Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
File: vPnwsJRzjFKC-_SzBnDsX9y1id8.mft (raw, json)
Hash identifier: gT55b9tuUnKodg9LUU6MlZf32Txcq3QYEE2Trtayr1g=
Subject key identifier: 2B:F3:F2:39:F4:65:E6:7C:9B:34:B8:24:72:75:C6:CE:2F:FC:37:06
Authority key identifier: BC:F9:F0:B0:94:73:8C:52:82:FB:F4:B3:06:70:EC:5F:DC:B5:89:DF
Certificate issuer: /CN=bcf9f0b094738c5282fbf4b30670ec5fdcb589df
Certificate serial: 01977119FF102182E2C751472147DB2253DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
Manifest number: 158F
Signing time: Sun 15 Jun 2025 01:00:18 +0000
Manifest this update: Sun 15 Jun 2025 01:00:18 +0000
Manifest next update: Mon 16 Jun 2025 01:00:18 +0000
Files and hashes: 1: GcXZXurTGrAnFXKjvUHU9XD_YyQ.roa (hash: CVqER74xo0XyQrFlwwf0CdK9BC9SAVXvCBJxlFB4CBw=)
2: vPnwsJRzjFKC-_SzBnDsX9y1id8.crl (hash: 9jXA9h3JSKb2hyz/H/fHe4f9UcZEZS+qHDHn28vwuJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 22:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:71:19:ff:10:21:82:e2:c7:51:47:21:47:db:22:53:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcf9f0b094738c5282fbf4b30670ec5fdcb589df
Validity
Not Before: Jun 15 01:00:18 2025 GMT
Not After : Jun 16 01:00:18 2025 GMT
Subject: CN=2bf3f239f465e67c9b34b8247275c6ce2ffc3706
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:87:0d:46:46:5c:70:74:1c:01:59:a3:77:5a:
73:79:5c:00:1d:55:4d:0d:84:f5:09:2b:d7:47:38:
41:53:47:2c:4b:61:e3:62:c5:99:80:03:f1:4d:2c:
7a:f7:44:ee:73:0d:2a:d0:04:22:9d:d6:6a:15:f6:
e4:20:55:d7:07:fb:3b:36:32:1d:d1:09:69:af:be:
ea:91:33:91:49:9c:c9:8a:d7:37:63:1a:55:90:c9:
89:8a:5d:ab:d1:67:cc:c3:2a:56:ec:fc:c4:54:7a:
6d:d5:dc:e4:01:ef:5a:12:fb:d0:c5:a1:e3:0b:16:
0f:d0:76:6d:70:27:1e:c6:11:d2:c2:aa:25:2d:c0:
42:b7:08:8c:0d:c2:b3:7c:54:fa:90:69:86:d5:71:
b5:a8:48:44:48:80:00:f6:1c:7f:f9:c0:73:fb:ca:
d0:14:21:b0:02:74:8a:88:f0:0d:4f:ce:09:6a:a0:
7f:c0:cf:8e:1e:98:a4:b0:c7:09:09:81:4f:65:ac:
fb:5e:f8:43:03:55:71:05:28:c4:ac:a4:da:b8:b3:
e7:5f:85:4d:62:e1:b9:62:1f:4a:12:4c:2a:66:c2:
f4:d6:c9:f1:03:dd:1b:5f:c0:47:fc:37:6c:a8:79:
ee:23:b7:3b:66:61:62:a5:f0:8e:9d:c4:15:4d:ce:
51:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:F3:F2:39:F4:65:E6:7C:9B:34:B8:24:72:75:C6:CE:2F:FC:37:06
X509v3 Authority Key Identifier:
keyid:BC:F9:F0:B0:94:73:8C:52:82:FB:F4:B3:06:70:EC:5F:DC:B5:89:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPnwsJRzjFKC-_SzBnDsX9y1id8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/3f19f9-8395-4088-af17-e5ca67c11533/1/vPnwsJRzjFKC-_SzBnDsX9y1id8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:b5:a3:2f:c5:e6:ff:f7:86:52:1b:12:f4:2a:8a:4a:62:b7:
