Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
File: VKwN3sMOJORX4W5lB9IZcoMQiT0.mft (raw, json)
Hash identifier: EabXhlV5jvb5Iw20buWqLqq7rvKee02WQQtbzZgCqZE=
Subject key identifier: 7C:65:F0:61:E4:BC:08:33:2C:05:10:6E:E9:CC:8B:D0:59:BF:8D:28
Authority key identifier: 54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D
Certificate issuer: /CN=54ac0ddec30e24e457e16e6507d219728310893d
Certificate serial: 01963DD4153C40FAE9CF321BDE38C75C40C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
Manifest number: 5A
Signing time: Wed 16 Apr 2025 09:00:31 +0000
Manifest this update: Wed 16 Apr 2025 09:00:31 +0000
Manifest next update: Thu 17 Apr 2025 09:00:31 +0000
Files and hashes: 1: 3gl-l3qU8MpI3MVFIGvCINJyADE.roa (hash: utYF7PoXBqNr3o1w6VDP9HkMKeBzXvpa+DHx3iRNsmk=)
2: VKwN3sMOJORX4W5lB9IZcoMQiT0.crl (hash: hgPibDsLks3jFuvfb8ouI0kNBIE+LaQYo9ewb0LS2Dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl
rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 09:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3d:d4:15:3c:40:fa:e9:cf:32:1b:de:38:c7:5c:40:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ac0ddec30e24e457e16e6507d219728310893d
Validity
Not Before: Apr 16 09:00:31 2025 GMT
Not After : Apr 17 09:00:31 2025 GMT
Subject: CN=7c65f061e4bc08332c05106ee9cc8bd059bf8d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:3d:49:06:42:a4:9d:d0:4f:c8:60:92:8f:8f:
e0:98:e5:0f:95:af:89:69:1b:31:93:49:b4:0e:98:
cc:1b:af:74:c7:7d:75:bc:81:dd:38:b7:31:aa:44:
80:ce:ae:5c:72:97:b6:31:06:94:02:c1:92:3d:5e:
5e:86:d9:12:f0:14:68:4f:15:a8:57:0c:8a:2c:51:
db:58:ea:f8:f4:17:42:92:ec:c4:d3:4c:e4:20:a7:
b5:99:35:0e:5b:71:5f:d1:cb:ab:71:f0:5f:20:4b:
ad:27:c6:d2:48:24:bf:15:41:dc:10:99:d6:65:59:
cd:b1:f1:65:c9:dd:88:a4:96:18:67:ca:55:c0:44:
74:01:57:fd:c8:dd:eb:aa:b5:fc:75:f9:d6:5c:79:
a9:2e:e9:7d:ed:6e:bc:93:bd:36:de:29:8a:9a:6b:
6a:45:8e:da:3d:41:f4:89:1e:d9:54:6a:2c:12:2b:
7f:0c:dc:9b:c6:3e:20:10:29:e8:1f:c7:d0:67:46:
3f:ad:bb:7a:dd:42:be:b2:df:60:f9:e9:fd:ce:25:
34:dd:61:3c:b6:6c:22:81:82:22:33:dd:3f:27:13:
1f:f2:83:3f:20:31:62:a0:55:b1:75:c6:f3:b7:92:
18:fb:89:15:ce:e2:ce:9c:a4:e0:d4:46:39:44:6d:
54:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:65:F0:61:E4:BC:08:33:2C:05:10:6E:E9:CC:8B:D0:59:BF:8D:28
X509v3 Authority Key Identifier:
keyid:54:AC:0D:DE:C3:0E:24:E4:57:E1:6E:65:07:D2:19:72:83:10:89:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKwN3sMOJORX4W5lB9IZcoMQiT0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/2ddd39-e7bd-44ba-ab21-2f0655f01029/1/VKwN3sMOJORX4W5lB9IZcoMQiT0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:8b:be:b6:0f:87:d7:c0:d6:c1:02:c4:92:1a:fc:9c:f7:aa:
e8:58:41:8b:6e:f1:38:85:f2:1c:4e:3a:d5:da:b3:46:c7:da:
bb:bc:ab:8f:59:ca:eb:e4:6b:f2:0d:5c:db:9d:b8:bb:28:d9:
cb:f3:ee:84:28:2b:82:17:ec:e4:5c:34:19:92:32:0f:f3:08:
74:2e:d2:ae:c5:7d:ec:8f:40:e6:5a:d6:b6:14:30:15:ba:0f:
be:56:c7:a0:2a:f5:5d:d6:0c:e0:2b:54:3a:d2:b4:d1:9c:7a:
4b:3a:e3:9f:64:a1:58:71:5f:69:22:00:42:64:90:14:e1:ff:
dd:8d:79:91:f8:8f:00:e1:6a:d8:1a:ea:44:0d:4c:42:93:f2:
d2:5e:35:e2:43:3c:54:cd:8c:5f:c5:d9:99:97:38:b5:f0:1b:
12:e9:29:26:9f:f2:91:c9:34:e9:d5:6d:00:45:18:4f:4e:69:
1b:e1:21:69:47:84:5a:91:76:f0:1d:95:99:2d:e0:7c:60:c4:
89:8a:42:d9:f3:06:a0:45:7f:6a:93:a9:6b:63:63:b7:07:d3:
b5:de:6b:fe:69:11:dd:23:96:9d:97:cf:2d:4d:bc:cd:35:af:
96:f9:97:30:24:a7:4c:99:6b:46:b6:c5:31:cb:99:1a:e5:24:
94:e9:7f:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 19:36:48 2025 by rpki-client