Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
File: vayPM9tKSgF12PjqfKdHUH5-geA.mft (raw, json)
Hash identifier: voMxSqlPUl8ApycI5XTizYkHfwvIiwl7CD0F/ZtyiLM=
Subject key identifier: 70:2C:EB:91:04:20:DA:22:B6:AD:C4:78:66:FE:DB:FD:B3:C3:CD:C3
Authority key identifier: BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
Certificate issuer: /CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Certificate serial: 019749D63FC2C7A1F86AD942E8EEDB30E8BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
Manifest number: 045E
Signing time: Sat 07 Jun 2025 10:01:07 +0000
Manifest this update: Sat 07 Jun 2025 10:01:07 +0000
Manifest next update: Sun 08 Jun 2025 10:01:07 +0000
Files and hashes: 1: 7oEw8EFmquKMrLL8-hfLmIwZUQY.roa (hash: UnWZTOCHUCj50Mpn5ZUqFaqkSFvoIDWjjwDqigNU5NY=)
2: Ck3Jvy5ijt5-_NFGYo-OlYqf3Jo.roa (hash: Ngn9iQ8GLL0NfQbzc69TCLUMH0IFa8vev/CQWXBGYeI=)
3: vayPM9tKSgF12PjqfKdHUH5-geA.crl (hash: mLs6TR6K6ayybnpEfOr1TanBcwX8OjjHtGg1oIyW06Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:d6:3f:c2:c7:a1:f8:6a:d9:42:e8:ee:db:30:e8:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdac8f33db4a4a0175d8f8ea7ca747507e7e81e0
Validity
Not Before: Jun 7 10:01:07 2025 GMT
Not After : Jun 8 10:01:07 2025 GMT
Subject: CN=702ceb910420da22b6adc47866fedbfdb3c3cdc3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:91:da:f9:77:e8:1b:62:f9:03:9c:2a:d8:c9:
fa:55:73:f2:30:f0:cf:cd:ff:40:e9:98:2f:fa:45:
d5:5b:1f:5c:e5:31:4b:d9:3e:e4:a8:91:1e:b4:34:
f1:3a:cb:00:9a:66:44:dc:30:bc:fd:61:11:be:20:
62:57:f7:c3:93:53:fb:35:47:a8:be:60:bb:c1:1b:
c8:43:8b:7f:a5:60:85:30:8c:b7:02:fd:6d:fb:25:
61:0a:39:ff:f9:22:74:ea:18:52:6e:38:ff:b0:27:
e8:9a:ab:2e:3b:37:e9:ba:a7:e5:4e:19:17:45:7f:
61:6d:1f:4b:21:d9:92:7b:b8:01:b9:2f:2b:24:23:
77:aa:75:68:bd:19:c6:b0:be:37:55:6a:ac:86:14:
b3:5a:c0:67:9e:67:13:46:b0:0e:1b:4e:1d:e0:a6:
a0:77:f0:20:9b:c6:7f:ac:ff:11:5f:5d:11:bd:ca:
53:d5:cd:ad:be:96:81:dc:f0:c3:8d:19:54:b5:4a:
bb:13:cc:98:b8:79:c8:6b:9b:9e:fb:cd:ab:e8:28:
34:0a:ac:67:1f:d5:16:49:31:0d:c2:35:51:c9:68:
37:00:69:36:5f:03:71:f3:db:14:8b:6a:1c:0f:d7:
2b:0b:af:7c:5c:cb:99:ca:3e:1e:c6:27:aa:4f:b9:
6e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2C:EB:91:04:20:DA:22:B6:AD:C4:78:66:FE:DB:FD:B3:C3:CD:C3
X509v3 Authority Key Identifier:
keyid:BD:AC:8F:33:DB:4A:4A:01:75:D8:F8:EA:7C:A7:47:50:7E:7E:81:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vayPM9tKSgF12PjqfKdHUH5-geA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/2e93fb-49b1-4b39-b252-250baf78e30e/1/vayPM9tKSgF12PjqfKdHUH5-geA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:58:6b:66:37:21:73:33:27:7a:99:c6:d1:d9:58:28:f2:ef:
