Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
File: vaYQQ1QkhQlrDfQ1HMDal383cN0.mft (raw, json)
Hash identifier: DxN0IqI0p5IJgQN5a6tA95lL1DtEPYMcjO1DHiKL2Ug=
Subject key identifier: 89:92:47:E0:3A:76:22:EE:A5:46:BB:C8:69:C8:7B:E9:35:9D:72:A7
Authority key identifier: BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
Certificate issuer: /CN=bda61043542485096b0df4351cc0da977f3770dd
Certificate serial: 0196A208DABCD9D243D80F53D59D0825D191
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
Manifest number: 1528
Signing time: Mon 05 May 2025 20:00:11 +0000
Manifest this update: Mon 05 May 2025 20:00:11 +0000
Manifest next update: Tue 06 May 2025 20:00:11 +0000
Files and hashes: 1: RYZ_HUggvvOzHTuXBACbgajQpo0.roa (hash: Fp6s79hRrwq+bZ12gZrNnH0nQeo4puoviWIdP4EjMXQ=)
2: vaYQQ1QkhQlrDfQ1HMDal383cN0.crl (hash: G6bQMeGAlrjsnJYWKmrTuXV53uBUtFGmzDpptNlkR6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 18:19:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a2:08:da:bc:d9:d2:43:d8:0f:53:d5:9d:08:25:d1:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda61043542485096b0df4351cc0da977f3770dd
Validity
Not Before: May 5 20:00:11 2025 GMT
Not After : May 6 20:00:11 2025 GMT
Subject: CN=899247e03a7622eea546bbc869c87be9359d72a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:17:29:70:5a:0b:4f:d5:18:5b:dd:7c:33:e7:
d0:bd:c0:90:6d:26:ce:63:cb:15:0a:49:4b:98:a8:
3e:af:7e:4d:ba:7b:3a:5b:4a:d6:28:b3:19:71:06:
be:77:11:45:41:81:f4:55:31:4a:07:c8:44:48:2c:
75:6e:36:37:d4:0a:e6:fa:56:12:90:1d:69:be:0a:
e9:5e:10:9f:fb:56:ac:9e:6a:fd:b0:c7:21:5c:24:
23:ca:24:8c:d3:e3:03:f9:9d:b2:8b:89:b5:e3:6b:
60:74:94:ce:68:02:9a:3d:42:be:b8:03:08:65:0b:
e7:4f:f4:85:47:67:0f:e0:7d:ca:d2:24:ec:82:98:
6a:90:36:fd:ba:18:84:e5:77:38:a6:e9:88:86:5f:
bf:80:f9:59:10:19:da:94:81:66:89:92:ca:5b:32:
3b:92:09:36:5a:1f:1b:9c:96:aa:35:b9:5a:03:71:
5a:35:78:d7:87:11:35:b7:e8:31:89:6e:11:62:e6:
fe:3f:7c:0f:b4:df:76:bf:27:5e:d0:fb:8f:af:ab:
21:bd:d4:2d:e4:2b:64:fd:cc:60:35:ef:39:13:06:
d5:10:58:af:5b:a4:ff:95:27:a5:d7:f7:ab:fc:0e:
34:43:35:51:26:5c:58:19:f9:24:8b:db:45:25:5b:
31:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:92:47:E0:3A:76:22:EE:A5:46:BB:C8:69:C8:7B:E9:35:9D:72:A7
X509v3 Authority Key Identifier:
keyid:BD:A6:10:43:54:24:85:09:6B:0D:F4:35:1C:C0:DA:97:7F:37:70:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaYQQ1QkhQlrDfQ1HMDal383cN0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/196689-2db7-4e80-b92c-3a2ad88deade/1/vaYQQ1QkhQlrDfQ1HMDal383cN0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:d3:82:5c:43:bb:67:b3:e9:c4:17:19:32:ae:0f:ee:04:67:
