Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
File: VvciqIWr65qv-zLadk7wkbWyA0A.mft (raw, json)
Hash identifier: JDJ59h5BCmNRlKEYaHtHdT3PbO5QMI2zhQ8pwZiib0E=
Subject key identifier: BE:84:C2:23:7A:0C:E1:6E:35:2E:CB:18:46:5C:30:CF:B5:7D:9C:4D
Authority key identifier: 56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
Certificate issuer: /CN=56f722a885abeb9aaffb32da764ef091b5b20340
Certificate serial: 0197605D7F60798FF88DA4FE68CE17640DF7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
Manifest number: 08AA
Signing time: Wed 11 Jun 2025 19:00:29 +0000
Manifest this update: Wed 11 Jun 2025 19:00:29 +0000
Manifest next update: Thu 12 Jun 2025 19:00:29 +0000
Files and hashes: 1: VvciqIWr65qv-zLadk7wkbWyA0A.crl (hash: bv7cHpm6ZgWsAK+9miqApxbIO8xWwe9QuvWcC54IuH0=)
2: vpimmj50rM3b693dSW6yAkLWvvA.roa (hash: 5VKPzqmzdczcoLOJtvbaVQfmAQ+1p8lObAjIuI3KfsM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 12 Jun 2025 15:40:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:60:5d:7f:60:79:8f:f8:8d:a4:fe:68:ce:17:64:0d:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56f722a885abeb9aaffb32da764ef091b5b20340
Validity
Not Before: Jun 11 19:00:29 2025 GMT
Not After : Jun 12 19:00:29 2025 GMT
Subject: CN=be84c2237a0ce16e352ecb18465c30cfb57d9c4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:75:bd:d5:6c:49:31:be:1b:b1:eb:93:95:bc:
38:c7:88:9c:2c:65:e0:27:58:e3:0a:ed:f4:82:3b:
6f:89:5d:54:a0:e9:13:35:32:13:c9:10:7c:7c:c7:
f2:43:9f:03:ae:5d:67:e0:f3:5b:6f:20:b2:61:c6:
04:10:3e:1a:90:2c:9d:8e:71:96:2d:70:f4:aa:87:
4e:2a:b4:c5:4d:d2:ba:b4:3a:ec:7c:55:f9:89:00:
6d:c5:9c:7b:ec:85:53:3b:e8:66:60:d6:05:28:b6:
70:49:6a:1b:15:3a:d8:56:4b:63:bd:8e:44:bd:af:
55:e8:a5:9d:e5:2e:21:63:57:86:f4:1f:ab:5e:22:
02:0b:92:80:5d:62:53:52:5b:f1:3f:55:76:4c:fd:
09:a3:5b:97:f9:06:55:12:a9:29:db:17:95:ef:6a:
de:b1:ed:e9:23:3a:5d:74:aa:cd:a5:e0:21:be:09:
bd:d8:e0:03:b7:39:73:07:c2:71:96:1f:81:d2:a5:
33:2a:73:23:a9:70:ff:bb:d9:dd:cd:45:e1:4d:54:
69:d0:30:56:b7:6a:ea:0e:78:ea:ec:04:59:af:f5:
d9:c6:bd:79:d1:26:f6:d6:93:c7:65:62:b9:24:e3:
a9:0b:62:33:bb:03:0c:9a:5b:b6:25:7f:3b:ec:48:
82:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:84:C2:23:7A:0C:E1:6E:35:2E:CB:18:46:5C:30:CF:B5:7D:9C:4D
X509v3 Authority Key Identifier:
keyid:56:F7:22:A8:85:AB:EB:9A:AF:FB:32:DA:76:4E:F0:91:B5:B2:03:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VvciqIWr65qv-zLadk7wkbWyA0A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8992b1-1600-4b92-99a5-8140c116f0c8/1/VvciqIWr65qv-zLadk7wkbWyA0A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d2:95:24:99:b6:b0:71:ef:a3:db:2e:25:cd:bb:d7:4a:db:01:
8b:b0:bd:ea:d1:39:a7:c0:e8:c3:cf:6b:da:3d:05:27:84:c4:
22:06:cf:6c:44:6a:2d:95:94:36:a7:65:c4:4d:a9:66:f5:e4:
dc:7b:6c:0b:8c:b7:ca:98:49:de:80:07:8a:9d:f2:d7:a6:50:
64:91:06:4e:53:89:7b:f2:61:fe:4f:9b:54:49:5c:ef:c1:4e:
aa:19:98:90:68:a0:c0:16:73:5d:33:7c:01:63:12:0d:13:59:
8e:da:3f:0a:e3:20:f5:80:3f:fb:de:83:27:85:0a:1f:f1:ce:
66:53:2f:64:0f:03:50:2c:cb:88:3c:df:9d:78:5b:ee:ce:e2:
b2:da:ad:7c:fb:8b:91:31:02:84:16:43:f3:fd:36:12:db:a0:
f9:32:db:8e:60:55:e2:a2:35:01:ce:22:65:eb:81:2b:a8:0f:
58:26:52:27:c4:36:dc:9e:8e:e7:5d:98:85:71:79:e0:8e:3a:
2d:96:f0:8e:39:9a:ca:64:0a:c8:6c:8f:31:b1:db:04:e6:ca:
6c:b4:18:7a:b1:79:b9:45:f3:38:3d:b0:8c:07:71:1c:ec:bf:
f2:bb:d6:e6:18:06:59:e9:15:60:e3:48:e5:17:3d:a9:11:0e:
b7:6d:3f:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 00:23:59 2025 by rpki-client