Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
File: VkmqAU6M8795JOd1h9CnyMqhxJc.mft (raw, json)
Hash identifier: az1hU/5aUquerIY1ArOoN4qczw5VCdDbIAWlTAe5Ghk=
Subject key identifier: D2:43:A5:46:64:B7:40:64:34:EE:96:73:4A:9D:2B:AF:3E:F9:F4:BC
Authority key identifier: 56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
Certificate issuer: /CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Certificate serial: 0199221EABC0FFB9EEF3D8E602CA4B9E5A57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
Manifest number: 0ADB
Signing time: Sun 07 Sep 2025 03:00:59 +0000
Manifest this update: Sun 07 Sep 2025 03:00:59 +0000
Manifest next update: Mon 08 Sep 2025 03:00:59 +0000
Files and hashes: 1: VkmqAU6M8795JOd1h9CnyMqhxJc.crl (hash: xi9lVxSaYfCMtoqBgE4895AA9jgFTue1rF6h7CWjRUs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1e:ab:c0:ff:b9:ee:f3:d8:e6:02:ca:4b:9e:5a:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Validity
Not Before: Sep 7 03:00:59 2025 GMT
Not After : Sep 8 03:00:59 2025 GMT
Subject: CN=d243a54664b7406434ee96734a9d2baf3ef9f4bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9e:c3:27:79:1f:55:17:eb:8d:a8:d7:e5:b5:
5d:d3:e0:f0:86:5f:d6:01:9c:94:5f:cf:94:a1:99:
61:17:77:c9:ee:0c:ee:da:a7:f1:16:e6:55:08:4f:
c6:c1:1e:67:21:21:4b:6e:7c:d8:60:ec:31:e5:78:
f2:d9:11:a3:64:b4:0f:cb:2e:1f:6b:52:82:02:8a:
31:0f:92:a7:8c:51:95:d6:c4:28:9d:1e:09:38:4f:
f5:bc:a4:b2:8d:1d:9f:be:bc:3c:9f:4a:55:e7:5b:
dc:05:81:01:54:1f:5d:d5:84:33:e1:fc:2a:85:ce:
00:5b:74:22:ec:94:41:de:0d:dd:c7:6b:70:25:c3:
d3:0b:1b:32:91:33:5e:20:db:0c:87:6c:9d:08:e5:
b4:f3:fb:c2:e6:7d:80:6b:78:df:03:c4:91:3e:e0:
bb:a4:0d:c8:65:77:5e:d5:0b:a6:cd:12:96:05:c8:
7d:da:27:9a:a3:3f:17:18:b8:69:76:9e:ab:ca:9a:
4c:60:dd:c6:35:a3:5c:d5:81:b8:2c:7e:db:ca:e3:
02:73:b2:cf:87:e6:e1:38:41:02:82:f6:6a:4f:fd:
5b:f6:17:9a:c7:e0:c2:1d:75:14:71:04:25:d7:07:
d4:cf:d4:62:bf:5c:9a:89:03:f1:22:cd:ce:be:71:
c2:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:43:A5:46:64:B7:40:64:34:EE:96:73:4A:9D:2B:AF:3E:F9:F4:BC
X509v3 Authority Key Identifier:
keyid:56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:73:83:8f:35:ed:35:42:f0:6f:0f:25:59:f6:61:47:ae:53:
f8:da:4a:4c:d9:27:ab:bc:89:4d:bc:f1:fb:a7:2a:7a:46:7d:
d6:ef:ed:77:e7:2e:20:e5:c3:18:6a:59:9c:89:78:a3:4b:97:
d5:21:1b:2c:3c:71:1b:e9:79:63:fd:0f:54:66:69:60:66:dc:
d5:3d:40:67:ae:00:83:c1:1c:e8:bb:18:b9:5b:b8:79:31:38:
85:e7:de:57:84:3a:a8:52:e6:4b:5b:47:70:96:7f:ec:71:83:
ca:83:52:6b:6e:10:59:a3:c3:d2:90:da:b3:bf:26:90:b4:0f:
83:17:a0:69:80:93:e6:d6:f6:6a:a0:50:0d:a6:e2:df:fb:9a:
e1:d9:f4:14:e4:9f:61:d8:7d:e1:d9:40:2e:f5:dd:5b:78:db:
25:b1:37:02:72:d1:b9:55:0e:46:fb:65:24:20:20:2c:57:ec:
6b:9b:b3:53:1b:00:c6:a9:c4:6e:16:b7:9a:9d:bc:d0:72:41:
8e:41:f5:7e:f4:a2:f6:c3:44:2a:eb:f1:2f:9b:ca:02:5f:12:
2f:3b:e6:ad:46:33:d4:38:0f:aa:13:b2:bd:b4:7b:5e:e8:6c:
07:10:02:ba:25:0c:62:03:ce:8f:86:ab:60:c5:9e:b0:d6:57:
fd:4c:f9:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:04:34 2025 by rpki-client