c1:8d:df:83:fa:5b:1a:1f:8f:3e:2b:40:c4:e1:c4:23:b5:51:
46:92:51:06:2d:25:7b:4f:7f:09:99:da:67:1f:04:64:97:e5:
24:66:25:37:7e:e0:bc:fb:ec:c1:e2:06:89:e5:1a:16:5b:93:
8f:06:6a:a9:f8:b1:7b:a3:49:38:e3:bf:ba:a4:bc:5b:2c:d8:
35:22:c0:8e:df:70:69:5a:c0:28:aa:85:cb:c9:54:d9:31:b4:
09:38:9b:7e:a6:5a:b7:d4:50:36:cf:6c:73:9f:ee:e4:d6:65:
31:f2:ad:32:57:c2:2c:c2:75:eb:67:18:fa:0b:75:6a:9e:93:
59:0f:0c:16:25:de:dd:c1:d5:22:db:96:a0:e1:ad:e8:13:3c:
c4:a5:39:68:87:1f:bd:82:22:c2:0e:23:d0:67:9b:7e:c9:a2:
e8:3e:cc:49:c2:bd:59:af:68:e3:c1:1a:24:0c:5a:4e:6a:5f:
3e:4c:0d:c2:47:c0:47:28:c4:fb:a0:5a:8e:16:5b:8f:10:c9:
dd:8a:69:f3:df:fc:f0:56:0f:6f:99:c0:41:e5:fa:6c:22:31:
c1:e7:8a:0c:34:f2:35:ce:78:93:1e:3d:91:4d:b6:35:e8:08:
cd:fb:6d:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJ1j/Cx6H4atlC6O7bMOi7MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkYWM4ZjMzZGI0YTRhMDE3NWQ4ZjhlYTdjYTc0NzUwN2U3
ZTgxZTAwHhcNMjUwNjA3MTAwMTA3WhcNMjUwNjA4MTAwMTA3WjAzMTEwLwYDVQQD
Eyg3MDJjZWI5MTA0MjBkYTIyYjZhZGM0Nzg2NmZlZGJmZGIzYzNjZGMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4pHa+XfoG2L5A5wq2Mn6VXPyMPDP
zf9A6Zgv+kXVWx9c5TFL2T7kqJEetDTxOssAmmZE3DC8/WERviBiV/fDk1P7NUeo
vmC7wRvIQ4t/pWCFMIy3Av1t+yVhCjn/+SJ06hhSbjj/sCfomqsuOzfpuqflThkX
RX9hbR9LIdmSe7gBuS8rJCN3qnVovRnGsL43VWqshhSzWsBnnmcTRrAOG04d4Kag
d/Agm8Z/rP8RX10RvcpT1c2tvpaB3PDDjRlUtUq7E8yYuHnIa5ue+82r6Cg0Cqxn
H9UWSTENwjVRyWg3AGk2XwNx89sUi2ocD9crC698XMuZyj4exieqT7luuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHAs65EEINoitq3EeGb+2/2zw83DMB8GA1UdIwQY
MBaAFL2sjzPbSkoBddj46nynR1B+foHgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmF5UE05dEtTZ0YxMlBqcWZLZEhVSDUtZ2VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi8yZTkzZmItNDliMS00YjM5LWIyNTIt
MjUwYmFmNzhlMzBlLzEvdmF5UE05dEtTZ0YxMlBqcWZLZEhVSDUtZ2VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMi8yZTkzZmItNDliMS00YjM5LWIyNTItMjUwYmFmNzhlMzBl
LzEvdmF5UE05dEtTZ0YxMlBqcWZLZEhVSDUtZ2VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARlhrZjch
czMnepnG0dlYKPLvwY3fg/pbGh+PPitAxOHEI7VRRpJRBi0le09/CZnaZx8EZJfl
JGYlN37gvPvsweIGieUaFluTjwZqqfixe6NJOOO/uqS8WyzYNSLAjt9waVrAKKqF
y8lU2TG0CTibfqZat9RQNs9sc5/u5NZlMfKtMlfCLMJ162cY+gt1ap6TWQ8MFiXe
3cHVItuWoOGt6BM8xKU5aIcfvYIiwg4j0Gebfsmi6D7MScK9Wa9o48EaJAxaTmpf
PkwNwkfARyjE+6BajhZbjxDJ3Ypp89/88FYPb5nAQeX6bCIxweeKDDTyNc54kx49
kU22NegIzfttYA==
-----END CERTIFICATE-----
Generated at Sat Jun 7 15:17:24 2025 by rpki-client