Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
File: vygFmS5lMdPaMe4a9rzVwG0Ctso.mft (raw, json)
Hash identifier: Cdr6b3AdfJdBeInVRpsFu8Jk2cOkdws6a983B3o7zds=
Subject key identifier: 2F:E6:CB:D9:19:C4:ED:3D:88:FC:75:03:08:8C:EF:6A:85:D2:D8:B5
Authority key identifier: BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA
Certificate issuer: /CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca
Certificate serial: 01976C61E8748CD6FD97F18E98958E91841D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
Manifest number: 158E
Signing time: Sat 14 Jun 2025 03:00:45 +0000
Manifest this update: Sat 14 Jun 2025 03:00:45 +0000
Manifest next update: Sun 15 Jun 2025 03:00:45 +0000
Files and hashes: 1: ZA2eo4PhOO6YarPBjFuZYerlXM8.roa (hash: OaUR9ntwZSMTqF4rae/f45ntDF7DCdGD74N9a3x5n8s=)
2: iU6o8UX2fMqdnVT4GPBZLMHQUVk.roa (hash: L7qS2Pktcg+3MFOhFw0UCguQbXdIgIfJZ4PXXKIQFAI=)
3: vygFmS5lMdPaMe4a9rzVwG0Ctso.crl (hash: XqPZVKfTwoLRWu1eQUx+s0rfwa/D3z2JQN7qW90yT6c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:e8:74:8c:d6:fd:97:f1:8e:98:95:8e:91:84:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2805992e6531d3da31ee1af6bcd5c06d02b6ca
Validity
Not Before: Jun 14 03:00:45 2025 GMT
Not After : Jun 15 03:00:45 2025 GMT
Subject: CN=2fe6cbd919c4ed3d88fc7503088cef6a85d2d8b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:d7:00:d8:12:5e:01:03:a6:96:40:74:99:99:
d4:5b:ea:d2:09:1e:4a:e1:d2:ab:43:94:20:0a:97:
eb:39:1c:79:ca:d5:5c:83:92:43:ae:3f:02:d6:1d:
ac:61:ce:9a:49:8d:8f:aa:f2:46:f7:aa:1e:a2:d9:
cc:e8:b2:7b:8c:b2:a8:5a:92:4d:f5:fb:0f:cd:ac:
b2:6e:4a:f3:89:28:42:a0:e2:f2:61:d6:e3:2d:dd:
8f:66:a5:12:49:24:a1:fe:f7:02:ee:06:d0:3d:86:
7e:c4:33:b0:39:fb:b1:49:b1:70:3c:f2:fa:02:f8:
22:51:4e:85:9a:fa:f2:19:26:1e:05:0e:c0:97:3b:
34:88:7f:ad:4d:a2:ea:dc:88:9a:31:53:08:21:cd:
b3:dd:71:67:b4:fc:4f:51:e6:0f:f6:54:19:02:55:
5f:3c:d6:a4:55:7c:5d:be:06:f9:70:ca:ee:17:c2:
71:1c:90:95:1b:14:19:b9:21:55:ed:7b:ad:ce:36:
7a:e8:99:83:d4:05:8b:5f:35:3f:a3:43:b7:02:52:
bb:c7:9d:32:5b:5f:b2:30:76:08:ca:02:46:5d:db:
ea:22:2a:1e:4c:5c:05:62:3c:10:94:86:e6:e8:4d:
15:b2:29:88:3c:c8:39:9c:c5:1d:72:f7:c4:53:00:
42:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:E6:CB:D9:19:C4:ED:3D:88:FC:75:03:08:8C:EF:6A:85:D2:D8:B5
X509v3 Authority Key Identifier:
keyid:BF:28:05:99:2E:65:31:D3:DA:31:EE:1A:F6:BC:D5:C0:6D:02:B6:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vygFmS5lMdPaMe4a9rzVwG0Ctso.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/758467-6818-4e84-87ba-5d838668bebe/1/vygFmS5lMdPaMe4a9rzVwG0Ctso.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:0b:87:b3:90:ee:85:c9:04:f1:63:c1:6f:45:70:7c:0e:67:
5f:df:e9:58:e7:05:2c:06:ef:e4:21:d9:d8:41:89:81:c5:29:
68:a7:1e:21:e9:44:87:b1:ca:85:fc:d5:ff:6d:60:3a:cc:e6:
ef:66:d9:0d:9c:5a:c3:d6:0c:cf:3d:71:ae:61:8f:2d:62:71:
de:7c:10:61:84:1f:27:f1:3f:36:61:f5:95:7e:7d:a5:a3:e9:
03:8c:0a:f4:80:c1:25:e6:e4:b2:ce:fd:8e:da:95:a5:56:1e:
d7:2c:02:9f:d1:e1:0d:ef:a2:68:83:7e:2b:00:1a:41:45:49:
06:d2:53:77:ed:e8:37:15:e3:17:29:2e:9c:c9:c7:da:f6:4d:
5d:25:1a:ed:9c:00:8f:2c:eb:26:8e:22:e9:55:71:52:f4:94:
2d:ec:88:c4:5b:de:8d:d9:08:d3:f3:22:42:ad:21:5c:0d:2f:
c4:30:35:db:de:da:ae:b5:20:37:0c:23:b5:50:5c:dd:da:79:
fd:36:9c:b1:3a:80:b5:89:d1:0f:65:a5:4f:c6:c1:25:fe:95:
9b:91:cf:ec:37:2f:0c:98:42:7c:a6:62:3e:48:8c:e0:f2:76:
a1:d6:d2:4c:4c:80:23:73:87:0c:6b:cd:05:93:c8:1a:1c:50:
93:2a:b2:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:37:59 2025 by rpki-client