Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
File: VvciqIWr65qv-zLadk7wkbWyA0A.mft (raw, json)
Hash identifier: x+XQnQTI0FdRgG2QVCUSxI+8RUhn5UEUroCZlViwnss=
Subject key identifier: B4:D5:E6:C8:3B:7C:57:B0:06:55:5C:D0:DB:A0:AE:35:5B:5D:34:F3
Authority key identifier: 56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
Certificate issuer: /CN=56f722a885abeb9aaffb32da764ef091b5b20340
Certificate serial: 019659B93603EE106B497E44A1AFEC7D532B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
Manifest number: 0822
Signing time: Mon 21 Apr 2025 19:00:32 +0000
Manifest this update: Mon 21 Apr 2025 19:00:32 +0000
Manifest next update: Tue 22 Apr 2025 19:00:32 +0000
Files and hashes: 1: VvciqIWr65qv-zLadk7wkbWyA0A.crl (hash: JgrzWosRBPVrnxjC2+eVta1jzeSdKYgE14h/xK7Lb0I=)
2: vpimmj50rM3b693dSW6yAkLWvvA.roa (hash: 5VKPzqmzdczcoLOJtvbaVQfmAQ+1p8lObAjIuI3KfsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:b9:36:03:ee:10:6b:49:7e:44:a1:af:ec:7d:53:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56f722a885abeb9aaffb32da764ef091b5b20340
Validity
Not Before: Apr 21 19:00:32 2025 GMT
Not After : Apr 22 19:00:32 2025 GMT
Subject: CN=b4d5e6c83b7c57b006555cd0dba0ae355b5d34f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:39:0d:7a:b8:2e:5f:1c:a1:ff:c4:36:37:8c:
15:bd:c2:f0:fd:a7:5a:a7:62:5f:b8:14:a4:9d:76:
cd:9f:7c:da:c9:45:70:52:52:20:df:f0:d7:80:94:
f0:9b:12:55:e9:84:4f:f8:7b:ea:18:1c:9b:48:e6:
f2:e4:04:f8:d3:7b:d0:bd:2e:33:1c:d8:48:47:03:
80:5d:79:8e:5d:8c:5c:00:71:ba:f8:51:eb:7e:c8:
8b:28:44:62:d0:0f:15:4d:b9:f4:93:e9:8e:d8:49:
b3:bd:5b:6e:70:35:12:66:79:5e:72:df:8e:f1:c1:
9b:02:fd:70:f9:b7:e1:6b:e6:df:ad:c6:84:a1:88:
05:da:7b:a9:5b:63:4e:fb:b5:3e:f0:35:30:75:d8:
69:19:3a:d0:fe:57:8a:76:ae:ba:59:31:ca:a1:0e:
94:e5:14:a8:38:8e:6d:3e:14:e7:07:7a:41:08:eb:
6a:f4:b2:a5:b4:fb:f9:3c:6a:20:c6:38:58:c8:c8:
84:38:2d:7b:3c:e5:4e:86:5a:15:17:b9:9f:08:cc:
b5:21:20:bd:37:a5:59:68:fd:ac:55:30:3d:b9:b7:
4b:c9:49:9b:89:18:f3:1e:c9:61:ee:80:d6:54:76:
b9:dd:59:42:13:fb:ca:e9:e7:04:e9:ca:ef:c5:e2:
71:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:D5:E6:C8:3B:7C:57:B0:06:55:5C:D0:DB:A0:AE:35:5B:5D:34:F3
X509v3 Authority Key Identifier:
keyid:56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:be:c4:7a:47:58:b3:27:78:68:e6:ba:29:cb:9b:fa:d1:03:
09:18:0b:2d:00:98:a1:fb:ad:b5:2a:77:30:48:34:26:20:b1:
ad:d3:66:a3:ce:f9:c5:07:2b:f4:87:61:bd:8b:fd:b0:ac:49:
7b:d4:dc:2e:d6:13:2b:75:59:a4:58:c2:83:8e:b6:2a:d4:cf:
de:ba:c6:e9:85:03:39:d8:b4:83:aa:3e:03:c6:1a:78:af:1f:
b5:34:08:dc:53:20:25:9b:c1:8a:f4:ac:a8:74:54:26:9c:21:
e8:a5:2f:f4:32:d1:ef:0e:31:c4:2c:3b:b5:50:b1:20:c9:6b:
67:12:79:1d:76:18:97:85:1d:e6:0d:bb:3e:58:0d:21:70:cb:
72:50:2d:83:2a:49:96:6b:fa:d2:62:21:89:0f:15:be:5e:c8:
d6:4c:15:69:6f:14:3d:06:af:72:e9:56:e5:4a:d0:33:33:67:
61:ad:f7:81:4e:37:48:bf:62:e7:43:2e:75:e3:13:7d:71:16:
e5:11:51:7b:6e:c0:5a:08:68:c7:7b:9c:da:e4:84:1a:c1:e2:
da:5e:a3:77:6b:a5:26:4d:9e:ca:7f:8c:a6:0d:07:e1:13:f3:
46:d9:0d:3a:84:ab:ab:f3:e3:c8:e3:a0:a7:87:b5:32:88:4f:
3c:3c:3a:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 00:40:06 2025 by rpki-client