Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
File: VvciqIWr65qv-zLadk7wkbWyA0A.mft (raw, json)
Hash identifier: sfK70L8doH/iCxGwYbswB2+HTiY+t+cKO+T23NOMJtg=
Subject key identifier: 78:86:36:A3:50:73:67:9F:54:E8:BB:73:1D:4F:10:B2:DB:44:C4:E2
Authority key identifier: 56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
Certificate issuer: /CN=56f722a885abeb9aaffb32da764ef091b5b20340
Certificate serial: 019758A40D14A0971B91B8F3E2A5660A86E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
Manifest number: 08A6
Signing time: Tue 10 Jun 2025 07:00:35 +0000
Manifest this update: Tue 10 Jun 2025 07:00:35 +0000
Manifest next update: Wed 11 Jun 2025 07:00:35 +0000
Files and hashes: 1: VvciqIWr65qv-zLadk7wkbWyA0A.crl (hash: ZZxzdqfG5OKEQXXbQQpVyl6HzgQnLkNrHiZgppk3Z2g=)
2: vpimmj50rM3b693dSW6yAkLWvvA.roa (hash: 5VKPzqmzdczcoLOJtvbaVQfmAQ+1p8lObAjIuI3KfsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 07:00:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:58:a4:0d:14:a0:97:1b:91:b8:f3:e2:a5:66:0a:86:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56f722a885abeb9aaffb32da764ef091b5b20340
Validity
Not Before: Jun 10 07:00:35 2025 GMT
Not After : Jun 11 07:00:35 2025 GMT
Subject: CN=788636a35073679f54e8bb731d4f10b2db44c4e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:fd:f1:fe:77:cf:da:a1:a4:71:21:91:47:36:
0d:b3:41:14:3f:36:b2:1f:9d:a2:94:a4:02:1a:4c:
9c:ba:d6:e4:11:bd:63:13:75:aa:65:91:e8:6b:b3:
05:67:99:ed:2a:75:c2:9a:8f:ef:b7:17:5c:ea:7e:
ab:a0:a2:05:21:6c:24:d7:ab:6c:eb:c8:74:34:79:
40:2f:af:13:9d:d9:fc:f4:25:09:c4:10:2e:a3:98:
ea:29:20:00:3e:ca:b0:a1:7e:52:ef:e7:e4:f7:3f:
e9:f2:d8:51:a4:77:37:9b:ec:db:af:a0:fe:a8:e5:
ea:b6:bf:44:d2:0d:9a:43:88:6d:1d:57:c4:0a:76:
fb:f9:8a:3f:38:c0:0f:4c:06:4e:0c:d6:af:bc:7a:
f9:c2:ce:e2:8b:79:ae:6d:9d:d6:68:af:41:f0:a4:
49:3d:10:c1:12:bb:2d:b5:cd:28:1a:af:7e:f2:5c:
91:e7:a6:cf:c3:d1:be:b5:fa:48:1b:a6:44:e3:b8:
d7:c2:7f:a1:25:94:80:26:83:f1:96:89:0f:54:4a:
7b:69:29:ed:5b:ee:ac:71:65:41:07:b4:8f:38:53:
52:77:5e:29:84:91:5d:9d:3a:f3:4c:43:15:04:17:
ed:46:1a:de:5b:f8:9b:f1:79:25:18:88:17:40:a6:
5f:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:86:36:A3:50:73:67:9F:54:E8:BB:73:1D:4F:10:B2:DB:44:C4:E2
X509v3 Authority Key Identifier:
keyid:56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:90:c2:71:9b:ff:42:f4:58:ff:ff:25:e3:9c:ca:46:84:fd:
c3:2a:a7:98:05:f1:b8:95:b1:59:27:c2:66:bd:ab:59:79:2d:
54:1b:22:b7:2a:4e:e7:ff:df:1a:42:1c:4b:3b:47:47:46:01:
b8:57:c8:96:ea:74:a4:ee:65:1b:3f:ed:09:13:7c:a3:2a:7d:
06:86:60:e8:a0:cf:fe:d2:dd:8a:f0:31:22:ca:97:89:0b:a4:
16:32:70:51:a2:a8:62:38:9c:50:73:5f:98:29:19:8a:c8:8e:
d6:8d:03:08:bc:d7:2d:56:85:b0:eb:87:34:b7:2c:15:f7:f3:
94:74:26:6d:65:8c:b3:78:0a:2e:f7:cd:74:19:6a:f5:58:6f:
d2:86:09:3a:23:b3:44:d5:70:e6:54:b8:c2:b7:54:02:69:2c:
15:03:da:66:d4:ac:ce:c4:a1:81:fe:92:c2:70:a3:00:e4:60:
89:a1:44:d3:9f:a4:cd:2a:fc:88:65:cc:74:c6:34:93:25:53:
e1:f3:5a:53:a9:4a:8f:e1:c6:16:d8:43:60:ae:24:1e:a4:3c:
f4:e4:57:b3:d4:40:68:5b:36:4e:c0:5f:9c:aa:61:40:95:9f:
82:ac:8d:05:28:5e:91:a8:b5:4e:ff:fa:8f:60:8c:73:0e:81:
ff:5a:27:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 16:13:05 2025 by rpki-client