Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
File: vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json)
Hash identifier: jADWKk+0A0aKR84NErU6WfBlXrHj60Kl/O18o94XiKE=
Subject key identifier: 18:CE:26:66:C7:0F:01:C1:13:4E:D1:F5:52:78:B1:EC:C0:4E:79:38
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial: 01965A94A2000C0AE879A4A698E41B9200D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
Manifest number: 13D9
Signing time: Mon 21 Apr 2025 23:00:12 +0000
Manifest this update: Mon 21 Apr 2025 23:00:12 +0000
Manifest next update: Tue 22 Apr 2025 23:00:12 +0000
Files and hashes: 1: rEdLOhgJ5xMWvLwmv0wizm-cOW0.roa (hash: 5KEvRv7KqMLhpYGvFA0tU5bp6PFE1qlP3ELvibmeSX4=)
2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: ibMNJshX6YEBU8J1CE8yEe9Y2oOurZTKDe6SukXBqpA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5a:94:a2:00:0c:0a:e8:79:a4:a6:98:e4:1b:92:00:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Validity
Not Before: Apr 21 23:00:12 2025 GMT
Not After : Apr 22 23:00:12 2025 GMT
Subject: CN=18ce2666c70f01c1134ed1f55278b1ecc04e7938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:34:a9:8d:bd:4a:f5:d0:48:e5:84:5e:d8:f3:
3e:78:f6:4d:00:ae:13:f2:3c:09:91:78:78:7c:a0:
b9:ff:64:03:ae:d4:04:dd:67:c0:af:35:c9:3b:56:
87:24:6c:39:6b:ef:7c:7b:22:a8:6a:ea:2d:08:b2:
a6:21:4d:1b:8f:7b:81:af:f5:43:4f:90:78:41:07:
b8:1b:f3:6b:c0:33:dc:0b:bf:71:34:17:13:bb:e0:
f1:9c:43:68:36:24:09:b0:9a:24:d3:57:04:ca:12:
46:a6:b2:59:1f:60:83:ca:dc:09:83:4b:78:19:19:
64:65:a2:5d:77:a4:79:31:b1:93:ce:1d:2b:a5:a6:
66:55:73:89:70:0f:52:7a:64:4a:53:45:eb:72:00:
74:c9:0a:94:8d:22:1f:28:d8:45:15:e9:8b:95:ad:
04:f1:a8:cd:5a:12:d6:bc:4a:75:de:d0:52:c5:96:
0c:b9:67:27:f7:0e:4c:ea:86:f2:0b:78:1e:85:5c:
29:a6:a0:f2:c3:6f:5c:77:d9:75:d8:28:b0:9e:46:
54:6a:a5:97:c9:a1:08:17:cd:fc:c2:04:ec:33:4a:
40:32:bd:e2:04:fc:f9:7f:f4:a3:b4:ed:0d:fc:0d:
0e:62:15:b1:a4:13:2c:f7:1b:d6:54:56:e8:da:3e:
44:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:CE:26:66:C7:0F:01:C1:13:4E:D1:F5:52:78:B1:EC:C0:4E:79:38
X509v3 Authority Key Identifier:
keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:26:34:5f:12:73:57:16:98:06:cb:65:4a:b7:22:16:6f:77:
88:63:49:12:24:1f:76:30:6b:c6:38:ba:47:54:f2:18:d7:86:
d8:be:70:a5:a8:77:93:fd:96:17:b5:cd:fe:95:c5:a1:c9:46:
5b:90:97:3b:be:0b:b7:4f:8f:14:b1:0f:10:3e:e5:4c:61:b0:
4f:82:e5:ca:fa:94:c5:6c:2a:c7:97:89:0b:f4:16:3b:91:4b:
fd:bd:fb:d4:fb:7a:76:b6:f4:1b:c9:49:39:17:2a:14:d3:84:
6e:65:e7:30:ae:13:01:ab:83:71:e5:fb:bf:4a:00:3b:9a:cf:
ac:3a:e7:b9:5c:ca:ee:29:16:fe:9d:c8:67:7f:31:17:65:ba:
01:d6:49:70:51:a9:46:0d:29:51:1e:c8:bd:90:0b:6b:7a:16:
db:f7:00:ca:e1:36:44:95:0f:66:b5:89:bb:43:ee:d0:42:f0:
c2:22:5e:e0:f0:04:00:2c:ec:f2:d1:3f:35:cd:64:a3:03:80:
a3:19:89:38:4c:8f:81:f6:e8:07:6f:e2:24:50:ab:f4:59:5e:
3a:b8:a6:47:34:ea:a5:9a:cb:0e:d5:ed:72:9c:ce:6d:6c:71:
5d:2e:0c:56:b8:d8:f0:8b:b1:bb:ca:20:03:7e:f3:ed:30:27:
95:3c:fe:a9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZalKIADAroeaSmmOQbkgDVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkZjk2MGIwZWU2YmM1ZDBmNmEwYzY0YTY5ZjJmODYyNTlm
ZGNkNTgwHhcNMjUwNDIxMjMwMDEyWhcNMjUwNDIyMjMwMDEyWjAzMTEwLwYDVQQD
EygxOGNlMjY2NmM3MGYwMWMxMTM0ZWQxZjU1Mjc4YjFlY2MwNGU3OTM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsDSpjb1K9dBI5YRe2PM+ePZNAK4T
8jwJkXh4fKC5/2QDrtQE3WfArzXJO1aHJGw5a+98eyKoauotCLKmIU0bj3uBr/VD
T5B4QQe4G/NrwDPcC79xNBcTu+DxnENoNiQJsJok01cEyhJGprJZH2CDytwJg0t4
GRlkZaJdd6R5MbGTzh0rpaZmVXOJcA9SemRKU0XrcgB0yQqUjSIfKNhFFemLla0E
8ajNWhLWvEp13tBSxZYMuWcn9w5M6obyC3gehVwppqDyw29cd9l12CiwnkZUaqWX
yaEIF838wgTsM0pAMr3iBPz5f/SjtO0N/A0OYhWxpBMs9xvWVFbo2j5EhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBjOJmbHDwHBE07R9VJ4sezATnk4MB8GA1UdIwQY
MBaAFL35YLDua8XQ9qDGSmny+GJZ/c1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8zMzY4NGEtMTJjMi00MjNhLWJkM2Et
M2RkZmZkZWI5MjA3LzEvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi8zMzY4NGEtMTJjMi00MjNhLWJkM2EtM2RkZmZkZWI5MjA3
LzEvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeSY0XxJz
VxaYBstlSrciFm93iGNJEiQfdjBrxji6R1TyGNeG2L5wpah3k/2WF7XN/pXFoclG
W5CXO74Lt0+PFLEPED7lTGGwT4LlyvqUxWwqx5eJC/QWO5FL/b371Pt6drb0G8lJ
ORcqFNOEbmXnMK4TAauDceX7v0oAO5rPrDrnuVzK7ikW/p3IZ38xF2W6AdZJcFGp
Rg0pUR7IvZALa3oW2/cAyuE2RJUPZrWJu0Pu0ELwwiJe4PAEACzs8tE/Nc1kowOA
oxmJOEyPgfboB2/iJFCr9FleOrimRzTqpZrLDtXtcpzObWxxXS4MVrjY8Iuxu8og
A37z7TAnlTz+qQ==
-----END CERTIFICATE-----
Generated at Tue Apr 22 04:12:14 2025 by rpki-client