Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
File: vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json)
Hash identifier: O0IrpLJA5eyQtS/UxD1rmjhQALF2sErjY431efP5Ww8=
Subject key identifier: AB:5E:17:D8:8E:11:51:87:94:D9:74:AD:D7:21:92:31:D6:70:29:50
Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Certificate serial: 019751C5FE82ADA73B9FC08F00310E7543B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
Manifest number: 1459
Signing time: Sun 08 Jun 2025 23:00:19 +0000
Manifest this update: Sun 08 Jun 2025 23:00:19 +0000
Manifest next update: Mon 09 Jun 2025 23:00:19 +0000
Files and hashes: 1: rEdLOhgJ5xMWvLwmv0wizm-cOW0.roa (hash: 5KEvRv7KqMLhpYGvFA0tU5bp6PFE1qlP3ELvibmeSX4=)
2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: bWpbyS4Wd/Dt/FMW7Cr5BRTQWSM/bz2ZbABVhTxAjxA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:c5:fe:82:ad:a7:3b:9f:c0:8f:00:31:0e:75:43:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58
Validity
Not Before: Jun 8 23:00:19 2025 GMT
Not After : Jun 9 23:00:19 2025 GMT
Subject: CN=ab5e17d88e11518794d974add7219231d6702950
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:8d:47:28:7d:56:0c:dc:a7:6c:7f:9a:37:54:
48:79:9b:68:d9:ba:74:3b:7d:a4:e2:8c:30:bc:cd:
ed:28:9a:b6:d5:0f:89:03:6b:1e:13:35:3b:51:44:
c9:85:30:a7:6e:5f:42:e6:87:e7:e5:ba:91:c0:a9:
c5:a8:c4:e3:68:df:c8:3c:ff:2c:7c:1c:eb:7b:81:
37:a1:86:6e:e5:77:43:de:b3:b6:24:51:4c:3a:9e:
34:e7:7f:f8:de:d2:cd:84:0f:55:0e:a6:73:3b:c7:
1f:88:48:a1:1a:a2:f2:df:1e:35:65:7b:60:0c:0e:
5b:c9:da:63:c1:1c:06:3c:2b:1a:3b:e8:9f:29:49:
0d:18:9f:4e:a6:c6:90:1f:0a:1d:89:ba:19:93:0e:
f1:89:44:17:ec:42:48:11:8e:37:4b:08:cf:40:c9:
0c:90:73:74:a1:31:f1:67:7f:da:d2:39:ed:95:47:
5a:9d:f6:d3:a5:c6:b7:a0:0d:5e:27:b8:2b:c5:8d:
8e:72:d9:ef:4a:60:8a:8e:93:e7:ca:32:00:59:27:
c7:03:96:93:b5:a0:8e:e0:c2:0c:76:53:cc:cd:c0:
94:f3:66:ea:fb:60:e4:48:07:d6:6e:8a:49:43:41:
bd:45:07:c5:55:2f:2c:18:5d:4c:54:99:c1:1a:71:
cd:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:5E:17:D8:8E:11:51:87:94:D9:74:AD:D7:21:92:31:D6:70:29:50
X509v3 Authority Key Identifier:
keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:0a:91:78:02:85:bd:45:15:b8:4e:b4:bb:63:18:04:32:2e:
2f:8b:1e:6f:b7:1a:aa:fc:08:ce:b6:b1:6b:3f:29:06:42:08:
26:aa:83:b6:61:3f:be:80:12:a0:88:57:c4:98:08:db:bb:ec:
fe:bc:b0:b3:5b:9d:da:9d:a4:07:b5:68:60:89:f0:e2:27:31:
7f:e1:3a:36:88:00:92:02:da:05:85:31:fc:c1:52:74:d9:14:
20:fe:18:70:d1:e8:14:68:9c:e6:04:ac:46:a0:07:b7:49:c7:
f3:f8:e6:b5:82:bd:b7:b2:1d:62:0d:6d:0e:d5:d8:5a:bd:1b:
aa:b9:b5:7b:49:6a:bf:68:ad:51:0c:96:07:93:55:c9:61:90:
94:ea:1c:86:ce:5c:a6:c9:79:66:75:e8:ac:59:81:68:b8:7f:
a9:1b:3f:79:1e:2e:2e:62:80:e1:9a:01:0c:e1:6f:3a:24:42:
8d:0d:18:9d:de:96:3e:46:65:1e:ca:2a:b1:11:b3:d9:22:bc:
4d:59:26:7a:4d:2d:9b:68:bd:ea:58:df:d9:79:ee:84:3a:56:
da:5b:47:60:d2:2a:8d:65:eb:12:a0:95:11:c9:56:fa:fe:ef:
b6:70:00:9a:50:6d:c9:69:e8:0b:04:fa:c4:5a:8a:9f:ff:62:
35:38:c5:6a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdRxf6Crac7n8CPADEOdUO3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJkZjk2MGIwZWU2YmM1ZDBmNmEwYzY0YTY5ZjJmODYyNTlm
ZGNkNTgwHhcNMjUwNjA4MjMwMDE5WhcNMjUwNjA5MjMwMDE5WjAzMTEwLwYDVQQD
EyhhYjVlMTdkODhlMTE1MTg3OTRkOTc0YWRkNzIxOTIzMWQ2NzAyOTUwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApY1HKH1WDNynbH+aN1RIeZto2bp0
O32k4owwvM3tKJq21Q+JA2seEzU7UUTJhTCnbl9C5ofn5bqRwKnFqMTjaN/IPP8s
fBzre4E3oYZu5XdD3rO2JFFMOp4053/43tLNhA9VDqZzO8cfiEihGqLy3x41ZXtg
DA5bydpjwRwGPCsaO+ifKUkNGJ9OpsaQHwodiboZkw7xiUQX7EJIEY43SwjPQMkM
kHN0oTHxZ3/a0jntlUdanfbTpca3oA1eJ7grxY2OctnvSmCKjpPnyjIAWSfHA5aT
taCO4MIMdlPMzcCU82bq+2DkSAfWbopJQ0G9RQfFVS8sGF1MVJnBGnHN6QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKteF9iOEVGHlNl0rdchkjHWcClQMB8GA1UdIwQY
MBaAFL35YLDua8XQ9qDGSmny+GJZ/c1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8zMzY4NGEtMTJjMi00MjNhLWJkM2Et
M2RkZmZkZWI5MjA3LzEvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Zi8zMzY4NGEtMTJjMi00MjNhLWJkM2EtM2RkZmZkZWI5MjA3
LzEvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADgqReAKF
vUUVuE60u2MYBDIuL4seb7caqvwIzraxaz8pBkIIJqqDtmE/voASoIhXxJgI27vs
/ryws1ud2p2kB7VoYInw4icxf+E6NogAkgLaBYUx/MFSdNkUIP4YcNHoFGic5gSs
RqAHt0nH8/jmtYK9t7IdYg1tDtXYWr0bqrm1e0lqv2itUQyWB5NVyWGQlOochs5c
psl5ZnXorFmBaLh/qRs/eR4uLmKA4ZoBDOFvOiRCjQ0Ynd6WPkZlHsoqsRGz2SK8
TVkmek0tm2i96ljf2XnuhDpW2ltHYNIqjWXrEqCVEclW+v7vtnAAmlBtyWnoCwT6
xFqKn/9iNTjFag==
-----END CERTIFICATE-----
Generated at Mon Jun 9 01:55:15 2025 by rpki-client