Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
File: vB0gk2YmtVdDxllFEt5C75-OkF8.mft (raw, json)
Hash identifier: pE6T1+zzMTLj0fvQR/2cjjES2iQKCimQpVwKoCjjC4U=
Subject key identifier: AC:80:3D:CF:A9:AF:AB:BF:3C:85:26:E4:76:7B:12:E0:63:F6:F6:7A
Authority key identifier: BC:1D:20:93:66:26:B5:57:43:C6:59:45:12:DE:42:EF:9F:8E:90:5F
Certificate issuer: /CN=bc1d20936626b55743c6594512de42ef9f8e905f
Certificate serial: 01964D107202E6692648F056EADC70A76C24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
Manifest number: 14FB
Signing time: Sat 19 Apr 2025 08:00:45 +0000
Manifest this update: Sat 19 Apr 2025 08:00:45 +0000
Manifest next update: Sun 20 Apr 2025 08:00:45 +0000
Files and hashes: 1: 5sX-DGEXiD0BFlvf-Fmo0E_zIWA.roa (hash: 9QROXrOe8DbEbrWzP6N+sqZkzzd6XWEYKMJ32P4x344=)
2: vB0gk2YmtVdDxllFEt5C75-OkF8.crl (hash: Ax24NHigQAfQvFVaaVR5QO6Tg2aG2l/uxjB6Ug+8T8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 08:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:10:72:02:e6:69:26:48:f0:56:ea:dc:70:a7:6c:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc1d20936626b55743c6594512de42ef9f8e905f
Validity
Not Before: Apr 19 08:00:45 2025 GMT
Not After : Apr 20 08:00:45 2025 GMT
Subject: CN=ac803dcfa9afabbf3c8526e4767b12e063f6f67a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ee:8b:93:0f:9b:e1:69:7f:97:8a:42:0f:ec:31:
43:6e:95:97:5c:ac:e8:96:56:97:3e:a9:1e:a4:b4:
39:38:76:72:5c:c3:6e:72:92:20:55:5a:d6:1c:f5:
16:1c:37:fa:77:72:c0:80:77:bd:52:77:e9:6b:f7:
62:c2:56:43:ca:fd:08:2f:16:d2:0a:a0:37:4a:52:
7b:8e:f9:9a:c4:fc:d5:0f:a3:9e:77:c8:98:c5:9b:
91:f8:90:98:5a:9a:19:14:2f:05:7e:6a:bb:f0:3c:
70:71:b8:e7:ad:d7:0f:9d:1d:b6:26:33:d8:87:5f:
8d:34:74:c5:84:5e:0b:a5:ac:56:2d:59:da:26:3c:
47:34:26:02:6b:da:ae:1c:b6:75:c4:72:38:80:2b:
2b:21:7c:72:0d:77:96:49:6f:db:ef:a3:60:87:30:
46:2b:d0:65:9f:57:fc:4a:64:f7:79:c2:71:18:4e:
c9:5b:74:58:ad:03:5f:a6:03:22:f2:84:24:11:89:
32:a1:5f:46:5e:c9:8c:e0:ac:67:29:04:59:1b:1a:
15:86:71:81:a5:7e:f4:32:21:3b:82:32:79:8b:eb:
5d:61:3b:df:46:b7:d2:fa:88:a7:1b:b8:0d:83:b6:
4a:88:f5:bd:d2:cc:ef:c2:2f:ed:b5:3a:fa:40:e3:
57:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:80:3D:CF:A9:AF:AB:BF:3C:85:26:E4:76:7B:12:E0:63:F6:F6:7A
X509v3 Authority Key Identifier:
keyid:BC:1D:20:93:66:26:B5:57:43:C6:59:45:12:DE:42:EF:9F:8E:90:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:de:62:3f:44:1b:6b:8a:68:eb:8a:9e:df:6c:55:c6:34:c7:
56:39:49:76:e2:69:ed:13:29:30:dc:5a:17:9e:82:11:9f:84:
9a:72:4f:f3:f7:e5:bb:c8:5f:6d:16:9e:c9:e7:0d:b1:58:4e:
aa:2f:f7:21:87:e6:44:6b:c3:b7:90:7e:f3:58:fa:d8:d4:c2:
48:ef:ae:66:55:58:43:a3:50:47:61:af:7a:ec:54:98:6e:e2:
0d:c5:d3:8e:69:47:47:b9:db:70:93:3c:57:0a:66:7c:90:fb:
d9:52:ea:ff:8a:7b:70:c6:12:eb:1f:d0:1c:1f:fc:13:27:d2:
e1:bc:4b:ff:aa:60:92:89:8d:a5:cd:b4:9a:b2:bb:c6:0a:ce:
a8:6a:97:80:81:05:1d:c9:54:f2:2c:df:a4:bf:e4:f2:99:ee:
de:75:b5:4e:ba:0c:9e:38:d0:30:cb:21:d9:a7:57:39:85:83:
32:15:89:97:01:56:82:b4:b6:e1:86:3f:01:6a:0f:d3:42:2c:
ee:f6:8e:4c:0b:0b:4e:ca:fc:70:28:34:b1:74:8f:a1:e6:9e:
df:49:95:2b:b8:cd:e1:c0:8c:22:8b:ee:1d:5a:e8:29:a2:df:
9d:7c:9a:42:b5:e1:dd:5e:4d:bf:ac:e3:ac:b4:54:fd:16:47:
8d:dc:f7:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 17:53:12 2025 by rpki-client