Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
File: vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft (raw, json)
Hash identifier: bHiUI4Bv0h7sn9JZRs2p+bWtYbtkmRUixomyclTQAQQ=
Subject key identifier: 26:6A:B8:FF:4F:86:92:51:F5:6F:CF:A6:56:17:F9:A3:A7:70:66:46
Authority key identifier: BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
Certificate issuer: /CN=be722a99732c9c3cbc20b0a47292a823782603ac
Certificate serial: 01974CD68A6E728E587FC3F0E67A09F28F48
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
Manifest number: 150F
Signing time: Sun 08 Jun 2025 00:00:17 +0000
Manifest this update: Sun 08 Jun 2025 00:00:17 +0000
Manifest next update: Mon 09 Jun 2025 00:00:17 +0000
Files and hashes: 1: KEoMu2N6_T8O9ufaf0Y2clZ16n8.roa (hash: TtnWx5gcstoPtaU3BdfsPkG0EZi+JY/3eJmxv3P7PTM=)
2: vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl (hash: sYhnHEEfcbKC5idso3ojLcL4/Habo28mDj/5CM7h2Ks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d6:8a:6e:72:8e:58:7f:c3:f0:e6:7a:09:f2:8f:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be722a99732c9c3cbc20b0a47292a823782603ac
Validity
Not Before: Jun 8 00:00:17 2025 GMT
Not After : Jun 9 00:00:17 2025 GMT
Subject: CN=266ab8ff4f869251f56fcfa65617f9a3a7706646
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b1:37:35:7c:04:1e:c2:be:cc:34:0a:14:0f:
d8:ad:12:e3:00:bb:a7:3b:fb:d6:0a:70:76:5b:77:
0b:38:df:eb:e5:de:10:73:1e:a1:4f:8a:c3:01:9c:
d9:6f:15:1d:1b:ff:36:5c:a4:9d:08:2e:8b:92:48:
e8:9f:62:a1:1b:ac:20:af:77:7a:8c:9a:19:88:9c:
ee:58:b7:d3:08:d4:7b:74:65:85:a7:c1:02:88:4f:
0f:d8:4e:2b:5d:2f:d2:e9:a0:90:13:8f:59:41:df:
b4:1e:f5:1f:62:ee:02:3c:9e:18:ff:fa:d1:53:f3:
1e:ae:e0:82:3e:10:e3:71:cb:f0:a4:27:c6:e7:27:
50:80:15:dd:fc:d9:5b:7d:8a:6a:bc:4c:ae:d8:59:
f6:a2:b6:6b:ec:e0:a8:a0:76:51:19:05:46:c3:c3:
00:ed:78:82:3e:8d:09:fe:aa:3a:a0:1e:58:2c:e7:
81:10:54:e8:28:db:96:51:f2:66:a0:3e:ab:66:dc:
ed:fb:f1:b7:0b:04:41:45:ed:9b:a5:f1:7a:ea:70:
51:95:28:d6:77:7c:46:a7:56:5a:33:58:78:32:ba:
8f:07:d1:cf:cb:c3:5f:b1:50:5c:59:b1:ac:31:24:
55:06:11:94:21:e3:03:4b:3c:30:23:17:c3:5d:06:
57:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:6A:B8:FF:4F:86:92:51:F5:6F:CF:A6:56:17:F9:A3:A7:70:66:46
X509v3 Authority Key Identifier:
keyid:BE:72:2A:99:73:2C:9C:3C:BC:20:B0:A4:72:92:A8:23:78:26:03:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vnIqmXMsnDy8ILCkcpKoI3gmA6w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/041b9f-1a07-42e5-b487-29b97a1877fb/1/vnIqmXMsnDy8ILCkcpKoI3gmA6w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:4e:30:b4:96:4d:70:37:03:38:4f:a7:8e:ab:f2:7f:a8:b4:
da:92:2b:fd:42:0d:50:a3:3d:b1:1d:71:dc:6f:5c:fe:c9:9f:
7d:e2:1a:65:a5:ad:66:ff:09:1c:5f:0c:9c:9b:a4:b7:f5:a0:
7b:a2:f1:29:5b:fb:69:1c:a9:5b:0c:c7:3a:d9:76:1c:31:71:
e6:6e:80:ad:70:02:96:de:bd:03:c6:17:13:ae:a3:ce:30:0c:
ff:cc:23:9e:11:d1:65:74:f1:36:8b:59:79:71:ad:65:52:00:
3d:47:4d:0f:dd:62:53:c9:92:06:36:51:6e:60:ae:54:8b:0c:
f0:bd:91:b6:57:b2:ac:cc:e8:87:d3:dd:e8:a4:ac:c7:f4:16:
dd:3b:46:ed:24:32:59:98:c9:76:1f:c5:5d:8b:ae:c8:5d:cc:
69:26:48:0a:2e:77:3b:2c:79:0c:6c:00:32:44:e6:ac:16:6d:
00:7e:15:9c:52:0e:89:a8:8b:86:87:f3:53:e2:f1:3d:b3:cf:
0c:86:5e:ae:92:d7:03:c6:0c:29:bf:8e:26:77:d3:a4:d7:c3:
43:98:a1:a9:a1:56:43:94:40:d2:ea:ea:c2:01:5b:3e:9c:4e:
f9:a4:8f:5a:1f:da:50:14:85:fe:4a:ff:26:b6:5c:8b:81:f3:
0e:b8:88:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 08:22:09 2025 by rpki-client