Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
File: VKwN3sMOJORX4W5lB9IZcoMQiT0.mft (raw, json)
Hash identifier: HAMCYa6S1RA9myU3NqwE+ICOdmIFs7S1iyBfJou63pA=
Subject key identifier: D3:4B:1E:80:19:0E:13:8E:AF:D5:DA:11:A0:E3:C3:C3:5A:91:BF:6D
Authority key identifier: 54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D
Certificate issuer: /CN=54ac0ddec30e24e457e16e6507d219728310893d
Certificate serial: 01974A43C82AE6C03879912F0BFFD793E1D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
Manifest number: E5
Signing time: Sat 07 Jun 2025 12:00:45 +0000
Manifest this update: Sat 07 Jun 2025 12:00:45 +0000
Manifest next update: Sun 08 Jun 2025 12:00:45 +0000
Files and hashes: 1: 3gl-l3qU8MpI3MVFIGvCINJyADE.roa (hash: utYF7PoXBqNr3o1w6VDP9HkMKeBzXvpa+DHx3iRNsmk=)
2: VKwN3sMOJORX4W5lB9IZcoMQiT0.crl (hash: jeUc00oJHO9J1ZiFA+qeNIyA0hm3RMnVpBw8aNswStA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:43:c8:2a:e6:c0:38:79:91:2f:0b:ff:d7:93:e1:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ac0ddec30e24e457e16e6507d219728310893d
Validity
Not Before: Jun 7 12:00:45 2025 GMT
Not After : Jun 8 12:00:45 2025 GMT
Subject: CN=d34b1e80190e138eafd5da11a0e3c3c35a91bf6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ff:09:ea:b3:05:0b:f9:59:6e:65:bc:d0:48:
a1:08:02:4b:b5:f0:41:88:59:46:84:b1:11:ff:5e:
aa:e3:03:bb:8e:7e:72:23:ee:cf:24:98:27:5c:12:
93:bb:d4:ac:f9:d3:8c:4e:13:a5:49:ed:60:2c:eb:
45:51:b2:e5:50:5e:a1:d4:9f:50:92:3b:82:ab:ae:
e1:48:83:8f:fe:d6:8c:a1:84:82:16:b3:96:b3:9e:
82:67:f3:f1:ae:27:0f:8a:93:26:d7:a4:ba:59:e1:
fe:ae:9f:9a:0b:8a:8e:b2:95:01:5b:99:f1:55:67:
93:f8:4b:db:eb:c3:eb:15:83:ae:07:54:8a:74:76:
e8:c9:01:05:18:e5:e9:ae:a2:f4:1f:c4:47:a2:51:
74:30:7a:f1:e1:02:fd:53:8a:e8:be:85:a2:b9:2a:
d8:6f:4b:98:ba:b9:53:51:73:ff:f0:42:8f:16:71:
d5:16:31:00:26:62:d2:08:2c:44:fd:c6:f6:0e:10:
08:1e:73:98:31:fb:ca:7d:83:b9:92:7c:d8:c2:87:
74:a6:7b:ed:7e:20:f9:f9:d1:a2:97:d8:e3:e3:d5:
d3:fd:a3:5d:05:1c:a9:98:b6:b7:81:4d:fa:cd:4b:
0e:4f:2b:c6:1f:95:b3:90:6f:82:4e:3b:83:71:d4:
c8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:4B:1E:80:19:0E:13:8E:AF:D5:DA:11:A0:E3:C3:C3:5A:91:BF:6D
X509v3 Authority Key Identifier:
keyid:54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:02:59:72:82:76:b3:0c:ab:00:55:75:ba:80:7b:9d:24:d9:
4e:37:18:d2:9e:e9:ec:26:27:85:51:7e:b4:41:cf:84:da:89:
d9:67:da:1f:05:32:08:fe:5c:8e:48:2d:74:f6:00:97:eb:50:
fe:a7:dc:37:3e:14:28:4f:70:52:e8:92:02:24:ed:61:54:bd:
18:71:a0:66:52:64:5c:b1:cb:6d:2c:79:56:53:92:0f:c8:20:
6b:6b:51:6f:df:57:55:b6:d1:5e:73:82:5d:bf:c5:71:a9:ba:
71:90:29:fc:0e:b4:42:37:7b:e1:bd:1c:97:fe:4e:b3:ee:50:
7e:2d:77:42:53:a6:a0:1b:4c:38:c3:1c:87:e1:cc:87:56:e9:
26:ef:6d:01:24:92:8c:ad:50:c9:9e:26:e2:09:42:e4:ab:c0:
53:7c:fa:4d:fd:3a:8b:56:90:6e:41:52:46:62:05:76:8a:25:
66:8c:79:38:6e:cd:30:dd:41:09:2d:b8:8b:84:8e:98:34:c8:
58:b1:7c:25:c4:88:c6:b7:1d:04:dc:26:1a:82:8f:43:25:0c:
09:bf:63:9d:6c:e1:2a:c4:dd:50:b9:d6:61:44:6e:c0:c3:81:
44:c1:28:28:1c:8a:f2:90:b5:02:c6:fe:20:be:f3:c4:d6:43:
11:05:10:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:33:32 2025 by rpki-client