Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
File: vzrHIKEXt01NE8Jj95R3kp7btLw.mft (raw, json)
Hash identifier: vu/BWVkfEBczuhJe58/rw44yCRCXLCS1/Y7QG0PIt00=
Subject key identifier: B7:8D:89:EC:45:BA:DA:D0:47:87:9A:FE:FC:CD:C2:12:C0:C6:00:1E
Authority key identifier: BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
Certificate issuer: /CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Certificate serial: 019676B0AE6709B6984E81B806E23B6E8C09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
Manifest number: 02F9
Signing time: Sun 27 Apr 2025 10:00:12 +0000
Manifest this update: Sun 27 Apr 2025 10:00:12 +0000
Manifest next update: Mon 28 Apr 2025 10:00:12 +0000
Files and hashes: 1: vzrHIKEXt01NE8Jj95R3kp7btLw.crl (hash: 0rUFi5eaUmAkni64z26Xsx8k+4as7bLu3Om09lPOKko=)
2: y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa (hash: ce+FeJaNssRXQv9hff7wkEZwcN/xUnX9DV6JIGk2oTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:29:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:b0:ae:67:09:b6:98:4e:81:b8:06:e2:3b:6e:8c:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Validity
Not Before: Apr 27 10:00:12 2025 GMT
Not After : Apr 28 10:00:12 2025 GMT
Subject: CN=b78d89ec45badad047879afefccdc212c0c6001e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:e8:f3:03:7f:7e:ba:ee:2e:84:52:97:4f:0e:
11:f2:02:b4:f5:18:00:52:84:1a:bb:38:16:c8:14:
ce:81:fb:61:9a:99:1f:ad:07:f8:9d:a3:8f:7b:45:
56:31:c8:00:2d:f4:64:87:e6:6b:32:a1:94:06:33:
7e:a4:a5:41:fe:ad:fa:79:e9:fa:93:89:4b:9c:22:
dc:86:eb:c0:f1:8e:1e:c3:f6:87:38:0e:21:93:90:
1e:ad:d3:e4:10:1f:ee:72:37:ed:db:9a:f3:0a:25:
c9:8f:d2:97:68:fb:ce:cd:7a:6c:1f:55:59:90:3f:
52:f3:af:1e:8b:41:5e:58:d1:ed:f1:40:03:90:74:
1f:e0:f7:de:28:68:39:ec:34:b2:e6:4f:45:5b:73:
06:1c:eb:be:32:52:76:f7:0d:b5:62:fd:ec:8f:67:
7d:de:e9:a0:6e:22:34:24:9f:08:35:83:0b:4a:a8:
de:9d:96:3d:c2:5a:2d:8f:ed:ed:3a:f2:ba:18:49:
8e:77:6c:c3:d4:ac:47:7d:e5:c6:b0:db:4d:8b:e7:
3b:46:f3:71:f2:58:76:f3:cb:50:07:a0:d3:0f:b2:
6b:93:bc:82:f0:bd:3c:d5:bf:5a:ec:14:dc:86:ee:
49:07:60:68:c9:da:93:4e:1a:6a:73:c2:49:e4:51:
dc:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:8D:89:EC:45:BA:DA:D0:47:87:9A:FE:FC:CD:C2:12:C0:C6:00:1E
X509v3 Authority Key Identifier:
keyid:BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:2c:90:4b:d5:c7:2f:c9:58:91:ed:94:3f:b5:ea:43:1c:2c:
ab:d7:5c:c5:4d:5b:65:d4:93:d6:89:3a:57:7f:8e:97:ed:47:
