Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
File: VmHZZN9KhtuP-5mqiVgtpoowkIw.mft (raw, json)
Hash identifier: TK2kHHHeWFHoVt6ClfAht5l1jVGqfy1aN7CaRMISaaU=
Subject key identifier: C3:B4:A3:E4:B3:A1:40:F7:23:0A:0F:BC:E8:FD:7B:52:4B:61:7E:B9
Authority key identifier: 56:61:D9:64:DF:4A:86:DB:8F:FB:99:AA:89:58:2D:A6:8A:30:90:8C
Certificate issuer: /CN=5661d964df4a86db8ffb99aa89582da68a30908c
Certificate serial: 0197857CE76B64AECEC4C258350FA86600DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmHZZN9KhtuP-5mqiVgtpoowkIw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
Manifest number: 0131
Signing time: Thu 19 Jun 2025 00:00:44 +0000
Manifest this update: Thu 19 Jun 2025 00:00:44 +0000
Manifest next update: Fri 20 Jun 2025 00:00:44 +0000
Files and hashes: 1: VmHZZN9KhtuP-5mqiVgtpoowkIw.crl (hash: NBSyiO0T46AIWqRjOw39XDouPB5szN2TINzFhjiAAYY=)
2: xMdRmutHFokxkkQckhp-estBVrY.roa (hash: B+GeVyXFQ8LdKQlX7fXVWpcWBfpc+XAscpHvCnfEhnA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
rsync://rpki.ripe.net/repository/DEFAULT/VmHZZN9KhtuP-5mqiVgtpoowkIw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 19 Jun 2025 23:47:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:85:7c:e7:6b:64:ae:ce:c4:c2:58:35:0f:a8:66:00:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5661d964df4a86db8ffb99aa89582da68a30908c
Validity
Not Before: Jun 19 00:00:44 2025 GMT
Not After : Jun 20 00:00:44 2025 GMT
Subject: CN=c3b4a3e4b3a140f7230a0fbce8fd7b524b617eb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:54:fd:fb:44:79:2c:53:85:bd:f6:77:05:38:
b9:d2:a6:97:78:a4:a4:8b:29:2c:5b:93:6c:31:b9:
e1:f4:c9:14:2d:73:82:3a:c8:fb:93:46:c8:0d:c9:
58:e7:76:ca:a4:36:c7:d4:62:80:d8:15:dd:c0:bd:
99:06:7a:08:74:2a:76:17:cb:52:0d:b5:7a:b7:a1:
8a:dd:6f:18:cf:39:3d:5a:57:c1:b4:20:c2:5c:6f:
d5:f1:7f:50:f7:13:c0:ce:96:8f:9a:2e:0e:5f:10:
9f:94:05:5c:0f:d8:6d:8f:86:73:e1:01:02:30:d8:
78:b7:54:06:e2:c1:2a:7c:12:ca:d2:99:d3:22:c2:
41:5a:3f:4f:40:88:67:94:1a:87:fa:46:6d:a5:53:
b1:81:b3:7a:7a:54:2b:74:21:01:fa:10:05:3a:25:
4b:f3:ad:5f:8e:8e:ec:af:8a:bd:e6:ba:de:b9:19:
d5:7f:c7:9a:62:7e:4d:29:94:bb:68:72:07:94:d0:
78:44:d8:13:77:1b:78:40:f0:9a:11:b4:02:0e:8e:
71:97:27:19:a8:79:3e:58:9b:9d:5f:0e:f4:38:78:
1f:dc:38:da:be:be:fa:c5:e1:62:3d:71:01:8a:41:
11:4f:10:65:bd:0a:e7:be:7b:fc:d7:37:55:e0:f4:
5b:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:B4:A3:E4:B3:A1:40:F7:23:0A:0F:BC:E8:FD:7B:52:4B:61:7E:B9
X509v3 Authority Key Identifier:
keyid:56:61:D9:64:DF:4A:86:DB:8F:FB:99:AA:89:58:2D:A6:8A:30:90:8C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmHZZN9KhtuP-5mqiVgtpoowkIw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/b03a36-0807-41ef-af86-3d439b7cde72/1/VmHZZN9KhtuP-5mqiVgtpoowkIw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:20:fb:fb:a1:e4:2b:f9:a5:3e:24:39:cd:92:d4:0f:bc:c2:
27:7f:15:c6:1d:c4:50:c5:cf:15:18:eb:d8:e9:51:09:3e:e0:
17:48:37:e6:de:8d:ff:b7:4d:53:ef:f0:69:b6:de:21:21:b2:
87:2a:24:0c:09:f9:07:05:a9:65:db:23:4a:c9:7d:14:74:49:
19:f2:fa:e2:71:6f:aa:70:e0:69:07:c6:f2:a5:c9:80:48:61:
1c:b6:29:fa:95:4e:32:ec:85:9a:95:e0:7f:9c:ea:2a:13:f8:
38:d2:f6:c8:06:f9:f2:b0:87:f6:fc:60:3f:44:4f:64:c7:4f:
92:4a:c8:bf:a7:5b:33:32:e0:d9:d0:55:26:07:88:5a:64:85:
70:50:ad:f1:c0:c7:cd:ce:b2:b8:e8:98:97:ea:2e:14:57:77:
9f:8e:22:10:54:93:6e:41:1b:f2:e6:02:ba:35:2d:bd:9e:06:
a2:a9:b1:53:45:9b:f6:c5:cd:e5:cf:f8:b6:f2:a0:67:71:69:
e0:5f:4e:81:0e:77:55:90:20:b2:b7:8c:ce:39:29:9e:e6:6a:
16:d1:e1:f5:95:2e:cb:f2:59:6f:eb:74:15:b5:aa:24:24:1b:
21:cd:1e:5b:af:ce:0f:62:72:ab:1e:38:2f:7b:2e:0a:a1:c0:
d2:28:7d:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 05:58:00 2025 by rpki-client