Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
File: vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft (raw, json)
Hash identifier: 165NiawMHGlbdeeBdRCKvrMM2Y0kWj32OeHK5Qu52KE=
Subject key identifier: 79:56:08:67:C7:92:D7:5E:A7:7F:3E:D2:84:37:7C:FF:34:E7:D7:6C
Authority key identifier: BC:77:CB:89:64:C4:ED:60:14:48:A4:36:86:85:BF:08:DC:B5:E1:F4
Certificate issuer: /CN=bc77cb8964c4ed601448a4368685bf08dcb5e1f4
Certificate serial: 01969116237222A17E09F56213ECB3B2FDF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
Manifest number: 151D
Signing time: Fri 02 May 2025 13:01:09 +0000
Manifest this update: Fri 02 May 2025 13:01:09 +0000
Manifest next update: Sat 03 May 2025 13:01:09 +0000
Files and hashes: 1: vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl (hash: 5B1AGUUTanX9qjMRvchLzVsOSoAhwcixn5BWj0zkOVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 03 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:91:16:23:72:22:a1:7e:09:f5:62:13:ec:b3:b2:fd:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc77cb8964c4ed601448a4368685bf08dcb5e1f4
Validity
Not Before: May 2 13:01:09 2025 GMT
Not After : May 3 13:01:09 2025 GMT
Subject: CN=79560867c792d75ea77f3ed284377cff34e7d76c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:ba:43:dd:15:89:16:f0:df:16:d5:6d:d9:1c:
ec:4f:a8:90:1d:c4:75:33:6e:51:89:88:15:5f:c1:
40:13:b8:c7:75:d4:b3:34:53:23:ee:1d:ce:3c:ac:
65:24:82:d6:97:61:e4:47:76:3c:a9:db:75:99:5e:
46:66:b3:86:fe:68:f4:8b:12:05:22:3c:e7:e8:50:
fe:64:e7:4d:7a:9f:49:33:17:d5:d9:34:30:2b:95:
ca:e0:e3:ee:ea:86:7b:30:b7:e7:06:58:70:23:f1:
3f:20:d8:26:07:8c:97:9a:c1:92:b8:05:2e:e5:37:
5b:08:55:e0:e5:e9:69:65:44:9b:05:f7:3a:89:94:
d0:c8:cb:79:3f:6f:54:d6:5a:f2:bc:27:84:17:2a:
d8:44:c0:b3:a5:b2:72:93:ca:03:25:c2:a6:c4:67:
89:73:04:f0:e4:f5:99:27:c5:24:12:c2:84:c6:4d:
3b:ae:76:39:de:1e:f4:c2:9e:09:a2:bf:ef:f6:3a:
b1:c1:e9:b9:c8:f0:f9:61:1e:a9:fc:0a:0d:6f:ff:
4e:fa:2b:28:44:6f:97:55:ef:47:83:f7:a9:0e:81:
7e:bf:6f:84:90:78:a2:6e:b7:0e:30:66:3f:82:9b:
42:d3:c7:87:36:d5:01:6e:79:b3:4e:85:88:7f:7d:
ac:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:56:08:67:C7:92:D7:5E:A7:7F:3E:D2:84:37:7C:FF:34:E7:D7:6C
X509v3 Authority Key Identifier:
keyid:BC:77:CB:89:64:C4:ED:60:14:48:A4:36:86:85:BF:08:DC:B5:E1:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/c75e16-6647-407a-a201-d0327df02628/1/vHfLiWTE7WAUSKQ2hoW_CNy14fQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:b9:93:40:bf:17:c1:7d:cd:0c:d5:f0:65:33:04:00:68:be:
9f:c6:70:d3:a8:45:70:9c:4d:4e:64:6d:dd:83:d9:0a:19:ce:
31:a6:c7:49:4b:2e:8a:7b:af:a9:a7:80:57:39:5e:c7:56:8e:
28:f2:28:6c:4a:c1:d9:52:34:29:da:a7:22:e2:9a:82:61:21:
4a:6d:fc:ac:e3:1a:ec:1e:c3:6b:ce:25:67:37:bf:53:9d:03:
2d:f3:93:08:d5:d9:08:92:56:d9:07:11:24:07:28:c6:1e:63:
f5:75:83:36:59:56:14:10:83:d6:b7:17:85:ee:9b:da:37:ec:
cc:dc:9b:40:1c:c9:2a:9f:37:cc:b5:df:f8:ee:13:bf:dd:25:
59:55:4d:5f:1e:ad:4d:57:f5:35:6d:9d:94:b2:9c:dd:2f:41:
03:dd:68:7f:d6:c1:3b:37:56:60:e9:3f:30:1b:e3:c0:81:d0:
f9:9f:e6:8c:eb:80:30:47:61:3f:33:e4:4f:e2:26:71:7c:37:
a4:0d:75:5d:bf:3d:4f:0e:97:9a:5d:3c:8b:ea:99:8d:15:45:
7c:ac:dd:6f:36:4a:01:0b:ba:91:32:6b:48:31:83:03:d0:58:
0c:b6:c8:ce:3e:1b:62:95:ba:c0:93:09:d7:a5:27:d5:4d:14:
cf:3a:ca:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 2 19:25:13 2025 by rpki-client