Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
File: vzrHIKEXt01NE8Jj95R3kp7btLw.mft (raw, json)
Hash identifier: kxzMcn2pO/qT7BOqiUNcugYiqUZvq1mIjFD+hbShMN0=
Subject key identifier: EC:4C:DB:7F:0D:4F:A3:AD:A7:06:D2:20:34:28:81:12:4B:8B:1B:FE
Authority key identifier: BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
Certificate issuer: /CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Certificate serial: 0197493160E1390B4A5D91B3D700F5B90967
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
Manifest number: 0366
Signing time: Sat 07 Jun 2025 07:01:02 +0000
Manifest this update: Sat 07 Jun 2025 07:01:02 +0000
Manifest next update: Sun 08 Jun 2025 07:01:02 +0000
Files and hashes: 1: vzrHIKEXt01NE8Jj95R3kp7btLw.crl (hash: gneJ6tGPI0WrdlPhS9iEeZ0b4dGMV20CZClTrtcE6Q4=)
2: y3g1z7Zmigqej1DGQ1gx3ilZaM8.roa (hash: ce+FeJaNssRXQv9hff7wkEZwcN/xUnX9DV6JIGk2oTM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 07:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:31:60:e1:39:0b:4a:5d:91:b3:d7:00:f5:b9:09:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf3ac720a117b74d4d13c263f79477929edbb4bc
Validity
Not Before: Jun 7 07:01:02 2025 GMT
Not After : Jun 8 07:01:02 2025 GMT
Subject: CN=ec4cdb7f0d4fa3ada706d220342881124b8b1bfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:17:3d:a3:1f:4e:0d:8e:d3:07:a2:1d:ed:7e:
92:56:44:ea:ea:23:32:af:9b:e9:73:5f:93:df:d5:
0f:ea:2b:c1:67:4e:06:73:c5:d8:c5:5f:65:30:b1:
94:6f:08:97:cb:fe:9f:cc:f5:5d:e3:c8:c9:a4:33:
8e:4b:38:50:48:df:d1:7b:4e:fe:17:68:70:d5:16:
d7:a0:d9:1b:83:92:97:ef:71:34:fa:fc:6c:5e:38:
6c:fc:97:b3:26:1d:05:88:23:5d:06:91:ac:5a:f2:
5c:62:fb:80:3c:a6:3b:02:47:13:59:b8:7a:fc:50:
66:40:cd:93:4c:54:a0:85:70:e5:75:45:02:88:57:
41:81:e2:3c:8e:9e:f0:92:d4:0b:e5:09:ab:a5:92:
2a:34:a8:c3:84:b4:18:c0:17:82:f9:67:34:91:ff:
eb:ed:5a:8f:12:48:8f:f5:5d:09:33:9f:b3:fa:8d:
b2:74:dd:76:bb:49:e0:d1:5f:03:a5:35:bd:a5:be:
44:d7:6b:e9:11:4a:0d:cc:e1:e1:46:bd:19:88:74:
c9:cc:18:c0:1d:be:f1:53:79:eb:4b:f1:de:4a:84:
71:09:f6:e0:39:15:78:ab:33:70:38:48:cc:24:6c:
cc:85:ee:fe:fc:3a:6a:00:c1:42:37:68:b6:ae:df:
75:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EC:4C:DB:7F:0D:4F:A3:AD:A7:06:D2:20:34:28:81:12:4B:8B:1B:FE
X509v3 Authority Key Identifier:
keyid:BF:3A:C7:20:A1:17:B7:4D:4D:13:C2:63:F7:94:77:92:9E:DB:B4:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vzrHIKEXt01NE8Jj95R3kp7btLw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/db5f5e-7b7d-4b28-a9b3-0ac1bbd434d0/1/vzrHIKEXt01NE8Jj95R3kp7btLw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:03:58:41:bf:f4:22:a7:2b:5d:92:ac:b7:c4:25:b3:de:5c:
df:1e:ff:0a:c7:a1:23:ef:dd:f8:e7:6a:e0:1c:6e:cd:ba:22:
9e:23:68:2b:64:0a:bf:0d:fc:c9:16:97:eb:01:db:3b:2d:b2:
b7:c5:a1:4a:a8:b3:3a:f0:13:ef:21:29:70:00:8d:0f:0e:30:
9c:6b:b4:65:f6:3c:c4:26:a4:3b:7e:c5:00:15:d4:c4:26:14:
30:18:1d:7b:ea:b7:5c:13:58:1a:43:c8:ac:20:09:f6:24:90:
13:19:f0:54:fe:2e:6f:72:33:ad:e3:07:64:9e:66:68:bb:16:
fd:90:e6:8a:cf:ee:31:76:ba:30:49:26:6b:4a:dd:63:9d:61:
fd:1c:3b:31:c5:d2:45:2a:d5:6d:a3:b0:ac:30:ba:09:64:b4:
e5:15:1b:ba:67:84:dc:89:fa:5b:0d:1f:69:51:01:45:50:0e:
7b:4a:bd:11:5d:8c:39:98:d9:be:84:46:36:33:6f:96:58:e7:
72:8d:e0:40:61:b6:2c:34:28:41:64:88:e3:fe:90:25:46:c7:
49:fa:dd:b0:9b:4e:80:09:c7:97:b4:ce:b6:d1:4c:dc:47:9a:
25:4d:d9:7e:bb:2f:9e:64:f9:b1:86:2c:2f:9a:d4:2a:51:1f:
c0:8b:22:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:04:47 2025 by rpki-client