Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
File: VFhKIZ9vUGbYSO0quWTaiWbUCio.mft (raw, json)
Hash identifier: cYRsKTIILFbcBF30y0p/YThcrFIRc+vP2G5hHbWudJk=
Subject key identifier: CC:DA:A6:5E:52:ED:8D:3C:3B:9F:5F:82:D0:FB:D8:43:63:3C:9E:6C
Authority key identifier: 54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
Certificate issuer: /CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Certificate serial: 0197499ED837B0B707FA4FF3101AD7D59A25
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 09:00:36 +0000
Manifest this update: Sat 07 Jun 2025 09:00:36 +0000
Manifest next update: Sun 08 Jun 2025 09:00:36 +0000
Files and hashes: 1: VFhKIZ9vUGbYSO0quWTaiWbUCio.crl (hash: qHccJ7tNCup8e1AzbopSg9eCBlEYd6sxG48EjiMxAGA=)
2: yO-xzrVzP9w-99d-1MgI3akuEEw.roa (hash: /wfJmKbrJk5HLRMl66b8UyeroQ01b/DROieeTJUHsw8=)
3: ykuZpqMlHSUIWtYa1mPsmyPe9Ho.roa (hash: yZcmu9TrDVEdaIS3LL1L046LUfG1VEvG/7HySIUseIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9e:d8:37:b0:b7:07:fa:4f:f3:10:1a:d7:d5:9a:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Validity
Not Before: Jun 7 09:00:36 2025 GMT
Not After : Jun 8 09:00:36 2025 GMT
Subject: CN=ccdaa65e52ed8d3c3b9f5f82d0fbd843633c9e6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:94:d2:aa:b2:b1:79:85:c4:88:db:12:0b:3a:
68:d5:e8:85:35:37:3b:6d:f1:25:5b:7d:f9:90:84:
74:66:a0:94:1e:2d:9c:cc:96:bb:77:05:78:af:0e:
99:d1:d7:77:84:fc:1d:c5:0f:a2:b1:c2:b8:5a:f1:
30:e7:40:b2:8d:99:3f:4d:7c:1b:41:76:52:2e:02:
c7:cf:c1:94:1b:cd:50:9b:d7:53:cd:31:68:1e:1a:
0a:fe:d5:b9:8c:cb:19:43:59:95:17:db:49:f6:b6:
e6:0b:10:b2:9a:23:c3:0d:23:3d:0f:96:d2:05:ce:
58:47:e0:ed:fb:6b:c0:b1:43:e1:fa:6f:0b:3a:0c:
e0:79:fb:14:43:70:db:da:46:01:5d:83:52:bd:f3:
4c:35:f7:9d:a6:9d:f3:0f:4a:c7:63:ee:10:82:55:
f9:c6:9c:e3:51:6b:a4:da:82:a3:87:0e:55:4d:c7:
d1:d8:ff:d7:fa:09:ce:dd:f1:46:83:5d:33:ed:a4:
27:2e:ad:05:64:82:2c:b3:47:01:26:47:9e:48:11:
93:3e:9c:b2:03:33:8b:ff:8c:40:c7:2d:af:ce:b9:
9e:e9:8f:cf:69:21:58:55:d1:87:88:4d:f4:5e:dd:
77:ba:fb:be:fe:25:78:9d:67:44:c1:b3:43:77:2a:
bb:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:DA:A6:5E:52:ED:8D:3C:3B:9F:5F:82:D0:FB:D8:43:63:3C:9E:6C
X509v3 Authority Key Identifier:
keyid:54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:a4:82:50:a0:3d:17:b6:0b:36:ad:73:6c:da:1e:6e:fd:89:
a4:41:46:65:3d:e8:05:e6:76:c2:e2:f3:b8:99:1e:9b:51:78:
3f:e8:4b:ed:7a:24:44:09:62:bb:01:7f:c0:8b:2d:96:11:dd:
db:c0:3d:2a:3b:fd:c0:da:ee:49:a6:55:c9:43:e7:ce:cd:2f:
16:ff:4a:16:46:13:9b:ab:97:a7:e8:95:6a:67:b5:de:75:3d:
f4:ca:2d:97:93:13:10:49:b4:4d:3a:50:91:55:1a:b6:ef:62:
1b:63:c6:be:30:19:c6:8b:5b:04:89:5a:3f:91:9c:dc:21:aa:
05:1b:1c:09:da:4f:6e:e4:df:8d:b4:49:65:57:99:dc:a1:b0:
4e:30:bc:b9:da:63:f3:b6:d0:ac:2b:99:99:38:a2:ae:32:ee:
6d:7c:ba:65:a7:8c:0c:6d:00:21:cf:e2:e6:67:a0:18:2d:33:
9d:8a:47:61:48:65:67:e2:5f:77:6f:5b:b9:ac:c5:0f:f0:d2:
a2:36:b5:a2:f0:78:a0:04:c9:57:3f:cb:81:63:9a:f4:b4:ae:
05:74:00:23:8b:81:cb:cf:92:68:20:86:68:c6:95:44:a6:8c:
83:58:39:e1:10:ce:a7:c9:01:1d:67:5e:73:be:78:43:a7:e7:
c3:8b:16:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:06:25 2025 by rpki-client