:93:94:b7:ee:
f2:d5:fe:27:cf:c8:0a:22:8f:d3:14:f2:ab:7c:08:
d9:88:58:45:39:45:74:7b:b8:25:0c:8c:30:00:60:
a5:08:ff:8b:78:48:b2:48:03:a6:3a:67:28:9a:4a:
ba:a1:9b:92:97:60:26:29:b3:f1:5b:bf:1a:14:7f:
41:4d:7a:01:b9:1d:fb:2f:5d:57:7f:de:78:9b:72:
a6:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:E3:EE:B3:4E:52:11:82:C5:88:EA:7D:3B:95:85:3B:22:2E:7D:96
X509v3 Authority Key Identifier:
keyid:BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:04:83:7f:af:de:26:9b:09:c0:0b:3d:cf:71:40:be:47:54:
13:83:60:40:9d:db:24:b8:df:cd:af:a0:0f:9d:91:25:12:ce:
81:c6:bb:7a:9d:15:23:03:58:d8:fa:d9:c9:da:5c:08:a4:a3:
84:8d:b4:f0:71:58:3d:cc:2e:7c:19:33:f6:da:2c:c5:ee:66:
dd:3e:77:44:c9:f7:80:54:bd:80:93:fe:b6:b3:c3:3d:55:31:
57:49:0d:9b:e0:91:eb:0c:c5:6b:f8:e3:73:3c:7e:f0:b5:57:
b4:de:92:c8:91:4e:2a:4c:71:c9:12:80:ec:d7:8a:fd:dc:2f:
0d:81:4f:ea:f4:ad:88:cf:76:fb:0d:4f:3d:06:32:4c:7b:7d:
81:a6:9a:29:02:89:32:35:d0:95:69:57:15:3b:9a:69:01:67:
1a:8b:b8:a1:ae:de:9e:bf:33:93:c2:e3:b9:77:fe:e7:95:1c:
87:52:05:fa:a6:87:e1:b5:69:7e:68:62:ea:6a:1e:02:c6:23:
53:6d:69:1c:a1:a6:b6:8c:b9:b0:09:09:6a:dc:4a:9c:48:f0:
18:39:99:fa:7c:bb:2e:43:d0:a7:b4:c3:71:3e:11:29:45:f0:
53:3e:ef:68:b5:43:1e:63:f1:a9:52:c0:f0:19:6b:9f:8b:35:
a2:fd:f9:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 6 02:00:43 2025 by rpki-client