Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
File: vB0gk2YmtVdDxllFEt5C75-OkF8.mft (raw, json)
Hash identifier: Txou9biPMExGgK5rehNhw9BqiCnNCvzVwAArGZauTxQ=
Subject key identifier: 32:BE:3F:3A:DD:FF:23:6A:9B:27:F5:3F:0B:55:5A:F2:06:10:A5:AE
Authority key identifier: BC:1D:20:93:66:26:B5:57:43:C6:59:45:12:DE:42:EF:9F:8E:90:5F
Certificate issuer: /CN=bc1d20936626b55743c6594512de42ef9f8e905f
Certificate serial: 01974DE9E6DDCB44CE3A741D639A930B097A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
Manifest number: 1580
Signing time: Sun 08 Jun 2025 05:01:03 +0000
Manifest this update: Sun 08 Jun 2025 05:01:03 +0000
Manifest next update: Mon 09 Jun 2025 05:01:03 +0000
Files and hashes: 1: 5sX-DGEXiD0BFlvf-Fmo0E_zIWA.roa (hash: 9QROXrOe8DbEbrWzP6N+sqZkzzd6XWEYKMJ32P4x344=)
2: vB0gk2YmtVdDxllFEt5C75-OkF8.crl (hash: 6bYYJZfttlxm94Hucy3m6rdnY52fNb+rjl6fN24jc3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:e9:e6:dd:cb:44:ce:3a:74:1d:63:9a:93:0b:09:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc1d20936626b55743c6594512de42ef9f8e905f
Validity
Not Before: Jun 8 05:01:03 2025 GMT
Not After : Jun 9 05:01:03 2025 GMT
Subject: CN=32be3f3addff236a9b27f53f0b555af20610a5ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:24:df:bb:37:a7:5b:d0:d3:66:5a:90:21:e4:
50:f8:e4:d5:9d:3a:ac:f9:1d:3a:8c:8a:5c:61:0c:
42:d0:59:07:ad:09:99:f1:33:a7:47:04:23:fd:e5:
46:86:e2:52:da:c6:86:fc:f8:d8:eb:a8:61:80:20:
96:99:63:54:af:10:7e:07:7c:26:3e:98:2c:71:c3:
8d:18:ea:35:a0:02:03:ad:15:b0:38:c7:39:fd:25:
7f:bd:93:c3:42:a8:77:47:95:0b:ba:10:42:32:2d:
19:42:ee:3b:85:91:bc:09:31:76:f1:f0:69:fe:db:
83:b1:c2:b8:f4:b5:2e:86:53:cf:3b:0f:7e:46:4c:
3f:5c:fc:f2:22:b0:b3:bb:f6:6a:9a:9f:76:e8:c8:
a9:52:2a:e2:f5:cc:14:04:e2:72:17:af:fc:15:8b:
5a:ec:31:e7:02:37:dc:95:dd:10:d7:74:06:3a:e8:
e4:d1:bb:0a:3a:8e:36:9b:fb:4e:56:54:f5:a6:e1:
fb:9c:cc:f5:9c:c0:1e:0e:4d:52:65:1f:2d:1c:c1:
6a:1d:d5:eb:f2:b1:b3:2f:0f:48:23:2f:90:75:da:
40:22:8b:7d:7a:59:2a:d0:0a:5d:e7:b9:30:68:14:
a8:c4:e2:f4:34:fb:dc:48:91:88:1a:73:03:01:ba:
50:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:BE:3F:3A:DD:FF:23:6A:9B:27:F5:3F:0B:55:5A:F2:06:10:A5:AE
X509v3 Authority Key Identifier:
keyid:BC:1D:20:93:66:26:B5:57:43:C6:59:45:12:DE:42:EF:9F:8E:90:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:c0:55:06:95:0c:22:06:e7:8f:6e:22:0d:69:bd:35:47:8b:
f5:67:cf:80:e2:42:b0:77:e3:18:05:e5:85:86:31:bf:56:8d:
2f:56:86:af:6d:76:2a:86:3d:c7:f6:c1:17:c1:57:5e:63:fa:
98:02:40:4c:52:42:26:75:ca:94:b2:07:65:d6:57:a1:5d:6e:
bb:5a:b3:9f:46:ad:f1:89:1a:ff:1d:70:91:7c:1a:25:eb:f8:
1d:64:7a:e0:7c:62:0a:8a:cb:94:80:d5:1b:88:26:ac:1a:c0:
8b:7c:45:37:d5:f0:ce:bd:d7:19:9e:5a:68:90:d1:8a:6c:87:
08:46:59:7b:4a:a7:fb:6e:8c:9c:3c:16:86:4e:11:bb:17:bb:
1e:c5:63:43:0d:05:17:7d:bd:d8:8e:e7:0e:a1:89:71:54:31:
82:72:b3:cd:1d:c6:65:4c:86:37:ca:d6:49:b0:b6:7e:a8:f3:
f5:3e:7f:76:0b:e4:01:65:41:fa:16:9d:8e:44:0c:a9:f0:91:
85:ce:8b:a4:84:15:f7:3e:a4:83:2c:c3:95:86:7a:d1:a0:e5:
02:0a:c3:cf:76:16:9c:ed:04:b0:dd:59:58:05:a6:92:d4:7b:
45:9e:e7:96:ee:2a:1a:63:96:85:fa:dd:a4:54:2a:9d:b7:3c:
ed:da:71:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:06:38 2025 by rpki-client