Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
File: vJldFVAngKzfe25qGGXttaDn3Es.mft (raw, json)
Hash identifier: +540qeOlr3zyes0MZto9AqodtsktQRIPzvLkjHg/eqo=
Subject key identifier: 94:21:3D:4B:F5:D1:BD:FB:F9:5B:00:CE:BD:19:49:3C:1C:57:59:85
Authority key identifier: BC:99:5D:15:50:27:80:AC:DF:7B:6E:6A:18:65:ED:B5:A0:E7:DC:4B
Certificate issuer: /CN=bc995d15502780acdf7b6e6a1865edb5a0e7dc4b
Certificate serial: 0196767A02C013E066E4F38B5F37593EF6A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
Manifest number: 02C4
Signing time: Sun 27 Apr 2025 09:00:29 +0000
Manifest this update: Sun 27 Apr 2025 09:00:29 +0000
Manifest next update: Mon 28 Apr 2025 09:00:29 +0000
Files and hashes: 1: vJldFVAngKzfe25qGGXttaDn3Es.crl (hash: xm7OtLuFi5+RrSYxK9Ml1xxiepxdThE+Y6+MymbKFDE=)
2: ylPOOnSs52DARSEahPLXBl4_KnA.roa (hash: lVDEfOqJ+hS5o1tAWzlyu4ZG8E1RuFvF7CBIziXEhTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:7a:02:c0:13:e0:66:e4:f3:8b:5f:37:59:3e:f6:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc995d15502780acdf7b6e6a1865edb5a0e7dc4b
Validity
Not Before: Apr 27 09:00:29 2025 GMT
Not After : Apr 28 09:00:29 2025 GMT
Subject: CN=94213d4bf5d1bdfbf95b00cebd19493c1c575985
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:e5:5c:ca:6c:cd:16:e5:57:6f:94:2f:f1:d1:
54:9b:46:90:d6:dd:74:ff:b9:6b:68:62:86:4f:8d:
15:29:75:42:14:3f:94:cc:33:69:3a:b8:8c:e8:b7:
70:08:43:25:48:78:23:43:75:30:69:47:fe:2b:6b:
e3:e9:0e:37:4a:88:6d:54:00:8d:b2:04:87:d5:eb:
02:bc:f6:64:54:b6:09:24:01:0c:2e:45:c1:89:a8:
a5:3a:4e:a0:44:d6:ad:12:a3:be:35:33:91:6d:23:
01:69:8c:ec:b4:8e:e8:75:cc:29:57:97:0d:6a:42:
9e:29:88:c4:6f:da:6c:4a:54:d8:8c:b3:2b:7d:58:
7f:fb:31:6e:94:c1:52:b8:bd:8e:99:20:e8:74:27:
c7:ec:9a:21:75:cb:70:76:32:1f:35:cc:8f:0c:e5:
47:80:5d:ea:b7:14:9e:f6:4d:8a:b4:a5:08:ad:16:
e1:0a:59:00:c0:dc:00:bf:46:20:b8:2d:57:1c:5e:
0b:ca:b3:95:6e:d2:16:ec:50:61:43:fe:0a:c0:5d:
69:86:e2:91:db:28:11:58:47:c9:68:1d:57:18:cc:
86:b0:92:9a:27:c2:75:d9:3b:76:d1:15:fd:6d:30:
8b:2f:d7:6a:a3:07:d2:60:58:a7:c5:76:09:6e:27:
48:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:21:3D:4B:F5:D1:BD:FB:F9:5B:00:CE:BD:19:49:3C:1C:57:59:85
X509v3 Authority Key Identifier:
keyid:BC:99:5D:15:50:27:80:AC:DF:7B:6E:6A:18:65:ED:B5:A0:E7:DC:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vJldFVAngKzfe25qGGXttaDn3Es.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/044350-8cc9-486d-87c9-572c4e129d32/1/vJldFVAngKzfe25qGGXttaDn3Es.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:03:49:57:ee:32:ca:0e:ea:5a:80:08:d4:c6:fc:6d:26:70:
