Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
File: vklD9SA9Q0YKE61OqdfVuVDGE80.mft (raw, json)
Hash identifier: lfbUxooCNakrm6u37qcXwbi0fKOV7kxxoyBTMdd01wI=
Subject key identifier: FE:D6:9C:FF:2C:7F:34:F6:BE:47:9A:A7:90:A2:BC:08:B0:C5:A5:30
Authority key identifier: BE:49:43:F5:20:3D:43:46:0A:13:AD:4E:A9:D7:D5:B9:50:C6:13:CD
Certificate issuer: /CN=be4943f5203d43460a13ad4ea9d7d5b950c613cd
Certificate serial: 01968EB919EC48F77270154BABF93FFA3349
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
Manifest number: 1404
Signing time: Fri 02 May 2025 02:00:17 +0000
Manifest this update: Fri 02 May 2025 02:00:17 +0000
Manifest next update: Sat 03 May 2025 02:00:17 +0000
Files and hashes: 1: FvmWK8AMx-teHQ5tWkhhyLwCTdQ.roa (hash: coWDehO4MQ177+hdG6n28lrng5GzRH0clwFKkBo/jyg=)
2: P0eLHT9-M-aTFtL_3Zf0a5B6Ndg.roa (hash: uyQciIXo2hsIiWCjmOsDyTK0I4LR9Xab2ALuXJDMpzQ=)
3: s1Gqcb4cma0dzStLOOm8HvEO5jQ.roa (hash: NwYmvG8onNhwCfDmhQjAdYoUGMe+Y6N54avr4BG3ekE=)
4: vklD9SA9Q0YKE61OqdfVuVDGE80.crl (hash: oqW+odAtveMFLdPM0D4Sw7+NxTwHeUieKeBdCbHXdOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8e:b9:19:ec:48:f7:72:70:15:4b:ab:f9:3f:fa:33:49
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be4943f5203d43460a13ad4ea9d7d5b950c613cd
Validity
Not Before: May 2 02:00:17 2025 GMT
Not After : May 3 02:00:17 2025 GMT
Subject: CN=fed69cff2c7f34f6be479aa790a2bc08b0c5a530
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:a2:fc:00:7d:1e:b7:2f:54:05:69:ef:04:63:
66:d1:3e:6f:f1:d9:93:b5:a5:65:35:c5:8a:cb:64:
dc:61:af:05:6f:a5:b9:37:79:e2:f8:2e:71:f2:b2:
3d:a1:d1:87:2b:c2:cb:e7:02:cd:e5:a2:87:e8:a4:
7b:2b:73:09:43:46:52:50:1e:ea:ac:b5:26:df:85:
4a:ae:3f:1f:f2:fa:74:43:5f:cd:ae:5a:80:30:17:
9a:7f:2b:9d:05:37:a9:ec:dd:f1:c3:09:7b:54:97:
d8:2c:07:14:a5:1b:3e:69:6a:1a:21:2d:4d:d9:6a:
ab:8d:e7:3a:c9:a1:e9:af:ab:e9:ec:3b:be:df:de:
72:48:9c:35:a6:53:31:98:d2:99:a9:f2:bd:08:2a:
77:a1:a9:38:63:e3:62:d9:94:a0:37:71:83:6c:21:
dc:c4:09:a8:3c:33:c6:07:d7:86:de:c2:ad:c6:05:
eb:00:3f:07:0d:14:51:34:92:64:0f:ef:c9:1f:dd:
69:fb:fd:92:d6:11:c7:6a:66:36:28:e6:5e:ec:5c:
81:58:fe:98:7f:2e:01:61:41:72:34:38:37:12:e5:
6b:79:6c:fb:5b:e2:85:91:db:4e:62:ae:de:ae:70:
77:df:13:23:06:3f:d8:61:e6:de:70:00:4e:42:85:
45:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:D6:9C:FF:2C:7F:34:F6:BE:47:9A:A7:90:A2:BC:08:B0:C5:A5:30
X509v3 Authority Key Identifier:
keyid:BE:49:43:F5:20:3D:43:46:0A:13:AD:4E:A9:D7:D5:B9:50:C6:13:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vklD9SA9Q0YKE61OqdfVuVDGE80.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/3314ec-8ff0-4950-858f-a051ae63dba1/1/vklD9SA9Q0YKE61OqdfVuVDGE80.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
67:67:ae:af:a7:c5:3a:6e:55:d7:9e:dc:97:dc:5b:ae:93:6f:
7e:23:5c:98:f4:0e:42:85:eb:29:b0:5c:d5:a3:84:dd:76:13:
5c:a0:67:09:f8:1b:1b:20:4a:d0:76:56:42:f8:b4:93:30:7e:
cc:17:11:a2:23:a9:bd:ed:2c:5d:f4:5f:3d:65:14:70:f4:2b:
73:ac:c7:dd:0c:5e:b6:3e:80:48:94:36:4f:47:96:3a:de:96:
78:2e:4b:da:53:e2:2f:bf:7e:56:31:b7:c8:ae:a2:c1:92:82:
7f:1f:ca:78:80:be:1b:54:fe:17:7c:5a:97:16:d8:5c:01:6d:
b7:f1:c8:f6:1e:fc:0f:18:7a:e6:4c:bc:a2:b8:9b:c5:b4:28:
cc:e4:3c:36:06:1c:29:c7:62:b8:e7:1b:7f:2b:77:65:2f:17:
bd:fb:e1:57:25:bc:f4:a4:43:57:3c:22:d7:f2:11:aa:e4:4a:
dd:e3:77:53:77:6d:90:95:ad:3d:85:cb:97:80:a8:29:19:2d:
0c:2b:10:8b:8f:4e:ce:9b:0c:61:f0:65:95:b1:2f:4f:28:a8:
bf:59:b1:ec:2d:fc:62:5a:11:0c:73:7e:fd:3a:90:25:8f:05:
ea:0b:9e:94:86:0f:a1:a3:88:e1:45:92:18:7c:80:cc:48:11:
87:e1:9a:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 12:02:21 2025 by rpki-client