Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
File: vK-LpZ96PF0A_grUVk2AUk33-pA.mft (raw, json)
Hash identifier: vcRJKRbhIGXPHUwHG7OTKVwc1mPwF4he+0b45dfAw7c=
Subject key identifier: C2:2F:B9:AD:A3:A7:00:C0:D7:A2:BF:C4:22:41:F1:E7:E9:B4:98:F9
Authority key identifier: BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
Certificate issuer: /CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Certificate serial: 019780C422C2157161833348EA080CFA91A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
Manifest number: 1596
Signing time: Wed 18 Jun 2025 02:00:26 +0000
Manifest this update: Wed 18 Jun 2025 02:00:26 +0000
Manifest next update: Thu 19 Jun 2025 02:00:26 +0000
Files and hashes: 1: A27u4uaTW6Wfn1YJN7sriqWyvlY.roa (hash: eRUT0mnKKp1D1eZhZRZxpjyCM3yHa+jgOt2PMVH/I+o=)
2: vK-LpZ96PF0A_grUVk2AUk33-pA.crl (hash: QaDN069l5AkUW7B1WVRyO7ftxoGbx4yzVSz9C/85tgA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:80:c4:22:c2:15:71:61:83:33:48:ea:08:0c:fa:91:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bcaf8ba59f7a3c5d00fe0ad4564d80524df7fa90
Validity
Not Before: Jun 18 02:00:26 2025 GMT
Not After : Jun 19 02:00:26 2025 GMT
Subject: CN=c22fb9ada3a700c0d7a2bfc42241f1e7e9b498f9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:35:e8:48:26:38:54:a6:2a:a4:5b:d1:ab:8c:
33:36:be:ee:fe:44:81:69:11:1e:fb:57:ea:1e:b3:
1d:5e:ca:03:38:cb:f6:15:94:35:f6:29:a5:c2:40:
f7:b5:40:20:af:3c:64:09:e3:24:44:5c:70:61:29:
1a:89:12:7f:98:04:7d:80:fb:89:c1:08:46:f4:f2:
70:e0:76:7d:7c:f7:b6:5a:06:39:a7:30:f7:a5:45:
32:44:2e:95:b6:e6:21:c0:4e:5a:a8:e1:e2:3b:ee:
c0:0d:4d:3c:94:e3:96:90:76:92:18:ab:12:91:1f:
28:29:fa:07:3e:96:49:b1:49:ef:fe:92:3f:07:30:
07:5d:6e:b2:26:41:dd:6e:01:f6:18:bb:e7:97:e3:
ff:75:2e:46:eb:83:c4:59:00:cd:cf:c4:b2:d5:6c:
5b:77:31:9a:e6:a2:98:5d:f5:de:7d:64:35:77:d1:
f4:07:04:93:46:ba:ab:2b:a6:7f:f2:aa:7d:df:c6:
ad:26:26:ab:54:a0:0b:39:f8:62:51:e1:b8:a9:13:
75:54:6e:3c:25:24:f9:3e:5a:d0:f3:ca:f0:0e:52:
a2:c0:20:7f:3c:88:cd:73:d5:68:8c:1c:8a:72:6b:
68:db:bd:7c:26:e3:cb:96:88:e8:31:f7:75:45:04:
9b:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2F:B9:AD:A3:A7:00:C0:D7:A2:BF:C4:22:41:F1:E7:E9:B4:98:F9
X509v3 Authority Key Identifier:
keyid:BC:AF:8B:A5:9F:7A:3C:5D:00:FE:0A:D4:56:4D:80:52:4D:F7:FA:90
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vK-LpZ96PF0A_grUVk2AUk33-pA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/d07e9e-132a-48e2-9538-902aec440464/1/vK-LpZ96PF0A_grUVk2AUk33-pA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:3c:32:99:53:d9:df:34:e1:77:76:3f:d7:c9:2d:ef:7a:fb:
a6:ac:ad:b9:af:e3:b7:3b:60:93:3a:21:da:15:96:e5:f1:22:
88:dc:1b:b7:63:30:13:3f:fe:1a:b6:bb:2c:ea:1d:f6:ca:9b:
4a:0a:fb:ab:59:1a:f1:7f:92:ff:62:e3:a0:d8:af:ff:99:9e:
ad:e4:08:35:e2:f1:46:cb:38:f9:3f:0f:28:81:a1:69:0e:cc:
a7:ef:69:68:19:f3:12:8c:56:6b:8f:7e:95:14:cf:ee:f3:d9:
d9:e1:66:48:93:70:24:d2:ff:fc:c5:73:42:d0:0b:c5:54:95:
c7:ae:44:c3:00:44:aa:9e:01:5d:6c:4a:c0:e6:6f:f7:d4:4c:
54:cc:96:11:c1:51:f0:77:42:e3:22:80:22:26:ae:7e:15:6a:
b4:a4:59:29:30:6a:d4:f0:a9:af:68:6f:a1:40:2d:3b:ae:d2:
91:a1:21:33:03:67:95:4d:0f:f1:54:9f:c2:b3:b9:32:66:2b:
11:c8:d7:09:65:78:e8:58:93:0a:e7:58:03:a7:4e:8d:81:7d:
57:7b:52:5e:c7:15:d9:44:d3:fd:27:dd:47:c3:80:65:72:37:
61:ea:8a:f5:d2:a8:4b:c4:b6:f6:4f:0b:03:b6:61:6d:43:73:
02:d3:d2:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 06:33:26 2025 by rpki-client