72:92:94:6e:34:0b:4f:26:46:0c:01:03:79:a1:b6:9a:a4:21:
be:ad:3e:8f:12:43:59:65:11:d4:f3:35:d7:13:53:bd:49:1a:
28:db:f3:94:52:b7:9c:dc:e2:84:34:e3:50:b8:f5:93:13:51:
72:c9:cf:d1:16:24:52:44:20:93:6d:c6:57:1a:bb:e1:2f:fc:
93:4a:ac:c7:e2:b8:39:17:a5:6f:91:af:34:d5:aa:6c:02:42:
b0:7c:05:3e:14:27:9c:71:34:a6:d2:5e:2b:1f:10:8c:51:67:
15:f6:0b:ac:5a:8f:d4:5e:22:b9:f9:fd:f3:82:9d:5f:0a:a9:
bf:54:f2:06:64:49:4a:80:26:45:79:20:e9:af:17:9b:08:60:
40:ed:d3:94:6b:70:d8:18:d5:15:36:ba:15:31:71:a2:dd:92:
ab:08:5d:22:68:e1:3e:bd:9b:a4:9d:f8:d5:1e:bc:98:b4:5e:
33:17:d7:13:3d:72:4b:72:14:4c:6e:01:b2:db:b5:ce:84:11:
32:24:f1:39:8f:c2:a3:d6:57:1e:d5:d5:f9:cc:3a:4d:37:ea:
65:6d:61:c1:51:88:86:44:63:77:48:c2:2d:be:e8:72:4e:76:
38:4a:1c:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdxGf8QIYLix1FHIUfbIlPbMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjZjlmMGIwOTQ3MzhjNTI4MmZiZjRiMzA2NzBlYzVmZGNi
NTg5ZGYwHhcNMjUwNjE1MDEwMDE4WhcNMjUwNjE2MDEwMDE4WjAzMTEwLwYDVQQD
EygyYmYzZjIzOWY0NjVlNjdjOWIzNGI4MjQ3Mjc1YzZjZTJmZmMzNzA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoYcNRkZccHQcAVmjd1pzeVwAHVVN
DYT1CSvXRzhBU0csS2HjYsWZgAPxTSx690Tucw0q0AQindZqFfbkIFXXB/s7NjId
0Qlpr77qkTORSZzJitc3YxpVkMmJil2r0WfMwypW7PzEVHpt1dzkAe9aEvvQxaHj
CxYP0HZtcCcexhHSwqolLcBCtwiMDcKzfFT6kGmG1XG1qEhESIAA9hx/+cBz+8rQ
FCGwAnSKiPANT84JaqB/wM+OHpiksMcJCYFPZaz7XvhDA1VxBSjErKTauLPnX4VN
YuG5Yh9KEkwqZsL01snxA90bX8BH/DdsqHnuI7c7ZmFipfCOncQVTc5RqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCvz8jn0ZeZ8mzS4JHJ1xs4v/DcGMB8GA1UdIwQY
MBaAFLz58LCUc4xSgvv0swZw7F/ctYnfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdlBud3NKUnpqRktDLV9TekJuRHNYOXkxaWQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy8zZjE5ZjktODM5NS00MDg4LWFmMTct
ZTVjYTY3YzExNTMzLzEvdlBud3NKUnpqRktDLV9TekJuRHNYOXkxaWQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYy8zZjE5ZjktODM5NS00MDg4LWFmMTctZTVjYTY3YzExNTMz
LzEvdlBud3NKUnpqRktDLV9TekJuRHNYOXkxaWQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASrWjL8Xm
//eGUhsS9CqKSmK3cpKUbjQLTyZGDAEDeaG2mqQhvq0+jxJDWWUR1PM11xNTvUka
KNvzlFK3nNzihDTjULj1kxNRcsnP0RYkUkQgk23GVxq74S/8k0qsx+K4ORelb5Gv
NNWqbAJCsHwFPhQnnHE0ptJeKx8QjFFnFfYLrFqP1F4iufn984KdXwqpv1TyBmRJ
SoAmRXkg6a8XmwhgQO3TlGtw2BjVFTa6FTFxot2SqwhdImjhPr2bpJ341R68mLRe
MxfXEz1yS3IUTG4Bstu1zoQRMiTxOY/Co9ZXHtXV+cw6TTfqZW1hwVGIhkRjd0jC
Lb7ock52OEocnA==
-----END CERTIFICATE-----
Generated at Sun Jun 15 09:08:48 2025 by rpki-client