Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
File: VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft (raw, json)
Hash identifier: mJDJztuV/LyLH0+fPqAJKy4/gW6HPlaJ2MqI6XfhjYM=
Subject key identifier: 3C:45:31:DB:CE:08:0F:B1:A6:5E:D0:4F:B3:C3:49:23:EC:91:DF:9F
Authority key identifier: 54:49:5A:2F:41:CD:10:5A:EF:06:F2:87:0A:76:33:98:01:ED:B9:0D
Certificate issuer: /CN=54495a2f41cd105aef06f2870a76339801edb90d
Certificate serial: 01974E8E69F72AABA2748BD0F60E35C8FC63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
Manifest number: 016E
Signing time: Sun 08 Jun 2025 08:00:45 +0000
Manifest this update: Sun 08 Jun 2025 08:00:45 +0000
Manifest next update: Mon 09 Jun 2025 08:00:45 +0000
Files and hashes: 1: VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl (hash: RJ0QXLnPYHcm9Iy3P2M2nWtfL8WCekA/lnPvvHuAYE0=)
2: iWKzGh5m2_oz6qvqBjoyFnizgxw.roa (hash: YVbdlpkB57bicqIuUwT2dIakABg210l0QU3avOsuQbo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:8e:69:f7:2a:ab:a2:74:8b:d0:f6:0e:35:c8:fc:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54495a2f41cd105aef06f2870a76339801edb90d
Validity
Not Before: Jun 8 08:00:45 2025 GMT
Not After : Jun 9 08:00:45 2025 GMT
Subject: CN=3c4531dbce080fb1a65ed04fb3c34923ec91df9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:63:e8:b4:74:09:5e:3a:d4:1b:a3:6e:a1:ad:
84:2e:d3:ab:c4:a7:b5:5e:a2:92:52:18:10:5d:00:
c0:68:a4:b6:c3:08:93:e0:8c:55:c1:7e:30:58:44:
c3:c7:ea:e2:d1:92:3b:5c:a3:44:ec:51:c9:05:c0:
73:d2:f8:88:8a:ad:36:90:b5:8a:e1:92:d7:03:f4:
8b:2d:c1:27:5f:27:f4:07:6d:5e:c4:70:ac:e5:39:
f7:4d:0a:ab:52:6f:94:d8:18:72:44:fc:d7:59:e9:
ee:ed:83:71:8f:49:73:e9:95:63:1b:33:8f:60:80:
99:34:0c:00:66:87:01:1d:de:3e:68:19:e1:b0:a8:
44:c0:aa:b1:a4:c5:60:1f:6c:be:84:75:eb:6c:e6:
cc:ae:0b:9d:10:4b:a8:93:81:e5:8b:2a:8b:fc:49:
36:47:de:c0:4b:28:4f:33:96:bf:aa:8c:8a:b2:eb:
aa:48:13:df:96:e4:a0:ac:01:6d:c0:9e:d5:56:58:
e6:fd:6c:df:d0:ce:50:70:8d:0b:d3:43:bc:df:49:
91:ed:5f:89:44:90:5c:ed:3e:26:b3:e9:ab:37:e8:
e5:7a:f5:e0:9e:ee:18:1d:99:5c:55:98:89:79:7f:
6e:bb:28:94:e7:c8:dc:ed:d2:09:e2:de:5c:09:07:
38:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:45:31:DB:CE:08:0F:B1:A6:5E:D0:4F:B3:C3:49:23:EC:91:DF:9F
X509v3 Authority Key Identifier:
keyid:54:49:5A:2F:41:CD:10:5A:EF:06:F2:87:0A:76:33:98:01:ED:B9:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VElaL0HNEFrvBvKHCnYzmAHtuQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/d67a58-380f-427a-849a-f9940fa1e108/1/VElaL0HNEFrvBvKHCnYzmAHtuQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:57:7e:04:5c:e8:3a:38:42:c5:26:ba:82:a7:1a:d9:9a:f3:
10:4f:df:f5:44:e4:b4:a1:29:a9:f2:5b:25:ee:95:5b:ec:1b:
50:f9:73:e0:7a:50:c1:79:e3:85:36:da:fa:a5:c0:84:f6:4b:
b1:8e:52:12:3b:9f:bd:04:12:5c:56:b9:90:39:78:6b:a9:d7:
46:33:27:04:7c:0d:1d:e1:d7:5f:7e:4d:37:a8:6a:4b:31:c9:
3d:eb:44:22:b4:ad:b8:af:4d:14:8c:92:b1:0d:2e:79:57:a4:
a5:29:22:db:2d:eb:fc:d9:12:c8:31:dc:1b:2b:ef:7e:e7:86:
a7:14:98:ac:76:d8:de:45:d9:20:e3:21:bc:53:b7:8d:97:fc:
e0:82:22:1f:aa:a0:d2:ff:f5:a8:81:5b:91:94:b4:01:84:7a:
48:21:06:df:67:bd:e1:79:3d:79:68:f5:96:47:2b:44:99:bd:
fc:3d:ab:81:07:7c:ff:43:a0:d1:6d:cb:9d:5e:70:94:6b:a7:
ca:02:dd:59:97:bd:3d:04:27:02:38:7c:27:51:47:f3:b5:f6:
c3:75:0c:56:a4:9f:36:38:0f:34:fe:d9:5b:35:b6:7e:bb:e3:
fa:08:28:1c:26:56:7f:3d:ed:ad:8c:19:8b:45:65:e5:eb:55:
df:26:26:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 11:15:25 2025 by rpki-client