Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
File: vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft (raw, json)
Hash identifier: Wy5CtZQWKq1G+Ly5Qz0A5XdbvQs/KL/I35+s7zRlqus=
Subject key identifier: 34:09:21:2F:61:68:69:A2:12:53:BD:A2:3E:98:37:68:0C:F0:B0:F3
Authority key identifier: BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
Certificate issuer: /CN=be722a99732c9c3cbc20b0a47292a823782603ac
Certificate serial: 0196993D49A45FE3ABC8E8218732ECB09328
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
Manifest number: 14B2
Signing time: Sun 04 May 2025 03:00:52 +0000
Manifest this update: Sun 04 May 2025 03:00:52 +0000
Manifest next update: Mon 05 May 2025 03:00:52 +0000
Files and hashes: 1: KEoMu2N6_T8O9ufaf0Y2clZ16n8.roa (hash: TtnWx5gcstoPtaU3BdfsPkG0EZi+JY/3eJmxv3P7PTM=)
2: vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl (hash: 9j75iQqXS0xZ/IeppMSwXCV8/K0RxEx35vjMyelwqE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:99:3d:49:a4:5f:e3:ab:c8:e8:21:87:32:ec:b0:93:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be722a99732c9c3cbc20b0a47292a823782603ac
Validity
Not Before: May 4 03:00:52 2025 GMT
Not After : May 5 03:00:52 2025 GMT
Subject: CN=3409212f616869a21253bda23e9837680cf0b0f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:b3:1d:27:09:ca:9d:db:f1:d1:85:10:a6:5c:
c9:8a:31:c1:9a:48:74:a0:91:7e:4d:27:10:07:59:
68:9a:97:8c:27:01:6d:f4:58:74:8a:40:13:69:e8:
b2:67:24:53:b6:a6:62:66:73:4d:a1:a7:b7:dc:b5:
b5:47:59:25:5b:b1:eb:a3:5f:85:3e:aa:d7:47:6f:
e1:bd:c5:1e:26:a2:c6:4a:c9:cf:0e:f5:da:40:1c:
11:e1:6e:c8:24:1f:3f:86:7d:5b:5b:bf:8f:d2:8f:
c4:8b:8b:de:eb:9d:8d:80:81:21:76:cd:16:8b:9a:
52:a8:d3:a2:e1:c5:e0:2a:f9:ad:42:a3:da:68:89:
87:f5:ae:f4:f3:3c:bb:77:1c:f6:77:a8:ae:8d:41:
4b:74:e0:4e:70:2a:63:a0:79:7e:94:51:28:74:43:
8b:96:fe:b5:cd:93:22:b9:79:e7:ac:ca:f8:e5:1d:
05:d8:10:0a:33:75:ae:e0:9d:d4:1c:fe:40:75:6d:
ba:6e:b0:16:6b:4a:9b:80:67:48:04:68:d6:c7:a5:
a7:10:d5:48:67:8a:0b:8a:d5:5c:78:cf:80:cb:2d:
4f:90:bb:46:91:3e:cf:b7:de:c8:ac:31:53:aa:0d:
02:1c:3a:ed:70:65:84:56:5b:75:2a:27:47:cf:37:
e3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:09:21:2F:61:68:69:A2:12:53:BD:A2:3E:98:37:68:0C:F0:B0:F3
X509v3 Authority Key Identifier:
keyid:BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:99:0e:1e:01:4f:c9:4d:08:fe:c3:d5:48:0a:d0:f6:c5:29:
