Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
File: VXe0uHq4aspXflbjjVuKWBPMzD0.mft (raw, json)
Hash identifier: HsYoXvthD2rUexkpWIYBnr7JNSWmCHUybM4OOAMnVbU=
Subject key identifier: 11:8E:1A:AE:83:E6:C6:B3:2A:66:DB:E2:95:91:D1:B0:7E:ED:43:3F
Authority key identifier: 55:77:B4:B8:7A:B8:6A:CA:57:7E:56:E3:8D:5B:8A:58:13:CC:CC:3D
Certificate issuer: /CN=5577b4b87ab86aca577e56e38d5b8a5813cccc3d
Certificate serial: 019658A6460F636008545D29680862A02726
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
Manifest number: 1032
Signing time: Mon 21 Apr 2025 14:00:13 +0000
Manifest this update: Mon 21 Apr 2025 14:00:13 +0000
Manifest next update: Tue 22 Apr 2025 14:00:13 +0000
Files and hashes: 1: P9bs-w5DkWpu1aBuTV3PHAzvH6Q.roa (hash: oAepJ4+j0gmtz7XxqoB+yGPsz6tmKuFLhq6h9fcVyTY=)
2: VXe0uHq4aspXflbjjVuKWBPMzD0.crl (hash: FQXzYGTsZzPmiR1GNmXfb4OWvHnA8Z4aUVupCkPOWws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:a6:46:0f:63:60:08:54:5d:29:68:08:62:a0:27:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5577b4b87ab86aca577e56e38d5b8a5813cccc3d
Validity
Not Before: Apr 21 14:00:13 2025 GMT
Not After : Apr 22 14:00:13 2025 GMT
Subject: CN=118e1aae83e6c6b32a66dbe29591d1b07eed433f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:81:29:62:2a:94:e9:7e:88:00:32:99:8c:74:
79:00:67:6e:15:2c:5f:8e:1b:16:1c:a9:75:7a:c0:
07:f6:34:8b:7b:cb:fd:4d:2a:94:e8:5a:ea:3c:f7:
91:26:ef:c3:85:55:7f:26:5f:ba:ca:36:fd:a6:88:
2e:b3:c4:e3:e3:40:5b:4f:30:34:6e:b4:bc:98:c8:
5a:52:f4:bb:fe:26:99:fd:d0:3c:78:66:92:63:20:
3b:ec:e6:d9:c3:1c:88:f9:91:2f:62:e9:aa:cf:fc:
c1:38:f5:f3:a4:18:ec:79:e1:be:22:b1:41:bd:a0:
20:07:8f:0f:19:9a:1a:fa:69:ad:b8:6e:70:0f:64:
a7:5e:70:4e:31:c2:85:45:27:69:9a:3a:b5:c4:43:
24:52:63:39:ae:dd:a6:a1:13:50:4a:57:b0:a0:4b:
b9:54:91:88:71:ec:c0:6d:04:e9:b4:e7:2d:f0:1b:
66:90:e5:c5:8a:bf:f0:9d:78:e3:65:4f:27:09:1d:
b0:8e:e9:b4:ec:d9:c7:ed:bc:c6:65:0c:fa:36:00:
56:92:5c:c9:97:8c:f8:ec:bd:fd:3d:39:1a:10:af:
b1:f1:c5:92:3c:67:22:f1:da:60:33:7a:3f:43:48:
2e:6f:07:d1:0a:f9:03:94:5d:96:3b:a2:a3:6b:5a:
44:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8E:1A:AE:83:E6:C6:B3:2A:66:DB:E2:95:91:D1:B0:7E:ED:43:3F
X509v3 Authority Key Identifier:
keyid:55:77:B4:B8:7A:B8:6A:CA:57:7E:56:E3:8D:5B:8A:58:13:CC:CC:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VXe0uHq4aspXflbjjVuKWBPMzD0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/d158e1-512b-4486-af87-b490a6d6be25/1/VXe0uHq4aspXflbjjVuKWBPMzD0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:4a:e9:75:13:76:e4:8e:6e:b1:22:0b:09:85:94:b8:6b:ca:
