Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
File: VFhKIZ9vUGbYSO0quWTaiWbUCio.mft (raw, json)
Hash identifier: Nkvw/V8Xrx1oRUo0B+ef8se2hsubUPznj4QSkqlR8Dk=
Subject key identifier: EF:DB:0A:45:6C:E2:77:EA:B9:2A:B4:C5:D8:EE:23:E8:95:F1:68:79
Authority key identifier: 54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
Certificate issuer: /CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Certificate serial: 01964CA252B71CB9D0EDAE9633B803CCE2A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
Manifest number: 14FD
Signing time: Sat 19 Apr 2025 06:00:28 +0000
Manifest this update: Sat 19 Apr 2025 06:00:28 +0000
Manifest next update: Sun 20 Apr 2025 06:00:28 +0000
Files and hashes: 1: VFhKIZ9vUGbYSO0quWTaiWbUCio.crl (hash: cr5AURnbm5lPoFniAGjKuvHr8N89J1L1cOUmPU7/RiE=)
2: yO-xzrVzP9w-99d-1MgI3akuEEw.roa (hash: /wfJmKbrJk5HLRMl66b8UyeroQ01b/DROieeTJUHsw8=)
3: ykuZpqMlHSUIWtYa1mPsmyPe9Ho.roa (hash: yZcmu9TrDVEdaIS3LL1L046LUfG1VEvG/7HySIUseIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 06:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4c:a2:52:b7:1c:b9:d0:ed:ae:96:33:b8:03:cc:e2:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54584a219f6f5066d848ed2ab964da8966d40a2a
Validity
Not Before: Apr 19 06:00:28 2025 GMT
Not After : Apr 20 06:00:28 2025 GMT
Subject: CN=efdb0a456ce277eab92ab4c5d8ee23e895f16879
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:23:1c:0c:fd:ee:07:5d:c5:28:34:b0:04:b0:
14:46:16:bb:6d:27:b4:04:8c:e9:14:21:f0:2a:2b:
9a:41:17:f3:20:12:27:6e:95:fe:99:9b:71:7b:8b:
2f:dd:d1:c5:59:a7:89:14:95:da:14:18:59:6b:97:
ad:13:dc:36:e6:67:b2:eb:93:18:89:e3:b9:fe:9c:
94:3b:2e:5e:8d:fd:3e:e4:73:05:b0:fa:70:31:bb:
f5:bc:29:dd:bc:53:7b:4b:83:5f:c2:a7:dd:0c:67:
c6:48:e3:fa:c5:6e:f6:dc:ef:3f:1f:3a:ad:a4:35:
b9:a0:92:7a:12:2f:99:69:8d:0e:66:c6:f0:39:a6:
97:ef:73:9f:2d:a3:d3:da:2e:b1:e4:96:ac:09:09:
1f:52:5d:17:65:c1:1c:5a:56:4f:64:a3:0d:ca:b6:
7e:57:5e:ad:30:e2:c8:7b:9d:2e:7d:4d:8c:ad:7c:
48:70:a8:78:af:b7:65:d9:ff:9e:b7:bf:a4:0c:fb:
cd:89:de:45:87:9a:c8:9b:77:dd:40:23:66:d0:cb:
b9:2d:b1:af:ba:c0:84:d6:c5:76:62:8c:b6:4b:d7:
3d:d2:39:9e:37:53:9b:5d:02:37:10:b0:e9:1d:ca:
70:45:20:e4:bd:b5:12:0c:d0:0c:75:66:ab:43:29:
d3:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:DB:0A:45:6C:E2:77:EA:B9:2A:B4:C5:D8:EE:23:E8:95:F1:68:79
X509v3 Authority Key Identifier:
keyid:54:58:4A:21:9F:6F:50:66:D8:48:ED:2A:B9:64:DA:89:66:D4:0A:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VFhKIZ9vUGbYSO0quWTaiWbUCio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/dd3dd1-09b5-4aa2-aec0-9fb1ce4d720b/1/VFhKIZ9vUGbYSO0quWTaiWbUCio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:eb:3c:08:af:81:52:61:21:6f:f9:da:19:6f:12:20:fa:da:
63:28:cd:91:7c:04:8b:20:1c:fc:95:07:fb:b2:04:32:59:10:
7e:d3:a6:0b:5f:3d:f4:f1:a9:30:5a:68:08:7a:ac:4d:69:e5:
ca:8c:5f:ce:56:c9:de:bb:9c:a6:1c:9f:40:cd:1e:5d:e3:6b:
27:77:71:28:e4:a5:dd:3f:5d:67:66:d2:1a:17:8c:d4:f9:42:
45:66:e3:28:a3:de:1b:f1:07:82:41:3a:63:68:86:29:27:90:
83:fa:95:d6:f3:cc:71:98:d5:20:60:97:13:69:70:27:ed:79:
94:bf:77:dc:83:52:cc:e4:35:40:77:64:5a:3e:50:65:55:6a:
89:be:8d:46:69:f1:64:e9:0c:23:67:78:78:90:77:c4:43:c4:
ed:44:f2:b8:4d:c7:84:9d:9e:da:3c:12:54:73:5a:5c:d5:88:
ec:06:1f:8d:1e:3a:25:f5:46:0e:bf:e2:da:c9:fc:8e:bc:4c:
84:db:77:da:31:13:0b:9f:9a:41:6a:c9:72:09:7d:bc:54:f2:
27:16:63:f7:c8:b0:8b:2d:3d:2c:69:e9:fc:9f:f2:9c:de:78:
e1:2c:97:63:2a:bc:39:59:1c:d0:72:f3:9c:f2:19:2b:83:f9:
4a:97:27:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 15:41:23 2025 by rpki-client