Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
File: VKzhXkXvtaAGDAZeJ06o46-wJes.mft (raw, json)
Hash identifier: 9EVtr9m6UP8JVhFdgrS9WdJN3Qqavatxq0rWblBBUkU=
Subject key identifier: 72:9E:89:E3:C4:0C:1E:BF:80:48:79:11:01:D0:A0:CA:81:AA:5E:1B
Authority key identifier: 54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
Certificate issuer: /CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Certificate serial: 019655A53BD7FCB0D7B20E8FA2A777171E90
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
Manifest number: 14FD
Signing time: Mon 21 Apr 2025 00:00:14 +0000
Manifest this update: Mon 21 Apr 2025 00:00:14 +0000
Manifest next update: Tue 22 Apr 2025 00:00:14 +0000
Files and hashes: 1: VKzhXkXvtaAGDAZeJ06o46-wJes.crl (hash: 0XkMOtk4rfPrMkeKlj/yGkuQtamTeHTf2iPOgao0zTE=)
2: agadNAkdL8gZSJjhebbq78b-GQQ.roa (hash: AWs3/nEl7KZJPMZNEu10pqsOCcoVUqcD7DcXZsQJMg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 00:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:a5:3b:d7:fc:b0:d7:b2:0e:8f:a2:a7:77:17:1e:90
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Validity
Not Before: Apr 21 00:00:14 2025 GMT
Not After : Apr 22 00:00:14 2025 GMT
Subject: CN=729e89e3c40c1ebf8048791101d0a0ca81aa5e1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:b1:45:1c:5d:03:d1:7d:8c:5c:43:b3:98:c3:
0c:51:0c:99:c1:24:b7:ef:8c:a1:f0:1e:c6:2a:bc:
f5:ff:99:bd:fa:3c:0b:07:6b:e6:33:e6:f7:3f:de:
56:55:50:59:62:f4:5d:a3:d2:27:e8:39:da:b0:10:
a6:ca:71:5b:fc:03:bd:85:7a:f5:28:1e:19:31:79:
a8:b3:d9:7d:b4:c0:31:7a:e8:85:31:f7:18:0c:cf:
5f:09:68:fa:75:fd:e1:6a:77:3f:f4:e3:51:75:12:
2e:4b:9c:5d:ac:6d:a3:21:ab:86:40:ac:ac:9e:ca:
85:4a:5e:ec:28:91:08:eb:fa:f7:38:a4:55:7d:f7:
89:15:cf:5b:84:bb:99:20:64:72:48:56:27:00:85:
35:26:44:91:67:70:4a:66:85:d0:03:8c:3b:f7:7b:
59:57:e9:29:d5:4c:7f:fa:eb:31:d4:4c:03:54:81:
fa:2c:10:8b:65:0a:77:3c:fc:a7:07:8c:6a:e0:1f:
8b:c4:1e:93:3e:e7:32:f4:81:0d:b7:7d:48:90:ff:
f0:fe:2a:d8:e7:d9:8e:b5:c2:a2:36:2a:28:aa:22:
11:be:0f:c2:e4:5b:a5:aa:59:8d:19:20:0b:dc:63:
e2:ef:68:fe:ae:12:26:88:2e:31:e1:45:c2:b5:54:
2f:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:9E:89:E3:C4:0C:1E:BF:80:48:79:11:01:D0:A0:CA:81:AA:5E:1B
X509v3 Authority Key Identifier:
keyid:54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:1e:bb:e9:6f:f1:44:1a:57:db:75:82:1b:bd:84:2f:5f:65:
56:72:8a:02:dc:81:1d:18:c9:56:a6:7b:2c:3e:ba:ff:98:9d:
a9:e2:98:02:46:43:fa:95:aa:3e:fc:49:5f:07:06:30:6b:04:
8e:d6:22:1a:1a:8a:b9:0c:69:27:62:c9:80:33:9a:97:2c:72:
aa:d7:ab:9a:ca:25:28:27:a6:45:0d:4f:e5:83:b7:41:06:d3:
a5:c8:f1:66:68:c6:9e:d1:a1:e6:7c:86:cc:2c:52:7b:f4:f0:
22:0b:f5:40:5a:75:70:d4:11:88:3a:ce:46:1e:f9:89:fa:4d:
a2:50:82:42:71:c4:d9:a5:f2:15:31:0a:63:09:70:ae:b6:50:
fe:5c:c9:9d:31:03:d4:97:e5:94:c2:94:5d:78:95:28:9a:93:
2f:52:43:bf:a1:26:a0:a6:20:d2:81:9b:5c:8a:87:c9:e6:a5:
47:0d:5c:4e:80:e6:e3:f8:e1:68:e0:48:0e:49:4b:c4:b7:c9:
67:94:50:9e:18:97:4b:03:04:88:2b:97:d6:99:cf:59:5d:cf:
25:95:4f:42:f2:06:b7:3f:b5:45:80:ea:74:b1:14:b8:6d:9b:
50:49:89:51:56:d8:fe:83:83:cc:0a:b2:9b:07:57:a3:78:9c:
25:43:49:12
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZVpTvX/LDXsg6Poqd3Fx6QMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0YWNlMTVlNDVlZmI1YTAwNjBjMDY1ZTI3NGVhOGUzYWZi
MDI1ZWIwHhcNMjUwNDIxMDAwMDE0WhcNMjUwNDIyMDAwMDE0WjAzMTEwLwYDVQQD
Eyg3MjllODllM2M0MGMxZWJmODA0ODc5MTEwMWQwYTBjYTgxYWE1ZTFiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LFFHF0D0X2MXEOzmMMMUQyZwSS3
74yh8B7GKrz1/5m9+jwLB2vmM+b3P95WVVBZYvRdo9In6DnasBCmynFb/AO9hXr1
KB4ZMXmos9l9tMAxeuiFMfcYDM9fCWj6df3hanc/9ONRdRIuS5xdrG2jIauGQKys
nsqFSl7sKJEI6/r3OKRVffeJFc9bhLuZIGRySFYnAIU1JkSRZ3BKZoXQA4w793tZ
V+kp1Ux/+usx1EwDVIH6LBCLZQp3PPynB4xq4B+LxB6TPucy9IENt31IkP/w/irY
59mOtcKiNiooqiIRvg/C5FulqlmNGSAL3GPi72j+rhImiC4x4UXCtVQvKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHKeiePEDB6/gEh5EQHQoMqBql4bMB8GA1UdIwQY
MBaAFFSs4V5F77WgBgwGXidOqOOvsCXrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEt
YWQyYjYxMzgwYmUxLzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEtYWQyYjYxMzgwYmUx
LzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcB676W/x
RBpX23WCG72EL19lVnKKAtyBHRjJVqZ7LD66/5idqeKYAkZD+pWqPvxJXwcGMGsE
jtYiGhqKuQxpJ2LJgDOalyxyqtermsolKCemRQ1P5YO3QQbTpcjxZmjGntGh5nyG
zCxSe/TwIgv1QFp1cNQRiDrORh75ifpNolCCQnHE2aXyFTEKYwlwrrZQ/lzJnTED
1JfllMKUXXiVKJqTL1JDv6EmoKYg0oGbXIqHyealRw1cToDm4/jhaOBIDklLxLfJ
Z5RQnhiXSwMEiCuX1pnPWV3PJZVPQvIGtz+1RYDqdLEUuG2bUEmJUVbY/oODzAqy
mwdXo3icJUNJEg==
-----END CERTIFICATE-----
Generated at Mon Apr 21 06:42:46 2025 by rpki-client