Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
File: vSpaBrm0P86hiFQdMMbcNDCq85I.mft (raw, json)
Hash identifier: Utg2QcK3PEW3dMaEbj6BxgoZg3nkewSg7p/yoNjcnTU=
Subject key identifier: 56:69:BB:D2:AD:E1:83:54:D9:71:4D:CC:6C:CE:BF:5D:CB:1C:79:37
Authority key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
Certificate issuer: /CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Certificate serial: 0197684E0B31D29861DE6BF16DD097E664FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
Manifest number: 1061
Signing time: Fri 13 Jun 2025 08:00:34 +0000
Manifest this update: Fri 13 Jun 2025 08:00:34 +0000
Manifest next update: Sat 14 Jun 2025 08:00:34 +0000
Files and hashes: 1: dNOXWcyjBwUcXV5oIaNhLVVvSEU.roa (hash: 4Fft0psn/kwpjVEKZgVhKcfKwufV2SXuxRSuxxvAa+k=)
2: vSpaBrm0P86hiFQdMMbcNDCq85I.crl (hash: I/HUmtMhuiHnHL5UsQ6ULL0pVRwkOlSCMFRwUve+jyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 08:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:4e:0b:31:d2:98:61:de:6b:f1:6d:d0:97:e6:64:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Validity
Not Before: Jun 13 08:00:34 2025 GMT
Not After : Jun 14 08:00:34 2025 GMT
Subject: CN=5669bbd2ade18354d9714dcc6ccebf5dcb1c7937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:77:72:a3:e1:6d:e9:98:20:56:3b:1b:a3:62:
54:50:db:59:fe:69:5a:03:e3:f3:e8:06:fa:ba:9c:
d6:a6:dd:dd:e7:2e:cc:9e:3c:c0:65:c8:2f:0c:da:
11:8e:e9:e8:18:3c:f3:6d:d2:ab:98:e0:d5:a8:82:
4f:87:9e:4b:3a:3c:54:7f:cd:3f:33:27:99:e1:75:
f0:41:7d:29:96:71:cd:08:69:1d:7a:9d:03:64:b5:
25:68:06:d4:79:72:28:11:a0:a2:77:26:d6:e6:ee:
21:9a:c1:97:87:ab:25:ed:da:fe:2c:12:ad:86:8a:
49:e5:8f:2e:48:ff:ea:c4:29:3c:5f:9d:c4:57:6d:
5e:8b:b7:3a:f4:30:10:58:7c:54:69:45:be:fb:60:
7d:b7:2f:1f:f0:e2:29:e6:e9:c8:db:1d:cd:14:14:
35:43:6e:d1:ed:23:88:5c:e4:83:0e:9e:5a:a6:ee:
f6:5d:3f:f4:28:72:88:d5:32:b9:07:ec:20:4f:4b:
ea:36:27:1e:88:5b:0b:6c:e6:c7:81:fb:88:fc:08:
fc:d1:32:39:d3:f1:44:b8:d3:b9:bb:f1:75:1f:8f:
79:a4:4b:a3:ab:b6:2f:fb:8d:7d:29:3b:88:1e:30:
1f:41:0c:46:f1:91:b4:be:06:5f:21:04:9a:d0:f5:
82:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:69:BB:D2:AD:E1:83:54:D9:71:4D:CC:6C:CE:BF:5D:CB:1C:79:37
X509v3 Authority Key Identifier:
keyid:BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:d9:bf:cd:19:59:c9:de:ec:f5:6d:12:91:52:50:ae:0f:36:
7a:ef:6c:72:9d:ab:3e:b7:8b:ad:a7:e4:58:20:39:bf:29:12:
cf:37:22:1a:0d:14:14:bf:a2:df:f7:75:70:40:a9:ce:e1:d8:
b1:d2:1c:bb:16:5b:18:0e:23:2c:0f:db:9e:2d:77:0e:5c:4e:
87:85:02:6e:41:f7:51:1b:b5:04:36:f9:13:2d:c5:33:d6:b9:
ba:60:84:f9:d7:fc:97:1d:e4:a8:7e:e6:e6:2f:ef:35:ac:93:
37:87:2b:25:27:dc:24:17:d8:a2:d8:7c:14:67:69:dd:36:fe:
e9:f7:b7:ae:7c:76:73:5c:52:29:ea:92:a4:ba:49:bc:7c:7e:
41:ca:d5:3e:cd:2e:50:19:8e:03:70:2d:61:54:ab:80:f9:85:
4f:4a:80:e1:7b:ff:d2:48:6e:7c:e6:8d:b5:39:6a:c6:3d:da:
47:cb:ac:7b:45:6f:ce:e5:82:52:4a:95:62:a8:df:83:a7:90:
84:39:b2:d5:0f:79:be:de:22:41:bc:0e:c2:70:70:69:4e:41:
2d:91:8c:17:bd:f0:5f:a9:ff:0d:04:73:90:59:94:15:0a:28:
51:9c:34:64:47:26:2f:ba:22:3a:5b:89:f8:2a:a1:6c:3e:aa:
df:3c:3f:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:14:48 2025 by rpki-client