Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: ijcs+ZX6rCnS9REPNNLVI/JWhIGxDET50okjG+fD3gI=
Subject key identifier: 99:21:21:09:08:31:F1:04:4A:FB:AD:8D:D1:47:D4:04:A0:41:B0:14
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 019681D992CCFA164BB88AC20C9A3A99A6CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 030A
Signing time: Tue 29 Apr 2025 14:00:41 +0000
Manifest this update: Tue 29 Apr 2025 14:00:41 +0000
Manifest next update: Wed 30 Apr 2025 14:00:41 +0000
Files and hashes: 1: O7wVhYp5aN-EHbBcAt5o4QIzfyg.roa (hash: 1pH3pLqu6QshZ8HwYPfHNSe335AW5zx9SMrVG3Y2btc=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: BWEMtIXAhEfzH8oQstBKAP5kGUwgHvfE6hA41nfGaWE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 13:46:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:81:d9:92:cc:fa:16:4b:b8:8a:c2:0c:9a:3a:99:a6:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: Apr 29 14:00:41 2025 GMT
Not After : Apr 30 14:00:41 2025 GMT
Subject: CN=992121090831f1044afbad8dd147d404a041b014
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:57:43:11:c2:d1:f1:78:0b:ab:b7:84:00:60:
1c:e6:8e:44:b0:54:1a:f0:74:c6:d7:c7:5c:b1:d1:
81:7c:ac:2c:69:b6:8a:a0:d2:ac:48:ae:20:65:c6:
8b:46:02:87:1b:20:4d:fa:49:30:45:3c:8f:7f:8a:
b2:02:ae:e9:dc:f5:c5:86:71:12:c6:81:de:d7:77:
70:2a:46:1c:80:e1:a4:b8:3b:b5:40:f4:51:72:a4:
9e:b3:c8:85:7d:2e:1e:40:1e:13:85:6e:61:46:c1:
6f:16:e9:94:b5:e0:33:a3:8a:da:47:ba:85:15:07:
e0:67:0c:4c:85:f7:5f:77:03:af:a3:74:3d:79:eb:
3c:52:c7:e9:46:2f:8e:e6:2a:29:e4:ff:f1:5e:36:
a4:d7:d7:2c:54:85:b3:08:22:10:c2:03:ba:c3:6a:
4d:ec:4c:b1:ea:36:82:00:f2:aa:b6:42:a0:88:e4:
f6:9e:2a:88:af:3b:8f:44:d0:47:e6:a4:a0:9b:f2:
98:c5:e8:11:4d:8c:d7:ca:2f:9c:b5:3d:4f:8d:51:
23:27:24:cc:55:1d:62:92:e4:50:63:f5:78:09:bb:
45:9d:20:a3:ee:d1:b2:2b:0c:36:e0:50:93:a9:af:
03:47:7f:52:1b:63:3c:0b:f8:7a:4b:91:33:f1:55:
7d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:21:21:09:08:31:F1:04:4A:FB:AD:8D:D1:47:D4:04:A0:41:B0:14
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:12:7c:57:a1:6a:c9:66:61:0d:69:45:b6:e6:12:77:17:cc:
78:e1:ad:61:c2:7f:aa:bc:a3:20:b9:e3:a6:68:b9:bc:b7:10:
53:01:3a:b5:50:4d:f1:c7:54:c3:28:0b:9f:83:86:b1:f4:76:
5c:c9:b8:c2:32:20:29:7c:0f:44:4a:b5:31:04:f7:fd:a5:78:
ce:6c:5e:c5:79:b9:f2:b0:cb:4d:4e:98:64:35:ad:3d:2f:b4:
30:82:cc:03:4c:2e:88:28:32:92:dd:63:26:a6:c2:7d:29:6b:
16:41:59:23:8f:21:15:0a:74:b9:09:92:6d:56:84:1f:f9:8b:
22:17:d4:36:2d:40:20:70:28:d2:e0:da:54:1e:48:46:10:80:
19:43:3d:c3:e8:56:48:6d:a9:98:c2:d6:5a:7e:81:b1:c7:a4:
c8:d6:90:a3:a9:8d:ed:8c:ce:bc:6e:a1:88:1a:c5:9d:d3:22:
07:48:19:98:ec:e2:e9:9e:b4:73:42:ac:1f:ac:b1:05:ea:5c:
48:7a:3c:48:9d:f2:a5:8b:bc:c5:bb:a3:ff:bf:7d:c1:ea:af:
4c:f3:0c:e9:5d:66:ab:5f:dd:cc:ad:86:3d:84:0d:e6:ba:48:
3b:93:dc:d3:c2:32:7d:b6:e6:d8:fe:6b:e0:ad:10:0a:39:17:
c1:cd:fd:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 16:54:17 2025 by rpki-client