Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
File: vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json)
Hash identifier: FOuYtJAzvY53lk0t4BprdPgfzi1E7zSEVih3V4sv7FU=
Subject key identifier: 4B:1C:2B:85:EA:12:4D:44:D0:B7:01:79:DB:F1:95:74:AF:CF:0F:E7
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial: 01968ADC4DC5006F00C3B163B0799933A6CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
Manifest number: 13F2
Signing time: Thu 01 May 2025 08:00:15 +0000
Manifest this update: Thu 01 May 2025 08:00:15 +0000
Manifest next update: Fri 02 May 2025 08:00:15 +0000
Files and hashes: 1: rEdLOhgJ5xMWvLwmv0wizm-cOW0.roa (hash: 5KEvRv7KqMLhpYGvFA0tU5bp6PFE1qlP3ELvibmeSX4=)
2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: 6ZMoj8glTZ6N6l/UqFnOAr4VuA7aj30ANQibd7NTjVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8a:dc:4d:c5:00:6f:00:c3:b1:63:b0:79:99:33:a6:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Validity
Not Before: May 1 08:00:15 2025 GMT
Not After : May 2 08:00:15 2025 GMT
Subject: CN=4b1c2b85ea124d44d0b70179dbf19574afcf0fe7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:4c:33:cb:9f:de:27:db:e8:96:2e:ce:d8:55:
a7:29:43:58:e7:3f:af:d2:22:91:f3:ed:c9:07:a1:
5f:bb:1e:6c:a8:52:b6:22:a1:41:d9:4e:62:ad:1e:
ac:9c:04:39:a5:b7:4d:46:ec:c0:f3:c5:ea:6d:44:
10:b3:8d:11:d2:5c:7a:0e:19:60:cd:8f:4b:9b:c5:
21:87:c1:06:02:c5:42:05:38:b8:65:05:be:e9:a5:
fc:57:15:1d:19:86:01:bd:bf:b9:b5:4f:ca:bb:be:
e4:b7:57:60:95:32:ae:a7:9d:7a:38:c4:9a:09:7a:
d9:0d:70:bf:94:d2:63:5c:5e:d4:ad:6a:ab:c6:18:
01:7e:2f:76:9f:cb:d2:b5:64:a6:fc:42:a4:aa:39:
bb:32:4b:d9:69:73:42:ba:1b:5a:7a:e4:c9:6a:0b:
02:20:88:77:e6:a1:33:75:32:e8:ec:88:62:b7:2d:
37:51:ad:c6:a5:aa:19:c2:08:7d:1b:68:82:94:4a:
b5:c7:e3:c8:65:ed:56:e8:db:9b:bb:30:88:c2:28:
83:7d:9e:0f:01:d6:50:a5:52:14:4b:ed:09:87:8a:
58:49:dc:75:e6:f4:0f:e4:c6:01:6f:54:ab:6e:0f:
d6:de:41:66:9c:67:c5:44:56:2f:9f:84:c5:99:1d:
af:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:1C:2B:85:EA:12:4D:44:D0:B7:01:79:DB:F1:95:74:AF:CF:0F:E7
X509v3 Authority Key Identifier:
keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:05:9d:a5:4f:97:8f:70:cd:24:41:f2:0b:b0:04:94:c2:6e:
20:b4:52:bb:f2:4b:4b:64:8d:8e:34:51:58:5c:8a:d9:34:34:
83:64:43:4a:75:fd:52:17:c3:bb:9a:3d:8c:a4:34:a9:c3:d3:
60:f2:da:b6:45:98:16:64:ec:f4:58:1e:13:c9:e9:12:e2:d5:
92:01:39:14:44:bd:11:d4:19:74:42:ea:c2:e0:3e:90:e2:c8:
ba:80:43:b8:a3:9f:ef:e3:27:4d:61:c2:30:33:ae:a0:89:f1:
3a:83:d2:fc:45:60:1b:33:9f:1f:29:c2:4c:bc:57:a7:b7:b2:
1e:71:b4:95:02:f9:74:56:58:2c:8f:16:0c:78:34:65:a2:19:
fe:58:d3:b5:1f:92:e4:d9:6b:ac:37:48:0c:2d:c3:91:f7:b6:
89:4e:3f:5f:4b:b6:1f:23:1a:80:f6:f1:2e:c2:b6:09:b1:90:
d5:79:19:0c:a3:0d:80:72:a1:20:cf:23:65:24:bc:cc:a8:e4:
ab:2c:de:fd:35:9e:bf:c6:c9:a0:a3:b5:89:31:29:8a:48:ec:
9d:33:35:c4:97:e6:f8:3b:dd:a1:77:c7:40:cb:2e:ac:f3:02:
4a:f5:fd:b2:26:98:8f:f3:fe:0d:0f:01:ec:44:26:e2:38:15:
99:10:58:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 16:05:28 2025 by rpki-client