Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/b72b97-f9a5-4486-aaab-63916f7f174b/1/VLjgSw4aTU46KN8V61hJPnY3frA.mft
File: VLjgSw4aTU46KN8V61hJPnY3frA.mft (raw, json)
Hash identifier: XqFF/JqagTm76SgLGdAJBlR7QM6uJkH+5RthdbLSYR0=
Subject key identifier: 73:B7:32:E0:FA:CA:9A:1F:9C:BB:6C:28:3D:7E:A3:24:37:3D:AB:39
Authority key identifier: 54:B8:E0:4B:0E:1A:4D:4E:3A:28:DF:15:EB:58:49:3E:76:37:7E:B0
Certificate issuer: /CN=54b8e04b0e1a4d4e3a28df15eb58493e76377eb0
Certificate serial: 01965C836713E156B286A336C1995638C4D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VLjgSw4aTU46KN8V61hJPnY3frA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/b72b97-f9a5-4486-aaab-63916f7f174b/1/VLjgSw4aTU46KN8V61hJPnY3frA.mft
Manifest number: 1501
Signing time: Tue 22 Apr 2025 08:00:37 +0000
Manifest this update: Tue 22 Apr 2025 08:00:37 +0000
Manifest next update: Wed 23 Apr 2025 08:00:37 +0000
Files and hashes: 1: UwlL4l1LRiE3vykISfbzsy5TSkQ.roa (hash: ENtIGGU96W9e4YjxZ7Qzg80Ai/cpSTda8jT8DyJC8KM=)
2: VLjgSw4aTU46KN8V61hJPnY3frA.crl (hash: cOwZUIoG9JPAFNiT+ZBdviS7n6/parA+IAExTeZJeZA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/b72b97-f9a5-4486-aaab-63916f7f174b/1/VLjgSw4aTU46KN8V61hJPnY3frA.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/b72b97-f9a5-4486-aaab-63916f7f174b/1/VLjgSw4aTU46KN8V61hJPnY3frA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VLjgSw4aTU46KN8V61hJPnY3frA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 23 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:5c:83:67:13:e1:56:b2:86:a3:36:c1:99:56:38:c4:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54b8e04b0e1a4d4e3a28df15eb58493e76377eb0
Validity
Not Before: Apr 22 08:00:37 2025 GMT
Not After : Apr 23 08:00:37 2025 GMT
Subject: CN=73b732e0faca9a1f9cbb6c283d7ea324373dab39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:df:f3:ac:a7:33:2b:f1:04:98:ab:42:32:ca:
79:b5:93:67:f5:23:c9:11:0d:68:7f:70:77:87:96:
35:78:10:e1:d1:a7:9e:dd:d7:0e:38:bb:fb:1a:22:
b5:d1:e5:30:e8:be:d4:20:cc:4e:94:3d:6f:5d:8a:
78:57:22:21:ad:f6:70:a8:4a:ba:f3:f2:13:c4:45:
1c:e4:73:68:b2:0b:24:ed:4c:27:4f:a5:1c:56:75:
23:24:39:65:d7:57:76:c2:27:72:fd:5a:46:27:d0:
aa:fd:11:54:bd:73:35:71:65:d2:6a:ee:66:b1:de:
66:2d:a8:f2:c2:39:fb:40:61:6a:0a:e9:8f:ea:98:
d7:78:ac:3c:ac:e5:cb:a4:37:79:3a:bf:52:b9:50:
77:32:5f:d7:bd:3f:da:04:48:ae:37:ee:1c:4d:14:
b4:7e:da:e4:0a:8f:f5:87:99:16:03:49:bc:39:fa:
31:a5:91:07:fa:ec:68:fe:b5:59:d7:96:0d:cb:28:
a5:e0:88:43:20:99:b3:7c:4a:5e:24:92:83:b0:3f:
de:9f:05:27:da:b6:3b:8d:db:8b:dc:7a:ed:fb:b5:
12:67:95:0a:b0:33:25:20:21:41:55:56:d2:8e:a2:
b9:5b:28:e9:3c:71:01:ff:80:4f:65:dc:3e:36:8c:
33:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B7:32:E0:FA:CA:9A:1F:9C:BB:6C:28:3D:7E:A3:24:37:3D:AB:39
X509v3 Authority Key Identifier:
