Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
File: VKzhXkXvtaAGDAZeJ06o46-wJes.mft (raw, json)
Hash identifier: 1njyJ9a8XqfBNsnpN35pdNqKQ8mYuwGEmUyfyezgzZY=
Subject key identifier: 17:4A:DE:72:70:DD:77:2A:C2:63:33:A5:CF:5B:C2:2C:E2:D7:9E:76
Authority key identifier: 54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
Certificate issuer: /CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Certificate serial: 01974EC596934E66E88CCC0447EFB88AD97C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
Manifest number: 157E
Signing time: Sun 08 Jun 2025 09:01:01 +0000
Manifest this update: Sun 08 Jun 2025 09:01:01 +0000
Manifest next update: Mon 09 Jun 2025 09:01:01 +0000
Files and hashes: 1: VKzhXkXvtaAGDAZeJ06o46-wJes.crl (hash: gqjF+Qb/Uo23Uqr0CbuHWZZvUub6iiUInXlmhucCJD0=)
2: agadNAkdL8gZSJjhebbq78b-GQQ.roa (hash: AWs3/nEl7KZJPMZNEu10pqsOCcoVUqcD7DcXZsQJMg8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:c5:96:93:4e:66:e8:8c:cc:04:47:ef:b8:8a:d9:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ace15e45efb5a0060c065e274ea8e3afb025eb
Validity
Not Before: Jun 8 09:01:01 2025 GMT
Not After : Jun 9 09:01:01 2025 GMT
Subject: CN=174ade7270dd772ac26333a5cf5bc22ce2d79e76
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:43:48:a7:d0:a1:2f:b0:86:c4:27:5b:44:9d:
f2:00:e2:6a:68:d7:cd:e4:e3:15:99:dd:1c:c6:d3:
33:a8:25:1b:56:3a:eb:fa:2f:27:d4:04:76:28:3a:
58:0b:15:43:e4:c6:cc:50:67:7e:99:2a:05:3b:ca:
ba:2a:5e:66:2a:6f:72:80:e8:9d:f8:d2:66:9e:1f:
08:93:9f:56:77:bb:d7:e5:08:9a:37:52:05:ff:e5:
33:c4:d2:03:52:6a:98:48:40:e6:19:5c:c0:e9:ce:
02:8f:f4:ad:a3:67:3c:b9:89:0c:11:38:7b:f0:68:
80:0f:19:79:57:68:f8:8e:d7:2a:b9:14:e8:47:ff:
a9:a3:26:a7:4e:3d:d2:b4:6b:47:1c:2d:43:5e:1a:
c9:9e:83:7d:56:fa:48:c9:62:22:14:8c:b2:c0:d8:
31:76:cf:b7:7d:5b:50:b1:2d:f7:6b:40:5b:46:1e:
fe:bd:7f:b5:96:f9:37:b3:d0:63:fa:3e:2e:94:87:
8e:62:75:70:67:62:ee:36:d9:82:38:6d:6f:79:eb:
bf:6b:0a:fc:55:3f:e3:e8:af:23:18:1c:40:1e:cc:
b3:8d:02:ae:ec:82:ff:81:67:85:2d:99:90:25:c9:
6f:1d:d1:3d:20:aa:73:1e:f2:95:2e:c7:93:df:b2:
1b:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:4A:DE:72:70:DD:77:2A:C2:63:33:A5:CF:5B:C2:2C:E2:D7:9E:76
X509v3 Authority Key Identifier:
keyid:54:AC:E1:5E:45:EF:B5:A0:06:0C:06:5E:27:4E:A8:E3:AF:B0:25:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKzhXkXvtaAGDAZeJ06o46-wJes.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/8efa45-92a8-4513-9f9a-ad2b61380be1/1/VKzhXkXvtaAGDAZeJ06o46-wJes.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:95:2d:91:02:cc:74:ab:3f:3f:7e:84:82:2f:ba:4a:05:84:
