Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
File: VXe0uHq4aspXflbjjVuKWBPMzD0.mft (raw, json)
Hash identifier: XmRsf+APOQos9M+BXw0VFTT9Lhlg6GjzfQ3tK41ZRrE=
Subject key identifier: 1A:00:D0:7F:FB:99:43:BB:A3:B1:03:7F:DC:21:9B:4F:23:A3:11:91
Authority key identifier: 55:77:B4:B8:7A:B8:6A:CA:57:7E:56:E3:8D:5B:8A:58:13:CC:CC:3D
Certificate issuer: /CN=5577b4b87ab86aca577e56e38d5b8a5813cccc3d
Certificate serial: 0197D8F563881991B13D01BDE1AC74EEAFAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
Manifest number: 10F9
Signing time: Sat 05 Jul 2025 05:00:49 +0000
Manifest this update: Sat 05 Jul 2025 05:00:49 +0000
Manifest next update: Sun 06 Jul 2025 05:00:49 +0000
Files and hashes: 1: P9bs-w5DkWpu1aBuTV3PHAzvH6Q.roa (hash: oAepJ4+j0gmtz7XxqoB+yGPsz6tmKuFLhq6h9fcVyTY=)
2: VXe0uHq4aspXflbjjVuKWBPMzD0.crl (hash: n+irJXHdbkcdbl3nZ46EjtthmKp+ghJhfmWBl1P9N3U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d8:f5:63:88:19:91:b1:3d:01:bd:e1:ac:74:ee:af:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5577b4b87ab86aca577e56e38d5b8a5813cccc3d
Validity
Not Before: Jul 5 05:00:49 2025 GMT
Not After : Jul 6 05:00:49 2025 GMT
Subject: CN=1a00d07ffb9943bba3b1037fdc219b4f23a31191
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:75:d9:79:00:1d:f1:83:c4:5f:cf:ec:8c:a9:
e4:e7:e7:2d:cc:e0:91:0d:20:67:d6:6b:ca:50:25:
95:59:8f:52:5c:b0:9c:fd:7a:67:58:8f:18:ba:68:
9e:95:01:f1:0e:95:12:4d:cf:43:15:36:bd:2d:04:
16:3c:3c:5f:5c:10:1b:7a:e7:09:73:06:ce:f0:53:
8d:b7:74:04:89:ea:d1:a6:16:97:99:12:58:fc:b2:
e3:84:15:b7:15:82:36:19:aa:1c:eb:1b:95:9b:e0:
c2:ec:e1:53:00:ed:32:39:4a:3c:34:fd:6f:a4:73:
e9:c7:c9:63:7d:a3:8f:79:07:a6:c6:78:8e:2d:7f:
dd:ed:f5:c4:20:12:94:e3:e0:33:e7:3d:93:ad:21:
8c:44:e0:b6:f4:20:88:89:77:6f:4b:c9:7a:a9:53:
f6:31:7f:08:28:17:ec:06:5b:88:9e:93:29:ad:5c:
87:c0:f2:af:5a:52:5b:ba:7a:bb:85:ee:3f:26:80:
40:bf:78:ba:38:f4:81:94:ab:9a:49:49:06:98:42:
1b:3c:00:27:52:35:c4:41:83:1d:70:e3:23:f8:db:
bf:17:5a:96:57:80:93:e9:b9:10:be:9f:27:d5:81:
62:0f:a0:d4:43:14:1c:6b:12:0f:ac:39:3e:10:de:
04:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:00:D0:7F:FB:99:43:BB:A3:B1:03:7F:DC:21:9B:4F:23:A3:11:91
X509v3 Authority Key Identifier:
keyid:55:77:B4:B8:7A:B8:6A:CA:57:7E:56:E3:8D:5B:8A:58:13:CC:CC:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:84:8f:95:57:76:9f:d6:e2:54:1d:b3:75:d4:13:72:5a:04:
88:e5:fc:d0:bb:2e:f4:e8:d8:5a:c1:14:f4:df:fb:20:d6:1b:
e1:ab:18:9f:6d:76:d0:ee:8e:61:d8:e5:cd:ba:14:bd:2d:19:
c3:aa:d1:79:14:4d:56:ee:63:66:b4:bf:3c:19:bc:f3:4d:ec:
b4:70:99:63:65:42:ba:2e:c5:64:fa:be:18:2e:47:ee:90:b9:
82:f4:8f:c3:d3:f6:80:30:d9:67:00:1f:90:ed:58:78:b5:c6:
73:52:fb:28:b1:c3:d3:9d:42:aa:2e:43:c1:3a:a4:5c:23:3c:
f7:69:f3:40:d4:b1:5d:e6:72:81:40:5e:ee:47:85:40:70:43:
42:aa:5e:5a:17:b8:a3:f5:d2:3d:16:f8:ad:68:c3:8f:2b:c6:
b4:70:2d:54:39:b8:b4:7d:12:ce:28:21:b4:b8:d1:0a:0e:b6:
65:b0:2c:f8:05:1f:6a:63:e2:90:b9:18:fc:60:77:82:3a:7a:
57:57:57:36:fb:d1:da:69:f2:58:21:41:88:d3:5a:c1:b9:41:
af:95:5e:97:4b:f7:5e:35:81:7e:1c:26:ea:14:b2:1a:8a:f6:
b2:a1:5f:87:41:af:bf:46:fd:e7:12:a4:4f:c4:7f:74:a2:fd:
66:41:06:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 06:47:41 2025 by rpki-client