Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
File: vzrHIKEXt01NE8Jj95R3kp7btLw.mft (raw, json)
Hash identifier: zWP/e7iHMuWFlNBEeRqQbKOJK+/vg8oiIqhRurFXBvc=
Subject key identifier: 17:65:FB:A2:F6:AA:B7:B7:4F:5B:B1:ED:C6:8E:3B:14:F3:B8:77:38
Authority key identifier: BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
Certificate issuer: /CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Certificate serial: 01976BF45BF8E0208CF40932ABB3D3CF60C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
Manifest number: 0378
Signing time: Sat 14 Jun 2025 01:01:05 +0000
Manifest this update: Sat 14 Jun 2025 01:01:05 +0000
Manifest next update: Sun 15 Jun 2025 01:01:05 +0000
Files and hashes: 1: vzrHIKEXt01NE8Jj95R3kp7btLw.crl (hash: 5vmMe/XvUlU5x4FLq7m0ktJXHYkJsn5zbCIbxcq2T4M=)
2: y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa (hash: ce+FeJaNssRXQv9hff7wkEZwcN/xUnX9DV6JIGk2oTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:f4:5b:f8:e0:20:8c:f4:09:32:ab:b3:d3:cf:60:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Validity
Not Before: Jun 14 01:01:05 2025 GMT
Not After : Jun 15 01:01:05 2025 GMT
Subject: CN=1765fba2f6aab7b74f5bb1edc68e3b14f3b87738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:b1:a9:e5:59:c8:07:b9:ad:81:03:80:98:4c:
58:f2:b9:1c:5d:21:36:e9:28:b5:da:59:b4:ef:1e:
6b:17:99:c5:2d:e9:1d:ff:e2:fd:b9:64:38:c1:39:
54:1f:1f:85:39:66:c0:13:df:a3:20:27:28:36:6b:
98:71:a7:c0:5f:f3:71:3d:fc:57:03:0e:46:db:6b:
93:dc:a6:86:29:17:93:02:39:7b:bd:ac:95:24:e9:
81:c9:1e:9d:c8:60:7b:3e:ae:39:55:44:17:32:14:
fe:21:3a:0a:53:a1:0a:14:8f:15:9a:98:01:72:2f:
c8:24:b4:1c:42:41:52:8f:99:be:c8:79:16:21:d2:
52:b5:37:41:3f:f4:0e:41:5c:ec:0a:0c:41:b6:e7:
93:4b:5b:86:83:44:73:e9:22:8d:ad:35:69:a2:86:
14:ff:91:4b:8c:7a:5e:62:34:e8:ec:c3:8b:8f:83:
a2:d9:25:09:ea:61:f4:7c:eb:4a:78:9c:83:04:77:
55:67:63:26:1a:27:1c:7a:42:fb:4d:cd:56:6e:5e:
52:92:96:a1:b1:7c:5d:fa:8b:3d:c8:03:be:42:78:
b7:73:f6:6a:63:96:da:55:b8:82:6c:47:f0:6a:c3:
ed:0b:c5:e6:81:3e:44:76:a9:35:5b:29:3b:a1:ac:
81:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:65:FB:A2:F6:AA:B7:B7:4F:5B:B1:ED:C6:8E:3B:14:F3:B8:77:38
X509v3 Authority Key Identifier:
keyid:BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:6f:dd:5f:ea:6e:e8:c4:77:69:14:16:4d:eb:8d:95:cd:f9:
f5:a8:0c:ee:c7:bb:d8:c5:44:29:41:ec:f5:33:d4:2f:76:cc:
a0:42:a1:4e:68:4e:f0:f1:54:6c:d2:00:2e:e2:90:b0:71:f4:
94:a5:32:d1:f6:8d:6a:e2:ae:04:64:6c:a8:85:6c:02:83:ef:
c0:62:86:a3:8d:f0:13:86:14:98:3e:f0:62:9c:61:f6:f8:7f:
79:ef:20:02:67:4b:21:13:53:d9:13:31:d7:53:37:c0:73:b1:
9a:ee:85:87:c1:68:4a:82:4a:80:06:9a:c3:90:3b:aa:28:25:
05:3d:32:de:e0:f2:5e:ec:2e:7c:1d:91:7f:7c:cb:0e:87:ec:
6b:51:06:3f:36:51:94:6f:d8:38:4c:45:cb:e2:62:ca:2b:86:
ba:48:0f:7f:ed:22:05:a5:b0:b5:77:ac:b6:8f:33:cc:92:63:
4f:74:8f:db:4a:87:bb:d2:9e:15:cc:30:99:df:f4:73:fe:f2:
c2:6b:42:4e:9d:5e:be:6c:fb:2a:8b:a0:d1:48:15:6b:88:cd:
c8:54:86:97:28:0f:a4:ec:5d:15:aa:c4:57:98:d2:6e:53:55:
3e:ff:26:79:8d:e2:2b:45:8a:50:1a:f7:6b:ae:ee:94:03:e4:
91:2d:ec:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 11:34:34 2025 by rpki-client