36:ec:70:c7:61:27:94:61:23:de:eb:45:a4:bc:a1:e8:ba:30:
52:84:56:fa:67:00:18:06:e2:62:8b:62:44:80:e3:0e:16:9d:
f2:8d:5c:87:2c:54:d0:e3:c6:88:ec:84:59:7d:2f:e7:b3:b0:
aa:7b:c6:82:ba:04:d7:5c:11:7c:ed:82:5f:0f:1e:94:e9:0b:
8a:8b:a5:65:72:63:e0:fc:e4:f0:fc:af:49:0e:fc:77:31:7f:
62:f4:fc:1b:87:84:b8:1c:c9:72:49:c1:5f:56:3b:aa:2b:55:
5e:36:e2:ec:e3:86:51:f3:d6:d0:2d:51:ca:7b:7e:54:88:40:
07:45:3d:a3:38:db:cc:32:e0:1e:69:19:53:cf:c2:22:6a:10:
fc:65:90:c1:c4:f5:a0:cc:4d:71:30:e2:95:71:5f:7f:53:5f:
aa:16:27:70:61:c3:be:f3:26:a9:76:5e:a9:07:61:45:dc:31:
5b:f8:12:ba:b4:ea:24:6d:f5:cf:69:e2:e3:38:f3:05:19:ec:
38:7b:4e:9a:e1:d5:a7:3e:dd:1c:cc:0a:cd:df:24:96:47:ed:
4e:a9:63:b3:56:9b:f2:98:87:58:dd:2e:19:43:56:4f:34:09:
04:f2:eb:b4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZYpkYPY2AIVF0paAhioCcmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1NzdiNGI4N2FiODZhY2E1NzdlNTZlMzhkNWI4YTU4MTNj
Y2NjM2QwHhcNMjUwNDIxMTQwMDEzWhcNMjUwNDIyMTQwMDEzWjAzMTEwLwYDVQQD
EygxMThlMWFhZTgzZTZjNmIzMmE2NmRiZTI5NTkxZDFiMDdlZWQ0MzNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv4EpYiqU6X6IADKZjHR5AGduFSxf
jhsWHKl1esAH9jSLe8v9TSqU6FrqPPeRJu/DhVV/Jl+6yjb9pogus8Tj40BbTzA0
brS8mMhaUvS7/iaZ/dA8eGaSYyA77ObZwxyI+ZEvYumqz/zBOPXzpBjseeG+IrFB
vaAgB48PGZoa+mmtuG5wD2SnXnBOMcKFRSdpmjq1xEMkUmM5rt2moRNQSlewoEu5
VJGIcezAbQTptOct8BtmkOXFir/wnXjjZU8nCR2wjum07NnH7bzGZQz6NgBWklzJ
l4z47L39PTkaEK+x8cWSPGci8dpgM3o/Q0gubwfRCvkDlF2WO6Kja1pEpQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBGOGq6D5sazKmbb4pWR0bB+7UM/MB8GA1UdIwQY
MBaAFFV3tLh6uGrKV35W441bilgTzMw9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVlhlMHVIcTRhc3BYZmxiampWdUtXQlBNekQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9kMTU4ZTEtNTEyYi00NDg2LWFmODct
YjQ5MGE2ZDZiZTI1LzEvVlhlMHVIcTRhc3BYZmxiampWdUtXQlBNekQwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9kMTU4ZTEtNTEyYi00NDg2LWFmODctYjQ5MGE2ZDZiZTI1
LzEvVlhlMHVIcTRhc3BYZmxiampWdUtXQlBNekQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgkrpdRN2
5I5usSILCYWUuGvKNuxwx2EnlGEj3utFpLyh6LowUoRW+mcAGAbiYotiRIDjDhad
8o1chyxU0OPGiOyEWX0v57OwqnvGgroE11wRfO2CXw8elOkLioulZXJj4Pzk8Pyv
SQ78dzF/YvT8G4eEuBzJcknBX1Y7qitVXjbi7OOGUfPW0C1Rynt+VIhAB0U9ozjb
zDLgHmkZU8/CImoQ/GWQwcT1oMxNcTDilXFff1NfqhYncGHDvvMmqXZeqQdhRdwx
W/gSurTqJG31z2ni4zjzBRnsOHtOmuHVpz7dHMwKzd8klkftTqljs1ab8piHWN0u
GUNWTzQJBPLrtA==
-----END CERTIFICATE-----
Generated at Mon Apr 21 20:07:48 2025 by rpki-client