58:f3:e5:10:c2:5a:db:59:cc:a6:d9:96:f2:54:b2:38:ac:f9:
31:df:c9:6f:27:6e:24:24:92:5e:f4:1d:70:87:e8:1c:5f:8b:
15:19:45:80:6e:93:c0:f7:38:68:5c:0a:39:18:b4:eb:fb:03:
28:90:c1:91:c6:0a:04:e8:db:30:46:99:bb:d3:d1:22:9a:0a:
a1:1c:f5:f2:69:69:21:28:75:0e:f6:68:8a:07:12:23:d4:fd:
a5:f4:34:c7:3f:e8:f9:b8:71:5e:21:d2:4c:62:35:7e:fc:50:
ae:ef:ec:2d:c3:70:80:80:6b:9b:f7:67:05:d2:af:e7:ca:92:
2d:0d:9e:74:6a:b4:63:5f:91:1f:fd:42:ec:de:e9:cb:78:61:
77:3d:a3:7b:44:bf:73:00:4c:59:a7:a7:de:be:b5:b6:fe:59:
4f:4e:dd:76:61:49:1c:5f:3d:4b:d3:41:18:dd:41:30:63:b4:
09:a1:98:a3:34:05:f2:e9:2a:95:cd:fc:15:16:f4:21:87:0c:
eb:83:d4:d2:17:4e:a7:cf:ea:05:a1:2c:ea:2f:75:f7:51:a2:
be:c7:69:1a:de:f3:b8:de:23:0d:42:89:ea:6a:18:e4:79:00:
b5:ef:f7:5e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ2egLAE+Bm5POLXzdZPvaiMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJjOTk1ZDE1NTAyNzgwYWNkZjdiNmU2YTE4NjVlZGI1YTBl
N2RjNGIwHhcNMjUwNDI3MDkwMDI5WhcNMjUwNDI4MDkwMDI5WjAzMTEwLwYDVQQD
Eyg5NDIxM2Q0YmY1ZDFiZGZiZjk1YjAwY2ViZDE5NDkzYzFjNTc1OTg1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9uVcymzNFuVXb5Qv8dFUm0aQ1t10
/7lraGKGT40VKXVCFD+UzDNpOriM6LdwCEMlSHgjQ3UwaUf+K2vj6Q43SohtVACN
sgSH1esCvPZkVLYJJAEMLkXBiailOk6gRNatEqO+NTORbSMBaYzstI7odcwpV5cN
akKeKYjEb9psSlTYjLMrfVh/+zFulMFSuL2OmSDodCfH7JohdctwdjIfNcyPDOVH
gF3qtxSe9k2KtKUIrRbhClkAwNwAv0YguC1XHF4LyrOVbtIW7FBhQ/4KwF1phuKR
2ygRWEfJaB1XGMyGsJKaJ8J12Tt20RX9bTCLL9dqowfSYFinxXYJbidIBwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJQhPUv10b37+VsAzr0ZSTwcV1mFMB8GA1UdIwQY
MBaAFLyZXRVQJ4Cs33tuahhl7bWg59xLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdkpsZEZWQW5nS3pmZTI1cUdHWHR0YURuM0VzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wNDQzNTAtOGNjOS00ODZkLTg3Yzkt
NTcyYzRlMTI5ZDMyLzEvdkpsZEZWQW5nS3pmZTI1cUdHWHR0YURuM0VzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS8wNDQzNTAtOGNjOS00ODZkLTg3YzktNTcyYzRlMTI5ZDMy
LzEvdkpsZEZWQW5nS3pmZTI1cUdHWHR0YURuM0VzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACANJV+4y
yg7qWoAI1Mb8bSZwWPPlEMJa21nMptmW8lSyOKz5Md/JbyduJCSSXvQdcIfoHF+L
FRlFgG6TwPc4aFwKORi06/sDKJDBkcYKBOjbMEaZu9PRIpoKoRz18mlpISh1DvZo
igcSI9T9pfQ0xz/o+bhxXiHSTGI1fvxQru/sLcNwgIBrm/dnBdKv58qSLQ2edGq0
Y1+RH/1C7N7py3hhdz2je0S/cwBMWaen3r61tv5ZT07ddmFJHF89S9NBGN1BMGO0
CaGYozQF8ukqlc38FRb0IYcM64PU0hdOp8/qBaEs6i9191GivsdpGt7zuN4jDUKJ
6moY5HkAte/3Xg==
-----END CERTIFICATE-----
Generated at Sun Apr 27 15:53:59 2025 by rpki-client