03:6c:2e:bc:fe:a7:a8:38:7b:e4:a7:fe:64:d1:5c:54:26:a3:
7d:08:88:07:46:ce:ad:64:1c:d1:21:2f:74:5d:09:97:5b:de:
4b:7b:69:1d:22:19:a1:02:d1:7f:a5:fe:3c:f4:30:fa:8b:77:
80:1d:06:44:22:85:78:94:6d:7e:27:6e:ab:e2:db:9d:10:97:
1c:a8:95:5e:93:3b:88:6c:36:0d:38:16:ff:9d:f8:e7:66:36:
62:51:36:bc:b0:10:14:07:42:4f:f7:c9:cc:9b:4e:9a:56:f2:
83:2f:84:b5:db:df:96:0a:0d:9e:10:f7:5b:28:18:4c:ac:d8:
16:08:c1:81:8e:b0:3a:53:c7:77:90:12:13:a0:a9:fe:45:7b:
89:3f:99:b3:49:52:75:18:aa:54:97:7f:38:33:30:4d:ff:7d:
ca:b2:dc:48:d1:9c:60:f7:59:d0:be:0e:7b:99:4f:ea:90:52:
1d:1f:91:ff:c6:00:e8:ac:66:24:fe:b4:ca:10:8d:1a:b0:98:
70:cf:06:5b:de:98:e5:b6:4b:11:e2:b3:c6:c4:29:4e:5b:f2:
6f:a6:cb:08:f0:0c:cb:4c:21:38:87:e8:70:63:db:c3:23:e4:
f3:c6:ae:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaZPUmkX+OryOghhzLssJMoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlNzIyYTk5NzMyYzljM2NiYzIwYjBhNDcyOTJhODIzNzgy
NjAzYWMwHhcNMjUwNTA0MDMwMDUyWhcNMjUwNTA1MDMwMDUyWjAzMTEwLwYDVQQD
EygzNDA5MjEyZjYxNjg2OWEyMTI1M2JkYTIzZTk4Mzc2ODBjZjBiMGYzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw7MdJwnKndvx0YUQplzJijHBmkh0
oJF+TScQB1lompeMJwFt9Fh0ikATaeiyZyRTtqZiZnNNoae33LW1R1klW7Hro1+F
PqrXR2/hvcUeJqLGSsnPDvXaQBwR4W7IJB8/hn1bW7+P0o/Ei4ve652NgIEhds0W
i5pSqNOi4cXgKvmtQqPaaImH9a708zy7dxz2d6iujUFLdOBOcCpjoHl+lFEodEOL
lv61zZMiuXnnrMr45R0F2BAKM3Wu4J3UHP5AdW26brAWa0qbgGdIBGjWx6WnENVI
Z4oLitVceM+Ayy1PkLtGkT7Pt97IrDFTqg0CHDrtcGWEVlt1KidHzzfjnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDQJIS9haGmiElO9oj6YN2gM8LDzMB8GA1UdIwQY
MBaAFL5yKplzLJw8vCCwpHKSqCN4JgOsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wNDFiOWYtMWEwNy00MmU1LWI0ODct
MjliOTdhMTg3N2ZiLzEvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81Yy8wNDFiOWYtMWEwNy00MmU1LWI0ODctMjliOTdhMTg3N2Zi
LzEvdm5JcW1YTXNuRHk4SUxDa2NwS29JM2dtQTZ3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANJkOHgFP
yU0I/sPVSArQ9sUpA2wuvP6nqDh75Kf+ZNFcVCajfQiIB0bOrWQc0SEvdF0Jl1ve
S3tpHSIZoQLRf6X+PPQw+ot3gB0GRCKFeJRtfiduq+LbnRCXHKiVXpM7iGw2DTgW
/53452Y2YlE2vLAQFAdCT/fJzJtOmlbygy+EtdvflgoNnhD3WygYTKzYFgjBgY6w
OlPHd5ASE6Cp/kV7iT+Zs0lSdRiqVJd/ODMwTf99yrLcSNGcYPdZ0L4Oe5lP6pBS
HR+R/8YA6KxmJP60yhCNGrCYcM8GW96Y5bZLEeKzxsQpTlvyb6bLCPAMy0whOIfo
cGPbwyPk88au5Q==
-----END CERTIFICATE-----
Generated at Sun May 4 08:26:59 2025 by rpki-client