Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
File: vGNYdq8cfvgkEbQEpw2It5FlCfY.mft (raw, json)
Hash identifier: 7YrOQZUcGynHewjPhqmAAdJBce4z1jcWi7/5dcKCS4c=
Subject key identifier: EF:1A:DC:48:30:21:71:4E:BA:3D:52:ED:AC:DF:5C:45:61:76:18:F0
Authority key identifier: BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6
Certificate issuer: /CN=bc635876af1c7ef82411b404a70d88b7916509f6
Certificate serial: 01967BA08029581CEE99CD7BE537D82B0A5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
Manifest number: 0451
Signing time: Mon 28 Apr 2025 09:00:38 +0000
Manifest this update: Mon 28 Apr 2025 09:00:38 +0000
Manifest next update: Tue 29 Apr 2025 09:00:38 +0000
Files and hashes: 1: LSy4pwlxx6ifbllGQJDj8D7o8bU.roa (hash: VlWSPvQ7mW3Gy9fHD3zUtzLx6zn5FCR5wnd8Mk9PMXI=)
2: vGNYdq8cfvgkEbQEpw2It5FlCfY.crl (hash: MlVUwJw8Bvn9nOQilMbFEHNvNg/+YMissc6pqtL3m9I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 08:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7b:a0:80:29:58:1c:ee:99:cd:7b:e5:37:d8:2b:0a:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc635876af1c7ef82411b404a70d88b7916509f6
Validity
Not Before: Apr 28 09:00:38 2025 GMT
Not After : Apr 29 09:00:38 2025 GMT
Subject: CN=ef1adc483021714eba3d52edacdf5c45617618f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:f5:ec:1c:81:80:5e:d1:e1:2a:a0:9b:73:ca:
43:97:3f:89:a2:42:c7:87:02:d7:d5:67:94:cc:e2:
be:f0:e1:6c:e9:f5:d1:a8:f7:dd:a1:df:f8:6f:0b:
c1:34:34:20:e3:c6:3b:83:dc:82:c5:3c:b5:59:03:
11:64:d8:72:07:0f:38:95:d8:fe:62:40:0a:5f:1b:
1d:ef:dd:7a:c5:a6:4f:36:3f:7e:2c:1f:42:b2:f8:
e0:05:80:26:07:d9:c1:b5:7a:35:98:a0:b7:d4:9c:
66:d4:1e:a8:96:5e:3d:73:d0:ee:30:b2:7e:95:5d:
4c:33:e8:87:e8:8d:e1:30:34:e4:a2:77:55:89:6f:
a2:1b:d5:0d:da:ec:ae:cd:49:ae:4e:2c:20:a3:ff:
b8:a9:d4:0d:78:89:8f:68:f0:8c:41:9e:da:6d:48:
bb:51:5f:51:d9:1c:ea:ae:2f:78:3e:79:5c:81:26:
cc:1a:0c:2e:0c:7a:03:a9:a8:30:dc:59:78:d0:de:
22:93:06:b3:e4:46:2a:bc:b5:11:58:d3:a5:19:40:
08:fd:3f:f4:65:3b:1f:f8:eb:73:f0:ef:88:80:af:
05:6d:ac:77:6c:4a:6c:9f:58:56:24:98:cd:0e:a9:
02:ac:f7:f4:94:30:ea:af:22:fa:f8:5a:05:f6:9d:
09:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:1A:DC:48:30:21:71:4E:BA:3D:52:ED:AC:DF:5C:45:61:76:18:F0
X509v3 Authority Key Identifier:
keyid:BC:63:58:76:AF:1C:7E:F8:24:11:B4:04:A7:0D:88:B7:91:65:09:F6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vGNYdq8cfvgkEbQEpw2It5FlCfY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/3ad43e-a4db-4465-82b5-ffae20700e93/1/vGNYdq8cfvgkEbQEpw2It5FlCfY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:77:4d:fc:2c:08:ec:66:43:db:7e:99:a6:b3:25:96:d1:9a:
f7:a2:73:1d:69:f6:49:9b:0a:86:36:57:bd:cd:d7:a8:bf:51:
06:c3:43:28:73:03:10:1f:8f:b0:7a:c6:ce:a7:9b:5c:86:ad:
e0:ca:e3:1f:39:87:2f:8f:c1:54:7c:60:21:1c:af:ed:95:53:
7a:13:33:f0:aa:f1:93:82:7d:29:bb:d6:ec:df:ef:04:bf:fe:
10:f7:d9:cb:3e:14:92:36:6a:68:7e:11:ea:b4:f8:b1:df:43:
2a:fb:c9:c4:26:72:cb:4f:be:7a:44:06:e8:a0:1f:4f:08:06:
f7:f2:2a:7b:8d:ac:23:43:5f:13:7a:14:10:cb:fb:2a:2a:5c:
59:db:07:95:39:a3:7c:c1:84:cc:a3:a0:c7:e5:11:7d:3b:65:
55:37:aa:e1:b7:9c:64:65:fb:9d:4a:85:93:fc:cc:17:26:a5:
7d:59:5e:e7:9d:b5:b3:d6:4e:a4:8f:14:86:e5:5c:ab:b3:e4:
08:e0:7d:53:ca:f6:15:7c:a0:4b:41:02:f5:13:69:9b:dc:02:
9c:1f:e0:1d:a3:ad:e3:b2:b3:56:82:c5:3e:8b:94:ff:63:12:
66:d6:a4:1e:ad:79:0f:51:dc:2f:06:e2:3c:59:75:ec:6f:97:
35:5a:81:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 13:14:36 2025 by rpki-client