Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
File: vSpaBrm0P86hiFQdMMbcNDCq85I.mft (raw, json)
Hash identifier: NXPVsxvTSkuA/yGJNxLny4vjZ/DXqZ3la+Fe0+zalX8=
Subject key identifier: 5D:65:6B:E0:43:85:0F:71:27:FD:85:60:09:B3:3A:85:AC:CC:3F:A8
Authority key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
Certificate issuer: /CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Certificate serial: 01958F2A74BCB7EA2387347725A928026DDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
Manifest number: 0F6C
Signing time: Thu 13 Mar 2025 11:01:19 +0000
Manifest this update: Thu 13 Mar 2025 11:01:19 +0000
Manifest next update: Fri 14 Mar 2025 11:01:19 +0000
Files and hashes: 1: dNOXWcyjBwUcXV5oIaNhLVVvSEU.roa (hash: 4Fft0psn/kwpjVEKZgVhKcfKwufV2SXuxRSuxxvAa+k=)
2: vSpaBrm0P86hiFQdMMbcNDCq85I.crl (hash: hadWKsCfY+PwOkml7OccHQ/P+f3YY2UsQ5XIfgCEZs0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 14 Mar 2025 09:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8f:2a:74:bc:b7:ea:23:87:34:77:25:a9:28:02:6d:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Validity
Not Before: Mar 13 11:01:19 2025 GMT
Not After : Mar 14 11:01:19 2025 GMT
Subject: CN=5d656be043850f7127fd856009b33a85accc3fa8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:a8:47:5c:7b:e9:b4:51:42:de:3a:85:50:10:
9f:79:16:43:81:ba:55:ae:b9:d1:af:12:6a:bd:a4:
b4:19:f1:b7:df:04:