Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
File: vSpaBrm0P86hiFQdMMbcNDCq85I.mft (raw, json)
Hash identifier: m+8SGr7fJ57ioGc0VKHluEbyU41IwCf8OqrH3LOX9Jo=
Subject key identifier: BE:9C:A2:8A:92:4A:DD:42:E3:1D:49:68:4E:94:FF:96:2F:03:74:0C
Authority key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
Certificate issuer: /CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Certificate serial: 01963EE68C028001F41A423EA09319B06168
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
Manifest number: 0FC7
Signing time: Wed 16 Apr 2025 14:00:18 +0000
Manifest this update: Wed 16 Apr 2025 14:00:18 +0000
Manifest next update: Thu 17 Apr 2025 14:00:18 +0000
Files and hashes: 1: dNOXWcyjBwUcXV5oIaNhLVVvSEU.roa (hash: 4Fft0psn/kwpjVEKZgVhKcfKwufV2SXuxRSuxxvAa+k=)
2: vSpaBrm0P86hiFQdMMbcNDCq85I.crl (hash: 8hXIYO+qnP+yrDZrVd+0myosbUXkswhsG39U/oht4kU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:e6:8c:02:80:01:f4:1a:42:3e:a0:93:19:b0:61:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Validity
Not Before: Apr 16 14:00:18 2025 GMT
Not After : Apr 17 14:00:18 2025 GMT
Subject: CN=be9ca28a924add42e31d49684e94ff962f03740c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:d0:12:b7:90:f9:93:bc:63:6e:d0:0a:fc:59:
a6:d4:4e:6a:d5:ff:8a:31:56:bb:fb:4f:b5:eb:f9:
da:51:6f:07:ac:a2:a8:3a:d0:6d:23:87:24:c0:8b:
87:7b:23:1a:47:fa:8d:b6:2b:c4:07:75:05:06:f0:
57:37:c7:1c:ea:12:5e:c4:85:d4:7e:ce:81:47:15:
89:56:76:74:e7:45:bd:2e:af:79:da:85:b6:21:c2:
fd:fb:ef:8a:c1:42:e4:2e:30:2d:76:b7:ac:8a:bb:
8d:16:60:06:98:03:49:be:ce:ab:61:f0:e7:d8:47:
ba:ae:d2:32:f5:9d:8f:3b:3e:eb:d5:1b:d4:58:8b:
af:c3:f0:9a:77:b3:18:bb:6d:c4:19:0e:fc:6f:ed:
d9:49:b3:61:8b:07:be:b6:60:fa:c7:c0:f5:1d:3c:
bc:a2:72:fd:a1:fc:ff:62:f3:14:4c:13:ed:37:dd:
39:d5:47:0e:2d:89:aa:3b:7f:d4:b6:6e:df:2d:ff:
95:c5:b1:4f:ea:72:9a:3c:1b:bc:82:a6:24:c7:8d:
ea:a9:99:30:c1:39:80:0f:da:39:ff:1f:e5:21:96:
4a:f4:e4:f4:de:8b:3a:23:59:bd:64:cd:63:ee:88:
b1:40:8e:f2:af:e9:a1:36:63:67:bf:00:80:09:6d:
a6:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:9C:A2:8A:92:4A:DD:42:E3:1D:49:68:4E:94:FF:96:2F:03:74:0C
X509v3 Authority Key Identifier:
keyid:BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:3d:ad:b4:3c:2c:9e:26:7d:01:00:0b:67:35:97:92:a3:b2:
48:87:57:e3:29:25:dd:ea:0a:14:ee:ec:52:57:5e:2b:be:9c:
4b:e5:0e:a6:d8:70:d9:44:cf:b6:2d:cd:b4:54:87:07:4d:53:
84:cb:44:0f:ff:2c:03:98:4a:bd:21:74:99:ab:28:f4:68:71:
b7:27:ef:41:c6:fe:63:a2:47:52:b8:6e:1b:86:2e:be:fb:fa:
75:51:3e:3d:88:ed:a7:a3:88:37:8f:c4:b8:d7:c3:7e:fe:16:
79:22:16:b8:c8:cb:bf:00:86:5f:a8:ee:07:07:2e:df:13:1e:
8a:71:59:b8:a9:60:5e:67:85:25:5c:cc:9d:30:58:fe:37:db:
3e:7f:65:b1:a9:d6:e9:5d:8b:c8:3d:93:82:d2:b3:e4:c9:eb:
85:c2:03:bb:d8:dc:a7:e3:4d:e9:c4:10:c4:21:dc:bc:60:14:
b5:52:fc:34:ff:bf:f5:f8:4d:5c:0e:48:fc:da:7d:a8:f9:ab:
4c:b2:a2:a7:74:71:15:f4:ca:dd:28:29:3b:d4:46:cb:49:7c:
5a:58:58:68:c6:44:48:72:e5:05:24:ba:6c:6a:15:af:6a:13:
f0:f2:08:95:f3:e2:7c:db:31:9c:06:c6:21:d1:2e:42:a0:b3:
e1:76:8a:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 02:13:34 2025 by rpki-client