Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
File: vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft (raw, json)
Hash identifier: Eh1A3foyEnEK1VH+HMBZkayYZaxaj/cFtyMekOhV5HE=
Subject key identifier: B5:CE:FF:DB:89:0A:DB:3E:A1:E8:C8:DA:DE:F2:C9:F0:C7:79:5A:FE
Authority key identifier: BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
Certificate issuer: /CN=be5539afe925db80b415efb14c631b2d82c8cedd
Certificate serial: 01984A0A5057C6EF086B0A5E54D8599FC83C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
Manifest number: 01DE
Signing time: Sun 27 Jul 2025 04:00:46 +0000
Manifest this update: Sun 27 Jul 2025 04:00:46 +0000
Manifest next update: Mon 28 Jul 2025 04:00:46 +0000
Files and hashes: 1: vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl (hash: Xp5wuOXgvhgfbBWMLIl7XxHoScaisAG6JJNxoGDu6dk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4a:0a:50:57:c6:ef:08:6b:0a:5e:54:d8:59:9f:c8:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be5539afe925db80b415efb14c631b2d82c8cedd
Validity
Not Before: Jul 27 04:00:46 2025 GMT
Not After : Jul 28 04:00:46 2025 GMT
Subject: CN=b5ceffdb890adb3ea1e8c8dadef2c9f0c7795afe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:6f:a4:d7:4a:b2:d1:30:8b:ba:ac:72:b3:a5:
9f:78:a0:0d:6b:8d:9d:68:d7:48:60:d1:bc:a4:e4:
4c:50:fe:46:53:0a:17:4a:17:c3:b2:22:b7:93:e0:
85:63:09:45:56:9d:13:8b:59:97:4e:2f:da:88:7a:
7e:a8:9a:1a:5b:b0:3f:03:40:3a:96:71:07:a7:e4:
02:51:19:dc:65:5e:52:de:ee:73:08:db:ea:59:52:
d2:fc:13:59:08:67:6c:eb:54:cb:68:d2:30:5d:35:
3d:e8:28:39:13:17:6f:14:75:cd:b3:aa:84:e4:fc:
e2:a7:49:0f:94:40:3d:61:e3:8b:a6:25:eb:ce:9a:
06:1e:aa:07:1d:01:78:e4:50:d7:c6:b7:62:73:41:
03:5c:f4:e9:d6:c3:0b:45:4e:8b:b9:24:b7:40:57:
34:89:06:fa:b6:19:ea:06:b0:ea:15:ac:e3:a0:e5:
90:5f:4f:95:8b:f9:cb:f0:31:90:85:99:b3:eb:94:
40:80:88:2f:fa:42:0a:76:e3:11:7f:c6:9d:24:e2:
58:e1:f7:f1:01:a9:f5:72:3a:e2:87:0c:77:7e:4c:
4b:08:0a:89:8a:5a:4b:d8:5e:50:10:6d:a6:26:0e:
0b:34:94:57:be:68:c3:b0:bf:2c:0b:d4:9d:e4:ca:
71:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:CE:FF:DB:89:0A:DB:3E:A1:E8:C8:DA:DE:F2:C9:F0:C7:79:5A:FE
X509v3 Authority Key Identifier:
keyid:BE:55:39:AF:E9:25:DB:80:B4:15:EF:B1:4C:63:1B:2D:82:C8:CE:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vlU5r-kl24C0Fe-xTGMbLYLIzt0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/733dae-0021-44e5-92e5-2500f4efab69/1/vlU5r-kl24C0Fe-xTGMbLYLIzt0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:bd:aa:75:88:1e:22:87:ce:8c:08:d6:f4:f5:a8:5a:c2:7d:
cc:b2:56:3c:a3:64:97:fa:f0:d3:06:49:4c:c4:80:59:0c:4a:
80:6f:24:13:70:5f:e3:d2:aa:6f:42:6c:d9:11:a8:54:05:ae:
d0:f6:3a:dd:1b:91:f4:b5:02:a7:a5:e1:0b:bb:18:17:51:bd:
74:72:e7:af:0b:66:63:1f:b1:99:bc:69:18:e6:75:62:46:e4:
55:e4:5c:4f:d5:c7:30:6d:c1:d6:16:51:58:40:a2:ac:77:0c:
a7:1e:a0:ce:9f:4d:11:e3:42:16:a9:6a:87:ac:2a:35:57:31:
dc:71:45:2a:eb:4d:bc:f8:5a:9d:e3:e7:23:d9:64:cf:20:05:
62:bd:4d:ef:43:92:16:d2:b1:52:f6:4c:6c:42:84:ef:15:4c:
20:9f:91:bb:ba:d1:33:21:d4:c0:37:45:99:05:43:7f:ee:fe:
bd:9c:6a:f6:7b:48:41:db:57:2f:37:a9:1d:7e:c3:04:e5:63:
71:b0:06:63:3c:1d:16:b9:b4:3e:56:c3:07:b3:7e:ee:06:e3:
ce:75:92:3e:03:18:f6:19:18:a6:5e:bb:9e:c4:6c:fd:56:df:
38:34:c3:39:d6:ce:8c:c8:43:93:53:53:51:0d:80:e8:b4:3b:
64:03:e8:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:21:05 2025 by rpki-client