Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
File: vzrHIKEXt01NE8Jj95R3kp7btLw.mft (raw, json)
Hash identifier: rTF1ibTLhTd8hW7p5H1tYI6tCM1xTtX2V9DZZ9FDIJo=
Subject key identifier: 48:5F:1A:A0:C3:85:7C:9F:4D:79:63:B9:BC:1B:85:FC:58:86:60:8B
Authority key identifier: BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
Certificate issuer: /CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Certificate serial: 01965200387CD371DF107DED6F00000255DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
Manifest number: 02E6
Signing time: Sun 20 Apr 2025 07:01:08 +0000
Manifest this update: Sun 20 Apr 2025 07:01:08 +0000
Manifest next update: Mon 21 Apr 2025 07:01:08 +0000
Files and hashes: 1: vzrHIKEXt01NE8Jj95R3kp7btLw.crl (hash: c5kXzuJhe1xucYYXFCLqQ08i+yH51+/W++hqrcTeS80=)
2: y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa (hash: ce+FeJaNssRXQv9hff7wkEZwcN/xUnX9DV6JIGk2oTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:52:00:38:7c:d3:71:df:10:7d:ed:6f:00:00:02:55:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Validity
Not Before: Apr 20 07:01:08 2025 GMT
Not After : Apr 21 07:01:08 2025 GMT
Subject: CN=485f1aa0c3857c9f4d7963b9bc1b85fc5886608b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4f:62:20:73:50:e3:8f:58:fc:0e:4a:76:41:
8d:ee:a3:4c:9f:ae:c5:2e:76:7d:1d:f7:28:7b:73:
90:f9:d7:81:a8:bf:34:34:b3:1f:d7:59:c4:21:c1:
c1:73:ca:58:f1:66:74:f7:29:dd:35:63:5d:1b:ea:
e1:da:1c:3c:7d:96:2d:d8:ad:44:c5:52:ba:19:a9:
dc:f6:cd:c3:6d:79:35:78:6f:8c:1d:38:94:d1:ba:
91:3b:08:d2:38:35:f1:e9:b7:c5:cf:87:78:9d:0d:
a6:70:8d:1a:f7:1a:b5:9e:21:c6:d4:06:1e:d9:ec:
79:be:2f:54:2a:be:9e:a2:aa:7b:ff:88:e9:e4:4a:
75:5b:67:92:a8:97:f2:ad:e7:c7:be:a4:3e:26:42:
d1:33:44:4c:e4:64:87:b1:60:f1:29:43:ab:45:6a:
84:7f:6d:7f:61:c9:9c:a6:5c:0f:1a:4a:30:db:7f:
2e:b6:ba:c7:c9:c3:f2:a7:4a:71:56:78:6d:50:c0:
56:3f:4d:6a:4b:5a:d4:1a:26:fb:a2:a4:65:71:da:
9e:3f:89:7c:1d:7a:f5:69:d4:c2:21:fc:db:c9:fa:
ff:77:01:86:74:29:5c:52:e8:00:fd:a2:37:10:68:
ff:df:9a:46:1b:e8:db:de:8c:80:f7:a1:e6:11:59:
dc:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:5F:1A:A0:C3:85:7C:9F:4D:79:63:B9:BC:1B:85:FC:58:86:60:8B
X509v3 Authority Key Identifier:
keyid:BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:0b:01:35:7d:5c:3a:1c:9a:fb:22:35:17:4d:da:34:0c:69:
7b:5c:96:ce:fe:b6:02:93:c6:0f:0e:3c:48:57:61:b3:ae:96:
40:0e:14:10:c6:65:e8:61:11:aa:1c:ef:e9:28:b6:63:97:76:
59:79:9c:fa:ed:ad:14:91:68:4e:66:b7:99:0e:85:97:17:df:
cc:15:9c:9e:31:c7:e1:52:ee:14:c2:59:e5:b7:f4:71:01:9c:
34:db:ed:28:59:29:fe:27:d0:29:32:ef:d1:30:f3:d6:1a:1c:
58:ad:30:09:b7:fc:cd:24:3c:cd:43:35:7c:10:3d:f7:4e:12:
6f:8b:79:e7:b6:e8:e1:8e:16:3e:a1:63:84:2b:be:1f:43:6d:
79:7e:86:41:f2:85:84:38:a1:7f:7f:b8:e7:87:2a:03:3a:f5:
f6:06:8b:fe:bb:78:93:7f:8c:5a:0c:52:df:c5:9f:81:92:fd:
9c:08:48:31:72:42:7f:87:72:17:8e:53:b5:76:cb:64:8c:f3:
ef:db:6b:c6:fd:61:06:b5:aa:75:31:cb:a9:fa:3d:f9:f2:15:
e2:26:6b:1b:60:d9:be:b3:89:cd:11:f6:6b:7f:4e:4e:91:33:
f4:fc:d5:5a:54:d4:fe:3a:ad:92:c6:98:86:ac:86:73:8e:8a:
67:9c:c8:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 12:19:09 2025 by rpki-client