Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
File: vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft (raw, json)
Hash identifier: Q+c6av2tFbjMRqAGXB4WEpO+KZpjkAc2oez2o79OrWQ=
Subject key identifier: 9C:21:3F:0E:30:BB:FF:AF:78:36:F0:16:FC:85:27:60:C8:BC:B3:8E
Authority key identifier: BD:B2:4D:F4:A7:C9:AA:21:31:D8:57:50:3B:93:D6:0F:7F:B5:1B:D9
Certificate issuer: /CN=bdb24df4a7c9aa2131d857503b93d60f7fb51bd9
Certificate serial: 01976F9990770299F7A1753792680D130A7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
Manifest number: 025E
Signing time: Sat 14 Jun 2025 18:00:24 +0000
Manifest this update: Sat 14 Jun 2025 18:00:24 +0000
Manifest next update: Sun 15 Jun 2025 18:00:24 +0000
Files and hashes: 1: AFVAjCiROQ32Z_efvRaORNpa2fQ.roa (hash: STiLszZIpw1MlrUzOI5Ii3ZfZdoAbfQenvPasDTHJCA=)
2: vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl (hash: NZH1dTtyUIu2JGuzMnlnRmJiz1IzBBalAITJxH7qqc0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 18:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6f:99:90:77:02:99:f7:a1:75:37:92:68:0d:13:0a:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdb24df4a7c9aa2131d857503b93d60f7fb51bd9
Validity
Not Before: Jun 14 18:00:24 2025 GMT
Not After : Jun 15 18:00:24 2025 GMT
Subject: CN=9c213f0e30bbffaf7836f016fc852760c8bcb38e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:0d:12:77:10:0a:e7:03:c6:70:f4:2f:01:66:
8a:67:ce:13:92:f9:97:56:a2:f8:52:19:de:a0:c7:
b1:c9:0c:e6:27:66:b8:d3:47:d8:96:59:e0:46:8b:
52:4c:a2:95:0a:2e:39:97:9e:8e:e0:92:67:90:7a:
6c:4d:77:be:f4:a9:f5:f6:df:8a:3e:20:ab:87:57:
ae:b5:43:00:3a:ae:18:68:b9:16:7c:83:f3:e0:2c:
9d:9c:47:e0:46:59:22:b5:fd:98:31:a5:8d:43:0b:
60:f9:5f:c1:cc:d8:de:ef:04:7c:c5:56:6b:c7:27:
1c:15:bf:19:34:68:0f:5c:16:df:66:42:5b:25:c0:
c1:db:63:4e:5c:8f:7e:5b:2b:19:81:13:cf:f4:bf:
18:ea:3a:1e:6a:8a:a9:6d:a7:c4:9e:91:51:e3:75:
e5:d7:a5:48:fb:d1:4f:f8:8a:79:62:b3:61:cc:fe:
d7:a3:f1:bd:38:90:70:e2:5e:42:20:e3:f3:f5:e9:
62:1b:04:c7:46:2e:a7:2e:2f:74:b8:42:f1:bd:d1:
61:eb:b8:25:11:9f:b1:5f:e7:c0:f6:8e:ff:f5:af:
a5:86:9f:f7:07:2d:45:30:f6:5e:0b:c2:37:ec:70:
56:a2:c4:ef:52:e9:86:73:a6:23:68:9d:59:79:bf:
1b:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:21:3F:0E:30:BB:FF:AF:78:36:F0:16:FC:85:27:60:C8:BC:B3:8E
X509v3 Authority Key Identifier:
keyid:BD:B2:4D:F4:A7:C9:AA:21:31:D8:57:50:3B:93:D6:0F:7F:B5:1B:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vbJN9KfJqiEx2FdQO5PWD3-1G9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/34/0102c7-b4ea-4bab-b770-d30aeb1c20ca/1/vbJN9KfJqiEx2FdQO5PWD3-1G9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:b7:8d:ec:6a:4b:1d:2e:a8:45:8a:b6:5c:d5:02:59:fc:83:
b5:6a:e9:a3:01:a7:fc:f8:5d:71:52:0a:5a:c4:63:6e:b4:8e:
2f:2f:37:43:86:f2:87:8a:96:58:4e:a6:d7:be:b2:cf:9b:7c:
ba:8a:07:1c:0d:47:53:68:8c:4e:83:b4:bf:02:83:07:c9:e5:
95:aa:1d:f2:ec:fc:2e:f5:41:03:26:ff:38:a0:55:18:b7:c9:
04:75:64:d7:17:c9:73:cd:de:19:57:12:79:25:ea:38:71:8d:
f0:4f:8a:e4:d2:39:2f:f8:9d:96:1f:ce:4b:b2:7a:f5:5a:61:
e5:7b:05:58:93:02:3d:3a:89:eb:dd:5a:43:ef:18:70:e0:0b:
82:08:6c:72:0d:09:58:d1:55:d4:9a:4d:4d:12:34:5f:fa:e9:
63:c3:cf:87:90:0b:f6:6a:05:5e:cb:5c:d2:79:81:9e:a8:ee:
5c:ce:19:ef:ae:b0:3d:37:bb:3a:0d:71:53:fb:ea:09:43:a6:
56:37:c2:68:8e:6e:96:85:7d:cd:06:1c:16:9c:24:4d:06:5b:
a6:9f:2e:74:69:98:e1:de:01:5b:cc:d6:c3:de:5d:25:3c:c9:
3a:9f:bb:f5:d6:77:8f:78:f9:c8:c2:bf:e4:0d:db:44:14:f7:
d7:5c:63:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 23:54:55 2025 by rpki-client