68:e9:50:f7:4b:e6:4f:c2:5e:22:05:df:d2:cb:8a:a1:fb:72:
8f:1d:a6:96:dd:c5:95:38:25:b5:6c:cd:e9:fe:e2:e8:c1:60:
da:82:b7:1d:8b:18:6a:c5:54:b0:45:e4:4f:2a:10:84:09:ee:
8b:bb:4f:24:8c:73:6f:1b:7a:af:da:ee:67:2c:d2:3b:30:d8:
63:10:89:5f:7b:2b:f9:d2:a2:50:12:2d:5d:fb:16:34:60:76:
13:f1:f3:39:3b:71:61:e3:9f:28:aa:d7:4a:b5:2c:77:ed:1f:
0f:fb:d0:02:44:c1:27:36:c1:8c:67:7f:a9:09:e9:ae:44:52:
39:8e:6e:d0:ea:a5:72:5c:21:16:64:78:fa:34:28:86:5e:59:
2f:df:4c:a4:72:6a:6d:eb:14:72:a0:c4:96:d3:db:2f:5d:51:
0d:e9:87:ab:2e:f2:4c:96:d1:ae:48:93:74:59:d7:85:ef:0d:
86:cd:81:7b:14:b7:b9:11:b4:15:99:e7:fa:0e:ce:23:4a:f6:
3e:ff:46:d1:0d:56:7f:9e:0b:d2:05:3a:e3:c9:c7:83:f2:63:
45:35:c2:c9:74:46:6a:08:15:17:88:fa:c6:a1:50:03:ca:9e:
70:ce:60:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaiCNq82dJD2A9T1Z0IJdGRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkYTYxMDQzNTQyNDg1MDk2YjBkZjQzNTFjYzBkYTk3N2Yz
NzcwZGQwHhcNMjUwNTA1MjAwMDExWhcNMjUwNTA2MjAwMDExWjAzMTEwLwYDVQQD
Eyg4OTkyNDdlMDNhNzYyMmVlYTU0NmJiYzg2OWM4N2JlOTM1OWQ3MmE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4hcpcFoLT9UYW918M+fQvcCQbSbO
Y8sVCklLmKg+r35Nuns6W0rWKLMZcQa+dxFFQYH0VTFKB8hESCx1bjY31Arm+lYS
kB1pvgrpXhCf+1asnmr9sMchXCQjyiSM0+MD+Z2yi4m142tgdJTOaAKaPUK+uAMI
ZQvnT/SFR2cP4H3K0iTsgphqkDb9uhiE5Xc4pumIhl+/gPlZEBnalIFmiZLKWzI7
kgk2Wh8bnJaqNblaA3FaNXjXhxE1t+gxiW4RYub+P3wPtN92vyde0PuPr6shvdQt
5Ctk/cxgNe85EwbVEFivW6T/lSel1/er/A40QzVRJlxYGfkki9tFJVsxQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFImSR+A6diLupUa7yGnIe+k1nXKnMB8GA1UdIwQY
MBaAFL2mEENUJIUJaw30NRzA2pd/N3DdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS8xOTY2ODktMmRiNy00ZTgwLWI5MmMt
M2EyYWQ4OGRlYWRlLzEvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yZS8xOTY2ODktMmRiNy00ZTgwLWI5MmMtM2EyYWQ4OGRlYWRl
LzEvdmFZUVExUWtoUWxyRGZRMUhNRGFsMzgzY04wLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJdOCXEO7
Z7PpxBcZMq4P7gRnaOlQ90vmT8JeIgXf0suKoftyjx2mlt3FlTgltWzN6f7i6MFg
2oK3HYsYasVUsEXkTyoQhAnui7tPJIxzbxt6r9ruZyzSOzDYYxCJX3sr+dKiUBIt
XfsWNGB2E/HzOTtxYeOfKKrXSrUsd+0fD/vQAkTBJzbBjGd/qQnprkRSOY5u0Oql
clwhFmR4+jQohl5ZL99MpHJqbesUcqDEltPbL11RDemHqy7yTJbRrkiTdFnXhe8N
hs2BexS3uRG0FZnn+g7OI0r2Pv9G0Q1Wf54L0gU648nHg/JjRTXCyXRGaggVF4j6
xqFQA8qecM5gYA==
-----END CERTIFICATE-----
Generated at Tue May 6 01:21:03 2025 by rpki-client