ab:a6:2d:5d:5d:c4:30:bb:cb:c0:4c:ab:14:a5:23:cb:c8:0e:
fc:0a:64:04:bc:a5:7c:44:dc:4a:67:b7:39:23:5a:04:5e:d4:
a4:17:f9:f9:34:1b:47:37:7f:24:5f:cb:1c:b8:4b:33:c3:28:
9b:38:56:41:6a:ea:d2:29:43:79:da:71:a5:6b:f4:d7:77:5e:
b4:6a:d1:f4:e4:10:48:bd:76:54:75:ad:d7:8d:68:71:38:9f:
c4:12:28:10:a8:01:b8:90:0a:7a:26:19:61:0f:33:59:30:ac:
bb:77:b8:1b:91:30:b7:22:0c:0a:c7:50:12:09:75:a3:ad:e9:
6f:3b:5a:b8:a9:ca:23:51:5c:da:50:37:5e:56:36:4d:fb:5c:
fa:44:86:b7:bd:ec:07:ca:75:cb:38:a4:c9:86:6b:f8:55:a0:
f5:71:c7:a1:29:6b:0b:6d:0b:83:81:9f:c8:b8:ad:07:8f:1a:
bb:24:d3:03:b4:05:3a:81:ce:41:c5:9a:94:56:6a:14:58:42:
80:0c:f1:a3:3e:4e:c5:c4:5a:44:f7:42:45:b2:4f:20:2f:1a:
2a:c1:d5:55
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2sK5nCbaYToG4BuI7bowJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmM2FjNzIwYTExN2I3NGQ0ZDEzYzI2M2Y3OTQ3NzkyOWVk
YmI0YmMwHhcNMjUwNDI3MTAwMDEyWhcNMjUwNDI4MTAwMDEyWjAzMTEwLwYDVQQD
EyhiNzhkODllYzQ1YmFkYWQwNDc4NzlhZmVmY2NkYzIxMmMwYzYwMDFlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArejzA39+uu4uhFKXTw4R8gK09RgA
UoQauzgWyBTOgfthmpkfrQf4naOPe0VWMcgALfRkh+ZrMqGUBjN+pKVB/q36een6
k4lLnCLchuvA8Y4ew/aHOA4hk5AerdPkEB/ucjft25rzCiXJj9KXaPvOzXpsH1VZ
kD9S868ei0FeWNHt8UADkHQf4PfeKGg57DSy5k9FW3MGHOu+MlJ29w21Yv3sj2d9
3umgbiI0JJ8INYMLSqjenZY9wlotj+3tOvK6GEmOd2zD1KxHfeXGsNtNi+c7RvNx
8lh288tQB6DTD7Jrk7yC8L081b9a7BTchu5JB2BoydqTThpqc8JJ5FHcnQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLeNiexFutrQR4ea/vzNwhLAxgAeMB8GA1UdIwQY
MBaAFL86xyChF7dNTRPCY/eUd5Ke27S8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnpySElLRVh0MDFORThKajk1UjNrcDdidEx3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy9kYjVmNWUtN2I3ZC00YjI4LWE5YjMt
MGFjMWJiZDQzNGQwLzEvdnpySElLRVh0MDFORThKajk1UjNrcDdidEx3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNy9kYjVmNWUtN2I3ZC00YjI4LWE5YjMtMGFjMWJiZDQzNGQw
LzEvdnpySElLRVh0MDFORThKajk1UjNrcDdidEx3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApCyQS9XH
L8lYke2UP7XqQxwsq9dcxU1bZdST1ok6V3+Ol+1Hq6YtXV3EMLvLwEyrFKUjy8gO
/ApkBLylfETcSme3OSNaBF7UpBf5+TQbRzd/JF/LHLhLM8MomzhWQWrq0ilDedpx
pWv013detGrR9OQQSL12VHWt141ocTifxBIoEKgBuJAKeiYZYQ8zWTCsu3e4G5Ew
tyIMCsdQEgl1o63pbztauKnKI1Fc2lA3XlY2Tftc+kSGt73sB8p1yzikyYZr+FWg
9XHHoSlrC20Lg4GfyLitB48auyTTA7QFOoHOQcWalFZqFFhCgAzxoz5OxcRaRPdC
RbJPIC8aKsHVVQ==
-----END CERTIFICATE-----
Generated at Sun Apr 27 17:41:06 2025 by rpki-client