Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
File: VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft (raw, json)
Hash identifier: c6fuybtL8Eoso5Ed+y97YkDPPGd5LHTiL8yjdaiGjzQ=
Subject key identifier: 8C:15:83:2E:AF:CC:E0:C7:6F:BB:6A:85:40:F1:FE:6B:AB:D8:9A:01
Authority key identifier: 54:A6:C4:6D:7D:90:FE:B4:A7:28:AF:0F:8A:E1:1B:FA:0D:4F:8C:B1
Certificate issuer: /CN=54a6c46d7d90feb4a728af0f8ae11bfa0d4f8cb1
Certificate serial: 019A0DB99D5CBA9AB184B8BCB1F65D3A4D13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
Manifest number: 0A39
Signing time: Wed 22 Oct 2025 21:00:59 +0000
Manifest this update: Wed 22 Oct 2025 21:00:59 +0000
Manifest next update: Thu 23 Oct 2025 21:00:59 +0000
Files and hashes: 1: 7nuD8elhlIUxcTnbEPvLA6ZLn5I.roa (hash: 90o2vgvA2ZcVDu1EqRM6Q9Z2wROKMEItuuXmbaFjrpw=)
2: VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl (hash: SY3qbO3JapYWgJFG3dc3odthLg6oZGMln4pr78JZu7E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Oct 2025 21:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:0d:b9:9d:5c:ba:9a:b1:84:b8:bc:b1:f6:5d:3a:4d:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54a6c46d7d90feb4a728af0f8ae11bfa0d4f8cb1
Validity
Not Before: Oct 22 21:00:59 2025 GMT
Not After : Oct 23 21:00:59 2025 GMT
Subject: CN=8c15832eafcce0c76fbb6a8540f1fe6babd89a01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:bc:e7:b0:ac:aa:01:9c:e0:95:d1:3a:94:0c:
2a:cf:6e:08:4f:12:e7:25:a4:57:05:c3:94:eb:ee:
81:cc:9e:a3:38:fa:ac:ce:b2:41:84:be:ce:09:58:
f9:13:ab:82:bf:6e:c6:f3:a5:70:16:06:c6:23:d8:
21:55:7c:d9:39:fe:fe:9d:c3:80:6b:f2:60:f8:7f:
cc:b7:af:5f:23:be:13:21:0e:b5:30:48:15:4d:a3:
b6:4a:92:2b:dc:7b:b0:2e:00:24:c3:d6:e9:2a:74:
61:59:b8:f7:bd:a1:af:70:ca:2f:39:71:ed:72:bc:
94:77:af:56:28:02:fc:34:07:38:8a:1d:42:86:d7:
fe:73:ab:82:b3:20:28:61:b0:9c:24:60:fd:a2:eb:
b2:4b:60:a2:a3:d8:21:c0:65:59:3f:44:79:77:99:
46:2f:c4:26:46:05:7d:fe:e7:19:e6:9e:72:72:38:
69:89:ce:f9:14:3c:fc:0b:4c:5a:cd:7a:fc:1f:5e:
0c:68:2b:7b:bc:8f:c9:e5:8e:03:74:1f:e0:ca:57:
37:4b:fa:1c:44:96:7e:c0:11:d5:2c:67:fe:d3:1f:
61:6f:91:83:0b:e3:b3:93:8c:2a:8a:8e:5e:58:04:
fa:0f:c9:41:07:b0:a7:48:92:2e:bd:9c:35:16:6e:
08:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:15:83:2E:AF:CC:E0:C7:6F:BB:6A:85:40:F1:FE:6B:AB:D8:9A:01
X509v3 Authority Key Identifier:
keyid:54:A6:C4:6D:7D:90:FE:B4:A7:28:AF:0F:8A:E1:1B:FA:0D:4F:8C:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/08949f-c79a-46ca-b50b-0fc9bfcd74a6/1/VKbEbX2Q_rSnKK8PiuEb-g1PjLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:65:be:7d:5a:72:e3:c7:ad:e7:24:85:cf:48:65:ba:f7:5b:
d0:4c:ef:84:c0:23:61:ab:1a:b3:c0:e9:10:93:f9:a0:08:df:
29:92:35:e2:29:08:bf:a9:ca:29:83:fe:cc:e9:0b:1a:d0:06:
22:60:df:0d:ca:55:d9:e3:cf:cc:6a:1e:ff:1f:7a:46:fb:d2:
75:ff:8c:a3:0b:5a:33:a4:87:3b:27:e9:b0:aa:1c:2a:e3:79:
b7:f9:d2:73:2a:c9:50:e2:ab:8e:f9:3f:fc:37:8d:1b:5f:b2:
92:43:c2:c5:e1:ee:e2:52:2c:47:89:76:0e:7d:33:85:ea:82:
d7:87:67:a1:e3:8c:a7:fd:b5:ac:55:32:b8:aa:25:72:82:b5:
34:51:2a:0d:2b:ab:4d:26:ae:ee:96:39:a8:49:f3:bf:31:8a:
b6:18:37:0c:dd:95:65:94:38:52:3b:12:ef:62:88:6f:20:58:
fa:93:f0:03:29:83:0e:a5:b4:a7:29:1c:23:47:3d:68:94:92:
83:f8:5e:16:c6:ec:f3:04:10:2d:20:98:91:a2:66:d3:ae:49:
be:94:99:ac:ae:3e:bd:dd:3b:12:a0:15:26:46:d8:f9:70:7a:
f6:13:7f:1b:1f:46:5e:b1:5e:68:4f:d6:f9:91:90:b0:7a:01:
22:96:9d:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Oct 23 07:19:30 2025 by rpki-client