Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json)
Hash identifier: yzjOq6SO5mCj4Btij1/9xVh9WPTTgwSHHroqseUXutM=
Subject key identifier: BB:3A:F0:F9:50:A7:78:A9:58:B5:C2:94:4E:EA:49:85:E0:4B:02:85
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 01967D57EE2641592B82C0869799D2796721
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
Manifest number: 1515
Signing time: Mon 28 Apr 2025 17:00:36 +0000
Manifest this update: Mon 28 Apr 2025 17:00:36 +0000
Manifest next update: Tue 29 Apr 2025 17:00:36 +0000
Files and hashes: 1: RYZ_HUggvvOzHTuXBACbgajQpo0.roa (hash: Fp6s79hRrwq+bZ12gZrNnH0nQeo4puoviWIdP4EjMXQ=)
2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: Uxy79I3zuEQ/iBqOojRv8chtC+OPO/qYif4QGq2AHPg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:57:ee:26:41:59:2b:82:c0:86:97:99:d2:79:67:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: Apr 28 17:00:36 2025 GMT
Not After : Apr 29 17:00:36 2025 GMT
Subject: CN=bb3af0f950a778a958b5c2944eea4985e04b0285
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:2e:1c:9f:57:7e:e7:d0:6d:d1:7d:b3:a3:40:
d2:82:4d:80:7c:f2:75:af:4c:65:18:67:95:94:0b:
02:61:eb:da:9c:7e:30:f5:28:a4:b5:15:ee:0c:b0:
c3:84:66:c6:8d:eb:1c:ed:4e:51:87:45:87:9d:96:
15:c3:1d:7b:92:fa:39:dc:cf:f3:d0:70:6b:99:ed:
d3:91:4c:21:8c:26:11:29:31:78:b9:04:36:24:7d:
a4:47:d2:9e:9b:40:a7:ca:14:78:21:f8:42:b5:89:
c6:62:f2:c4:75:48:0a:08:cc:f3:89:4c:aa:62:3b:
38:db:c8:7a:81:79:42:fe:b2:ed:da:e6:81:5e:7a:
17:83:5f:12:33:53:19:8e:48:ec:d7:75:4e:be:5c:
3e:d5:b7:f7:5e:1d:74:66:24:d9:34:76:1d:a7:d2:
a8:ad:b5:49:80:1c:61:2a:30:56:6e:2b:6e:b9:9f:
a6:89:84:39:9e:9c:a3:b2:56:39:92:1c:e6:bd:37:
10:2b:74:90:1f:e8:a8:74:80:5c:63:2b:7a:df:ea:
c2:f6:55:fb:21:97:58:54:be:dd:10:d8:1f:87:38:
56:b3:ee:01:2c:25:c8:d8:97:6f:c6:06:f6:5e:e0:
65:72:8f:8b:1c:4d:ca:5a:f3:dc:36:23:8c:43:9a:
a9:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:3A:F0:F9:50:A7:78:A9:58:B5:C2:94:4E:EA:49:85:E0:4B:02:85
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:e1:65:c5:2b:95:d1:18:67:2b:8c:ad:67:66:b5:4a:42:a9:
b4:97:87:86:66:c4:f3:85:7b:36:e2:f0:38:f2:9b:14:72:b0:
6b:6a:cb:54:05:4a:09:6c:78:79:f3:6c:e9:15:99:f9:63:c3:
f9:8b:86:4a:55:ef:a5:88:bc:73:de:16:13:25:34:68:e9:26:
38:a5:15:90:ad:cc:63:d6:53:22:c9:bb:03:f3:da:86:1a:bd:
e2:e9:44:04:97:7a:ac:cb:1e:dc:36:fc:80:4b:df:82:5b:82:
cb:80:ea:f2:0c:96:66:16:45:99:ba:bb:6f:a5:55:b1:e0:dc:
ba:da:7b:fd:f6:2d:f7:82:58:89:f3:d0:4e:13:38:b5:e6:a1:
39:dc:0d:d2:46:86:fb:a7:b1:49:97:a5:4d:c3:cb:8e:17:2e:
dd:14:74:46:d9:94:4d:30:07:c2:32:40:27:76:49:11:93:aa:
75:36:75:a7:54:1e:cb:55:85:2f:43:e5:ec:37:22:6d:40:70:
bc:bf:38:73:72:73:72:69:6a:0d:ed:32:69:08:a0:50:d2:9f:
71:a2:61:cd:47:6e:f2:97:77:eb:54:d8:79:64:ac:3f:20:43:
50:0b:6a:8d:8f:cc:a7:1a:a9:09:1c:89:a4:51:2b:16:10:f8:
ad:28:03:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 22:42:07 2025 by rpki-client