Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
File: vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json)
Hash identifier: mP6PjVgmmyRiQ+JKAZz7nndWG3j5y9MCEYLuDcjLbMk=
Subject key identifier: A4:39:35:DB:E9:95:CA:1B:95:00:07:7B:1F:89:D5:FB:CA:A2:B2:0D
Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
Certificate issuer: /CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Certificate serial: 019746670EEB4CE2EF99316CBA85C6829078
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
Manifest number: 07A4
Signing time: Fri 06 Jun 2025 18:00:48 +0000
Manifest this update: Fri 06 Jun 2025 18:00:48 +0000
Manifest next update: Sat 07 Jun 2025 18:00:48 +0000
Files and hashes: 1: 8TP605-bnnRU4oKxlSCpw5mXUvE.roa (hash: mDnmEgfw91sdWLEWlPQZ2jWiCvBV4IYovQSRnJwJt28=)
2: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: DQ99PyQ65qRZ/mwgasMzAgp1XEZFxinLOY4w8ir0QdQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:67:0e:eb:4c:e2:ef:99:31:6c:ba:85:c6:82:90:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Validity
Not Before: Jun 6 18:00:48 2025 GMT
Not After : Jun 7 18:00:48 2025 GMT
Subject: CN=a43935dbe995ca1b9500077b1f89d5fbcaa2b20d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:98:7b:6e:52:0a:03:d2:99:cf:2c:fa:24:73:
e3:d9:f5:30:b5:05:c3:c6:5f:7a:77:f4:cf:18:61:
69:08:48:a9:cd:5b:de:f8:84:8c:fe:c4:2c:c8:ae:
72:d6:ec:c6:85:5c:f6:5d:02:f5:da:4e:1c:31:14:
36:f2:b6:13:8b:6f:40:ad:87:9d:b6:15:15:83:cc:
d7:37:fa:ee:5c:64:15:67:e2:1c:3c:9c:ce:80:94:
2b:a3:36:b2:26:8b:72:a9:2c:9e:5b:bd:a3:39:f6:
d9:5a:ce:c5:ed:4a:b7:3f:bd:f1:5e:cc:b2:22:44:
ab:2d:a0:b6:03:af:70:d8:61:af:a0:54:34:75:30:
37:12:7f:40:e0:be:13:d3:47:c4:63:92:cd:35:b7:
47:ae:a0:0a:76:71:5d:c8:bc:8b:f4:36:2e:69:d4:
61:c6:bb:e0:89:1e:56:de:33:cb:29:16:d3:07:fc:
f0:8b:00:6d:d2:99:1a:76:71:63:96:f9:1f:16:ad:
30:c4:99:2e:18:fe:c1:ea:4c:a2:8b:48:40:51:83:
16:b5:ca:d7:33:5f:5b:78:2c:ed:29:51:6c:83:0d:
21:48:cf:2b:ce:11:60:cb:48:3f:b7:4c:da:eb:69:
17:9d:8f:3f:79:f8:82:18:ea:9b:55:5c:e8:6a:36:
ca:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:39:35:DB:E9:95:CA:1B:95:00:07:7B:1F:89:D5:FB:CA:A2:B2:0D
X509v3 Authority Key Identifier:
keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:fb:3c:14:fc:78:e3:02:32:a3:7e:db:1f:a6:a2:06:b9:b8:
34:e8:68:ef:8e:05:b1:76:a3:87:43:43:40:c2:4e:6f:85:c0:
36:8f:e3:f9:ff:6b:52:a0:6d:7c:be:02:11:89:24:03:c8:65:
ba:b6:f2:36:b9:07:b3:a1:1a:3a:a0:79:2b:41:c6:9e:8a:ad:
b9:77:ee:7d:d6:6f:7a:90:26:8a:65:4f:53:24:a3:2e:11:ff:
d1:8c:5f:70:7e:5c:5f:cf:99:35:83:58:7b:e8:65:5c:71:4f:
c6:39:b5:ac:fb:50:33:fe:af:db:4f:25:5b:b5:5d:9d:4a:20:
62:2b:dd:1f:d3:94:9f:07:b5:d3:20:c7:c6:26:ec:39:7f:2b:
c9:52:cc:f2:ec:4d:ae:53:54:ea:35:28:63:41:b5:08:dc:ac:
4c:3f:e9:e5:21:ee:8e:c4:7b:93:4b:17:68:5e:68:23:6b:1f:
09:c3:71:eb:4a:e8:e8:8a:ad:dd:77:c1:74:ce:98:66:a6:23:
cd:b4:43:6c:e7:7a:52:61:7a:8f:48:5a:f5:40:97:82:5e:20:
70:32:48:5a:97:da:c8:4f:23:0c:a1:63:31:aa:56:9d:6c:91:
7c:29:1b:81:7a:d7:5e:91:3a:f5:4a:b9:8d:12:57:da:f6:48:
67:3c:dc:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:11:25 2025 by rpki-client