Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
File: vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft (raw, json)
Hash identifier: ikuz9FzGPHZqJlyUTo+TsK/Z+fZlV6xOZ5ydI5BK1fM=
Subject key identifier: BF:98:01:E2:D5:66:B3:D6:81:72:80:00:80:4D:CE:32:A2:29:66:25
Authority key identifier: BD:85:31:4D:13:C7:82:C0:52:DD:02:2B:3E:4E:20:14:2B:64:17:0E
Certificate issuer: /CN=bd85314d13c782c052dd022b3e4e20142b64170e
Certificate serial: 019682B5412BE3FD700FBB5DF0125BC2E0C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUxTRPHgsBS3QIrPk4gFCtkFw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
Manifest number: 10A8
Signing time: Tue 29 Apr 2025 18:00:38 +0000
Manifest this update: Tue 29 Apr 2025 18:00:38 +0000
Manifest next update: Wed 30 Apr 2025 18:00:38 +0000
Files and hashes: 1: 87DcvIoV9C57hb7DwzS0oT0QBdM.roa (hash: 1fwwbxC7tvmVRypNN1d4FXoCK3/5oiWQOQyukuAKNSE=)
2: vYUxTRPHgsBS3QIrPk4gFCtkFw4.crl (hash: 45o0nUCCWhgVwmCvPmrr0r1Fb/dYjhOmj7ZaWKpmG+w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUxTRPHgsBS3QIrPk4gFCtkFw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 30 Apr 2025 15:02:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:82:b5:41:2b:e3:fd:70:0f:bb:5d:f0:12:5b:c2:e0:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85314d13c782c052dd022b3e4e20142b64170e
Validity
Not Before: Apr 29 18:00:38 2025 GMT
Not After : Apr 30 18:00:38 2025 GMT
Subject: CN=bf9801e2d566b3d681728000804dce32a2296625
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:d2:83:3d:80:4a:41:74:c9:26:fd:7b:fb:bb:
30:c4:57:56:a7:64:04:45:06:f2:f9:ee:9b:e8:df:
75:f5:90:bb:e4:ae:4d:7a:d1:e6:43:11:5e:3c:fa:
07:01:9e:70:4a:aa:fd:74:20:ce:0b:64:57:a1:3d:
9d:f5:c0:b6:8b:bf:15:e2:3c:fb:78:27:22:54:88:
75:7f:15:1f:fe:1a:b7:e0:78:ed:83:3b:9a:b3:79:
56:93:fb:07:6f:82:f6:9b:d7:f2:0d:a4:dd:85:2d:
86:ca:94:31:27:87:f9:57:8b:3b:31:d7:75:44:32:
dc:2a:76:b3:e3:4a:f9:3b:3c:76:bd:e4:10:9a:fc:
23:c4:84:ef:24:43:fa:4b:47:8a:dd:21:6e:72:49:
a3:04:a9:c2:08:f1:53:81:8d:ee:46:f8:01:1e:ba:
58:b6:98:28:5a:56:73:cb:ff:55:b1:49:d8:67:3c:
5d:ec:1c:3d:a9:09:3f:61:1f:2b:ef:40:2c:15:d4:
e6:1a:72:3a:b5:06:8b:40:a6:3d:e2:ce:e0:77:0f:
95:4c:8d:d3:15:d8:9c:95:a7:8d:81:17:78:b4:7a:
53:95:01:20:de:fd:b4:df:d3:3c:be:c5:76:a1:ef:
89:28:23:f9:43:74:32:d1:46:8a:0b:39:6e:4b:69:
6d:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:98:01:E2:D5:66:B3:D6:81:72:80:00:80:4D:CE:32:A2:29:66:25
X509v3 Authority Key Identifier:
keyid:BD:85:31:4D:13:C7:82:C0:52:DD:02:2B:3E:4E:20:14:2B:64:17:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUxTRPHgsBS3QIrPk4gFCtkFw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/052d38-6080-4e79-8a4b-625515ff5944/1/vYUxTRPHgsBS3QIrPk4gFCtkFw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:40:28:4c:21:38:31:10:ba:6b:f5:b8:e0:24:d7:06:e9:09:
13:01:fa:da:e7:ba:89:df:a3:28:84:85:2e:b8:c6:62:f2:35:
c9:77:f3:eb:e1:3f:48:6a:6d:69:66:40:13:82:53:86:c7:06:
47:b7:06:6d:9d:76:b0:a4:87:5e:45:07:8a:7e:0a:96:24:8f:
6f:db:f0:dd:b9:0e:ef:60:58:26:09:d4:e2:c0:55:02:10:26:
65:63:11:4d:b4:d6:33:bd:45:73:0c:18:54:29:bc:b5:89:88:
8b:d8:ed:81:75:b6:91:d6:f0:04:46:9d:5c:26:33:a1:b0:5d:
d3:04:d3:72:7f:42:74:f7:c4:84:37:2c:2f:32:af:ba:c2:ab:
f2:94:4f:bd:ba:78:69:32:97:57:69:6b:20:83:90:56:fa:4f:
0e:2f:bb:3c:ba:7e:37:73:3f:43:1f:18:17:4c:f8:fb:4b:13:
fe:76:8b:19:7c:15:7e:7e:9d:b4:1e:db:d6:45:06:0f:6d:13:
1c:4c:b8:27:51:ec:83:77:53:0a:0c:30:fe:6c:a0:90:3d:84:
6b:7d:87:58:28:2d:81:91:56:2a:6e:67:33:df:da:ef:ef:b8:
f3:f4:97:d2:2f:04:7b:08:47:5a:ba:23:13:98:97:3a:c6:37:
ed:fd:2f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 23:56:02 2025 by rpki-client