keyid:54:B8:E0:4B:0E:1A:4D:4E:3A:28:DF:15:EB:58:49:3E:76:37:7E:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VLjgSw4aTU46KN8V61hJPnY3frA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b72b97-f9a5-4486-aaab-63916f7f174b/1/VLjgSw4aTU46KN8V61hJPnY3frA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/b72b97-f9a5-4486-aaab-63916f7f174b/1/VLjgSw4aTU46KN8V61hJPnY3frA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:db:40:1a:c6:f8:8a:99:49:53:b5:7f:12:af:90:59:2f:df:
e3:d1:93:8c:65:19:ec:b7:60:c1:dd:18:11:a8:3f:69:d0:26:
af:d3:2f:4e:24:da:8e:6a:ce:d6:0b:1c:0c:e8:76:f8:f4:87:
5f:9c:38:4d:40:f4:85:fc:58:91:de:c2:7e:53:d7:a9:60:7a:
24:0f:3a:ec:45:eb:98:8e:96:d2:ea:af:a5:54:bc:7c:b7:6f:
ec:ec:53:c6:c1:ea:54:68:aa:28:eb:0d:55:02:f2:7d:76:3e:
fb:e5:d3:cd:70:8c:11:37:96:2d:3c:f2:e6:f8:d4:c7:a7:4b:
10:07:40:32:7b:b1:6b:01:39:e0:ba:c8:2d:9b:49:93:0b:f1:
ce:78:47:ca:85:a5:c0:9c:85:1a:0a:5a:11:9b:56:55:cb:ac:
47:73:92:8f:02:87:1f:5b:d4:c7:75:c1:98:e9:9e:39:f5:a5:
38:ce:11:69:d9:39:e8:ba:45:26:74:64:28:ee:80:81:3c:0f:
a0:c3:b5:60:f1:e5:a2:64:fb:c5:55:32:a6:6d:a7:cc:cb:7b:
68:6a:e4:d4:46:62:d0:b5:83:f2:42:b9:d5:ab:f0:fa:39:01:
0f:a9:6d:2f:64:f6:36:b4:40:73:36:c9:3e:b0:d8:18:db:cf:
1d:59:7d:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZcg2cT4VayhqM2wZlWOMTSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0YjhlMDRiMGUxYTRkNGUzYTI4ZGYxNWViNTg0OTNlNzYz
NzdlYjAwHhcNMjUwNDIyMDgwMDM3WhcNMjUwNDIzMDgwMDM3WjAzMTEwLwYDVQQD
Eyg3M2I3MzJlMGZhY2E5YTFmOWNiYjZjMjgzZDdlYTMyNDM3M2RhYjM5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwt/zrKczK/EEmKtCMsp5tZNn9SPJ
EQ1of3B3h5Y1eBDh0aee3dcOOLv7GiK10eUw6L7UIMxOlD1vXYp4VyIhrfZwqEq6
8/ITxEUc5HNosgsk7UwnT6UcVnUjJDll11d2widy/VpGJ9Cq/RFUvXM1cWXSau5m
sd5mLajywjn7QGFqCumP6pjXeKw8rOXLpDd5Or9SuVB3Ml/XvT/aBEiuN+4cTRS0
ftrkCo/1h5kWA0m8OfoxpZEH+uxo/rVZ15YNyyil4IhDIJmzfEpeJJKDsD/enwUn
2rY7jduL3Hrt+7USZ5UKsDMlICFBVVbSjqK5WyjpPHEB/4BPZdw+NowzawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHO3MuD6ypofnLtsKD1+oyQ3Pas5MB8GA1UdIwQY
MBaAFFS44EsOGk1OOijfFetYST52N36wMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkxqZ1N3NGFUVTQ2S044VjYxaEpQblkzZnJBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9iNzJiOTctZjlhNS00NDg2LWFhYWIt
NjM5MTZmN2YxNzRiLzEvVkxqZ1N3NGFUVTQ2S044VjYxaEpQblkzZnJBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Mi9iNzJiOTctZjlhNS00NDg2LWFhYWItNjM5MTZmN2YxNzRi
LzEvVkxqZ1N3NGFUVTQ2S044VjYxaEpQblkzZnJBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATNtAGsb4
iplJU7V/Eq+QWS/f49GTjGUZ7Ldgwd0YEag/adAmr9MvTiTajmrO1gscDOh2+PSH
X5w4TUD0hfxYkd7CflPXqWB6JA867EXrmI6W0uqvpVS8fLdv7OxTxsHqVGiqKOsN
VQLyfXY+++XTzXCMETeWLTzy5vjUx6dLEAdAMnuxawE54LrILZtJkwvxznhHyoWl
wJyFGgpaEZtWVcusR3OSjwKHH1vUx3XBmOmeOfWlOM4Radk56LpFJnRkKO6AgTwP
oMO1YPHlomT7xVUypm2nzMt7aGrk1EZi0LWD8kK51avw+jkBD6ltL2T2NrRAczbJ
PrDYGNvPHVl9TA==
-----END CERTIFICATE-----
Generated at Tue Apr 22 11:30:30 2025 by rpki-client