Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
File: vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft (raw, json)
Hash identifier: 1pnkydwnnG0qu5VoepqWRl4IU87uBmsvo16ZOl4ecMU=
Subject key identifier: 7C:EF:2A:9A:E9:70:2A:FA:29:3E:2B:F2:F4:DE:C6:65:00:2D:58:C1
Authority key identifier: BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
Certificate issuer: /CN=be722a99732c9c3cbc20b0a47292a823782603ac
Certificate serial: 01963E7925BF0071FAC0421E48E54176AF2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
Manifest number: 1483
Signing time: Wed 16 Apr 2025 12:00:48 +0000
Manifest this update: Wed 16 Apr 2025 12:00:48 +0000
Manifest next update: Thu 17 Apr 2025 12:00:48 +0000
Files and hashes: 1: KEoMu2N6_T8O9ufaf0Y2clZ16n8.roa (hash: TtnWx5gcstoPtaU3BdfsPkG0EZi+JY/3eJmxv3P7PTM=)
2: vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl (hash: u7iEt2iL1vNh7Y84Ny0whVKFpIbjFz1vLtCOSRg3gis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 12:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:79:25:bf:00:71:fa:c0:42:1e:48:e5:41:76:af:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be722a99732c9c3cbc20b0a47292a823782603ac
Validity
Not Before: Apr 16 12:00:48 2025 GMT
Not After : Apr 17 12:00:48 2025 GMT
Subject: CN=7cef2a9ae9702afa293e2bf2f4dec665002d58c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5c:15:1d:38:73:c4:e0:9b:2f:11:5a:83:aa:
d8:25:53:b8:c2:ce:1b:74:6d:32:23:87:e2:d4:8b:
f3:55:ed:78:d6:ad:fc:91:52:ee:df:7b:51:21:e5:
86:d5:27:86:e7:44:5c:2e:56:33:e1:9e:af:0a:98:
b0:1e:a8:57:c2:b3:e2:b3:aa:f0:1d:b2:79:3e:81:
86:25:65:f2:49:cd:52:63:5b:94:59:27:7a:b3:89:
ca:02:9d:85:ac:29:0e:bf:e0:80:e1:76:84:71:d6:
81:db:33:f7:d0:b4:73:47:a4:4f:f5:e4:5b:1e:8f:
e9:7f:04:8a:77:d5:94:a4:80:d8:5f:7a:cd:ca:cd:
69:cb:68:ee:0e:af:9f:30:8b:76:2d:5d:5c:c0:30:
ce:bf:04:a7:39:45:6b:1b:54:c3:9d:1e:8d:04:4d:
57:75:3f:e2:84:89:c7:56:23:03:85:0c:3b:70:88:
50:c8:32:41:fb:fc:04:96:45:9d:05:13:b3:6e:2f:
74:f2:71:16:12:d7:32:d9:8c:81:7f:cb:3a:4a:fd:
25:0f:b7:7e:76:f7:19:6e:1c:d6:46:07:09:c3:cd:
fe:46:1f:e6:4c:62:73:fc:4b:31:44:40:4f:50:0c:
11:0a:d9:01:48:d1:08:9b:34:42:38:74:f6:4e:4d:
db:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:EF:2A:9A:E9:70:2A:FA:29:3E:2B:F2:F4:DE:C6:65:00:2D:58:C1
X509v3 Authority Key Identifier:
keyid:BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:1e:24:be:5e:29:0b:89:72:13:ca:47:b3:ff:57:fc:a3:c8:
ad:8c:66:4a:c3:88:45:e5:ee:2f:48:4a:a6:5e:4b:42:d4:cc:
b4:72:02:15:5e:a2:81:f8:76:16:81:93:fe:6c:8c:f5:6f:6f:
c0:6b:f2:18:c3:15:dd:39:51:9f:b1:63:45:41:d2:36:55:b1:
2e:71:cd:aa:f1:f7:65:4e:04:0d:ec:1e:08:78:00:6d:ec:51:
47:39:0a:af:15:2d:6f:63:44:25:67:d6:b2:23:5a:a3:38:53:
4e:80:11:08:36:8f:83:b9:27:d7:66:68:3f:a2:75:e2:44:36:
c3:d3:c9:34:9c:7a:a7:3f:55:d6:ef:bd:a5:2d:e5:ff:e3:e1:
1f:b4:40:02:72:79:b2:12:01:93:ea:fe:eb:74:80:ab:32:27:
90:05:74:89:a7:5a:6f:28:2f:80:a5:1b:63:d3:cb:fa:3c:ae:
c9:35:1c:24:96:ae:37:7e:57:78:ba:0a:e6:d7:86:94:04:ef:
03:1a:de:7d:5f:bd:5e:88:6a:8c:92:c6:78:3b:3c:93:90:b1:
1d:d1:3b:8a:d8:77:a4:2f:7d:49:35:06:5b:94:e3:e7:4d:53:
17:bc:3b:1c:35:a6:51:c4:55:f7:34:2a:08:31:cb:24:9b:be:
f5:e8:5b:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 21:59:46 2025 by rpki-client