19:c3:0e:d9:bd:4a:0b:9c:1f:af:45:11:6f:dd:d1:f5:ab:1d:
5b:a9:83:db:81:54:99:bb:3e:24:9c:6d:16:e3:62:4f:84:e7:
03:1c:8e:54:68:8e:4b:24:5a:ed:d3:24:fc:56:2a:b5:6e:9b:
06:1e:4d:6e:62:99:b7:c6:3d:b3:c7:71:86:f4:82:30:74:78:
48:15:6d:a4:74:dc:22:e3:a3:f0:a7:ff:07:3d:09:64:49:99:
30:7a:55:85:9d:cf:34:ef:70:35:45:7d:84:f0:b1:0a:68:4c:
9f:35:86:e0:56:60:80:c2:76:64:b7:d4:60:9a:44:77:2b:3b:
61:c0:2b:4a:9a:05:60:4b:37:9a:76:38:3b:0d:e9:b9:99:dd:
72:35:52:2d:bd:f4:97:50:52:f4:60:8d:ce:75:f0:0b:6a:1a:
45:fb:ba:a1:bd:8d:e0:5e:f9:75:09:e8:f0:21:aa:40:aa:2d:
9c:72:aa:86:58:10:fa:49:d1:1f:ab:68:da:06:51:e2:8b:f4:
d3:fd:35:3f:95:26:b6:f5:47:d4:7d:41:24:a3:dc:dd:29:66:
4f:14:99:b3:db:a6:07:b2:54:fd:52:b9:2c:a9:3c:3a:19:d3:
27:c3:ec:aa
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdOxZaTTmbojMwER++4itl8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0YWNlMTVlNDVlZmI1YTAwNjBjMDY1ZTI3NGVhOGUzYWZi
MDI1ZWIwHhcNMjUwNjA4MDkwMTAxWhcNMjUwNjA5MDkwMTAxWjAzMTEwLwYDVQQD
EygxNzRhZGU3MjcwZGQ3NzJhYzI2MzMzYTVjZjViYzIyY2UyZDc5ZTc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlkNIp9ChL7CGxCdbRJ3yAOJqaNfN
5OMVmd0cxtMzqCUbVjrr+i8n1AR2KDpYCxVD5MbMUGd+mSoFO8q6Kl5mKm9ygOid
+NJmnh8Ik59Wd7vX5QiaN1IF/+UzxNIDUmqYSEDmGVzA6c4Cj/Sto2c8uYkMETh7
8GiADxl5V2j4jtcquRToR/+poyanTj3StGtHHC1DXhrJnoN9VvpIyWIiFIyywNgx
ds+3fVtQsS33a0BbRh7+vX+1lvk3s9Bj+j4ulIeOYnVwZ2LuNtmCOG1veeu/awr8
VT/j6K8jGBxAHsyzjQKu7IL/gWeFLZmQJclvHdE9IKpzHvKVLseT37IbPwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBdK3nJw3XcqwmMzpc9bwizi1552MB8GA1UdIwQY
MBaAFFSs4V5F77WgBgwGXidOqOOvsCXrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEt
YWQyYjYxMzgwYmUxLzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Ny84ZWZhNDUtOTJhOC00NTEzLTlmOWEtYWQyYjYxMzgwYmUx
LzEvVkt6aFhrWHZ0YUFHREFaZUowNm80Ni13SmVzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe5UtkQLM
dKs/P36Egi+6SgWEGcMO2b1KC5wfr0URb93R9asdW6mD24FUmbs+JJxtFuNiT4Tn
AxyOVGiOSyRa7dMk/FYqtW6bBh5NbmKZt8Y9s8dxhvSCMHR4SBVtpHTcIuOj8Kf/
Bz0JZEmZMHpVhZ3PNO9wNUV9hPCxCmhMnzWG4FZggMJ2ZLfUYJpEdys7YcArSpoF
YEs3mnY4Ow3puZndcjVSLb30l1BS9GCNznXwC2oaRfu6ob2N4F75dQno8CGqQKot
nHKqhlgQ+knRH6to2gZR4ov00/01P5UmtvVH1H1BJKPc3SlmTxSZs9umB7JU/VK5
LKk8OhnTJ8Psqg==
-----END CERTIFICATE-----
Generated at Sun Jun 8 13:29:48 2025 by rpki-client