Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
File: vayPM9tKSgF12PjqfKdHUH5-geA.mft (raw, json)
Hash identifier: VdZN+fz/6P2HpyI5I3EuYH1FsV/C16EdD1p7eubDOeE=
Subject key identifier: CD:AE:A6:A1:23:15:05:7D:75:3F:BD:D5:64:43:E5:FC:28:EC:88:45
Authority key identifier: BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
Certificate issuer: /CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Certificate serial: 019616C718FCE554B56FD48BAB71E200B2E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
Manifest number: 03BF
Signing time: Tue 08 Apr 2025 19:01:08 +0000
Manifest this update: Tue 08 Apr 2025 19:01:08 +0000
Manifest next update: Wed 09 Apr 2025 19:01:08 +0000
Files and hashes: 1: 7oEw8EFmquKMrLL8-hfLmIwZUQY.roa (hash: UnWZTOCHUCj50Mpn5ZUqFaqkSFvoIDWjjwDqigNU5NY=)
2: Ck3Jvy5ijt5-_NFGYo-OlYqf3Jo.roa (hash: Ngn9iQ8GLL0NfQbzc69TCLUMH0IFa8vev/CQWXBGYeI=)
3: vayPM9tKSgF12PjqfKdHUH5-geA.crl (hash: GQ40dDz2vBuLmf7Fs7S7zOJYae4M/B0vFSoowdNw478=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 19:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:16:c7:18:fc:e5:54:b5:6f:d4:8b:ab:71:e2:00:b2:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Validity
Not Before: Apr 8 19:01:08 2025 GMT
Not After : Apr 9 19:01:08 2025 GMT
Subject: CN=cdaea6a12315057d753fbdd56443e5fc28ec8845
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:ef:86:15:c7:bf:16:0f:04:fa:0f:96:7b:0a:
4e:e2:5e:0a:4c:33:bc:e9:bb:c6:03:f7:27:dc:2c:
69:f5:3f:29:44:ad:8a:af:b7:f0:0d:f9:c6:0f:17:
f4:aa:13:19:39:3a:db:a4:8d:3e:97:18:6e:85:3c:
77:5e:79:1b:a1:b8:33:2d:4a:cb:91:24:70:3b:2b:
28:7b:80:e9:89:23:71:68:41:af:42:68:fa:d2:38:
7e:c9:ca:87:4d:01:d1:08:3a:89:e4:32:09:c4:45:
c6:e5:6f:0c:28:54:d8:2f:4a:77:9d:4b:37:da:46:
5b:19:1d:e5:27:fa:8c:37:5a:63:fc:86:5f:31:6d:
ef:06:9c:55:13:65:c0:4b:97:ea:95:f8:65:ac:df:
48:39:79:92:29:b9:f2:bf:18:bb:80:65:12:53:bb:
f1:66:04:35:89:68:7d:aa:fa:82:9b:38:e2:c4:81:
a1:0d:f3:c4:33:8c:ef:a5:65:82:34:91:48:23:01:
00:68:b0:d0:8e:d1:79:c6:51:94:45:07:a9:6d:01:
75:28:aa:77:25:77:c1:f6:9b:17:7b:7e:40:34:49:
f5:01:66:56:f6:d9:a1:df:50:2b:a0:33:95:28:e3:
03:ac:76:07:ff:97:ad:1d:c6:2d:c0:ae:c8:ed:4d:
64:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:AE:A6:A1:23:15:05:7D:75:3F:BD:D5:64:43:E5:FC:28:EC:88:45
X509v3 Authority Key Identifier:
keyid:BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:f5:12:35:e8:3a:91:a5:8d:76:d8:a5:bb:1c:82:14:7a:40:
c4:60:2b:a8:6c:a7:91:f1:43:b9:90:f6:aa:19:fa:2a:45:08:
56:9f:6d:01:0a:19:46:5b:c4:9f:12:5d:51:5e:f7:4c:6c:8b:
3b:c8:e1:f6:ad:53:bb:af:94:f5:04:8e:17:5a:1d:16:e0:c8:
d7:6b:6e:68:d7:b5:e9:5d:2f:71:81:7a:19:ec:2f:0e:27:b7:
fd:8d:43:7b:72:93:ae:a2:f7:fd:64:87:a0:ad:45:4a:d4:68:
04:1f:19:ae:f7:0e:e4:13:28:d1:00:05:dd:ac:62:b6:2b:40:
88:dd:57:8c:48:2c:56:c0:20:56:46:7b:4f:f4:84:99:56:08:
56:fe:38:80:e2:66:dc:d4:a8:cb:0e:85:f8:4a:6e:b6:75:7c:
1c:42:6f:8d:34:47:69:b4:e4:5e:bc:bd:43:a4:51:f1:89:a3:
1e:3b:8e:85:47:90:b6:fa:f0:2e:2e:4b:70:99:4f:1d:35:23:
ff:44:4e:b4:6d:0b:0d:98:c6:96:fb:e2:75:48:33:66:be:3f:
57:c0:d3:43:2c:16:cb:f0:fc:e6:69:80:ee:ff:9a:ed:27:0a:
10:70:1d:62:5f:45:01:92:26:1d:b8:20:12:ce:8a:13:c4:4f:
00:2f:10:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 9 01:44:50 2025 by rpki-client