Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
File: vZALuaxgacUTtYLWH9gezNVhpWc.mft (raw, json)
Hash identifier: bmZOZsGTy3tymitC0/WAfD3WE3aCPxzZ6ruOHAYma7w=
Subject key identifier: 7A:6E:28:9D:8F:AB:2B:70:20:B6:B4:95:A7:B9:F8:B0:18:7F:5D:93
Authority key identifier: BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
Certificate issuer: /CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Certificate serial: 019674C2D5FDD1A837728168C0140A60A608
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
Manifest number: 148E
Signing time: Sun 27 Apr 2025 01:00:47 +0000
Manifest this update: Sun 27 Apr 2025 01:00:47 +0000
Manifest next update: Mon 28 Apr 2025 01:00:47 +0000
Files and hashes: 1: d7tBUWSiQHeiqH-bBOlyLkT02Ns.roa (hash: rmL3xWHBj145jAhqBB3i69rSx83PgbXey8Czqw5Lf3A=)
2: vZALuaxgacUTtYLWH9gezNVhpWc.crl (hash: KplnqH/D2bgICFrZ6IkOuoREWxXdQNh8rV8b4FwZMbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 01:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:74:c2:d5:fd:d1:a8:37:72:81:68:c0:14:0a:60:a6:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd900bb9ac6069c513b582d61fd81eccd561a567
Validity
Not Before: Apr 27 01:00:47 2025 GMT
Not After : Apr 28 01:00:47 2025 GMT
Subject: CN=7a6e289d8fab2b7020b6b495a7b9f8b0187f5d93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:dc:e7:8d:7f:4c:bb:f7:fe:32:4d:d1:0d:0c:
4a:63:c5:43:77:c5:25:b3:c3:0e:00:e7:a7:97:b9:
47:f5:cb:45:c7:4f:80:d1:b0:4c:3f:59:2a:1e:3d:
36:99:fe:31:74:40:e1:f4:ac:09:ae:ff:96:d5:11:
ff:88:c3:63:5f:06:6f:7d:4c:a2:97:0c:e1:70:cc:
8e:8b:1a:b5:d9:11:1b:be:c2:f0:cb:4d:90:2e:dc:
13:0e:be:e8:0f:01:3f:ab:d9:cb:ec:37:b6:5a:c8:
5c:81:26:43:be:16:4b:5b:6f:f6:8c:17:41:a8:b3:
09:2e:43:40:05:9a:58:77:00:67:e8:5f:b1:bd:9e:
42:0a:bd:a0:f0:3f:bf:c8:d3:7b:c8:85:31:f5:61:
3f:d6:90:c1:51:9f:c6:9c:eb:d0:73:d9:0c:88:a5:
c0:ff:b4:ba:29:e0:4e:97:0c:1a:c6:5c:6e:9f:e9:
81:6e:b8:b6:2c:75:96:46:cb:69:d4:a3:4c:26:04:
25:e3:a2:f3:cb:30:9b:ad:1a:3c:ac:76:b9:4b:c9:
62:77:09:3f:82:4e:7a:ee:77:70:1e:a4:fc:39:a3:
f5:bd:40:13:89:a8:01:76:de:5c:2b:27:02:73:e0:
ee:f2:de:e7:e6:4a:36:0d:6b:87:93:71:70:c0:9e:
0e:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:6E:28:9D:8F:AB:2B:70:20:B6:B4:95:A7:B9:F8:B0:18:7F:5D:93
X509v3 Authority Key Identifier:
keyid:BD:90:0B:B9:AC:60:69:C5:13:B5:82:D6:1F:D8:1E:CC:D5:61:A5:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vZALuaxgacUTtYLWH9gezNVhpWc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/e3ea5b-d53e-4cd7-bb7b-e1b9f6d357c0/1/vZALuaxgacUTtYLWH9gezNVhpWc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
29:62:7b:62:20:c0:fb:c6:da:90:6e:33:93:7f:de:fa:fb:6d:
c9:6b:90:10:63:d3:50:e2:72:8f:bc:cc:1e:17:4f:45:95:e4:
45:1e:67:76:7b:99:e4:74:20:55:bd:50:92:02:4f:e1:86:06:
e1:38:96:c5:db:b0:18:ab:5c:d1:1f:41:30:a3:87:f8:0a:bf:
8d:80:a8:10:3c:fd:08:30:dd:ba:0a:1e:59:b8:5e:cd:f1:80:
d6:9c:34:f2:c3:18:80:21:5e:14:c3:fb:1f:1c:f4:5d:7d:4f:
31:9c:0b:07:78:3d:44:07:ba:66:de:a5:cd:f6:78:14:34:63:
e3:f2:b8:92:b1:9c:f9:8a:3f:08:5d:97:f3:b4:03:3f:4f:4c:
dc:ae:b9:65:4d:9f:7b:9d:17:77:a9:8d:9c:7b:01:e4:8a:cb:
9a:d9:0f:06:eb:96:d4:d8:b8:c6:dd:54:2a:94:b2:72:ed:b0:
6b:b0:69:1b:6a:c4:a6:4c:c4:92:f7:df:80:2c:b6:93:6c:90:
43:3f:18:e7:0b:f0:8f:cc:17:b7:85:67:12:a7:34:9a:98:67:
46:14:87:88:6b:51:e3:61:cd:66:a9:ee:a1:ee:9e:90:a4:4e:
dd:5f:a4:e9:a2:4e:7a:f0:c0:ef:0e:ff:d8:21:bc:43:62:91:
e4:78:25:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 12:08:03 2025 by rpki-client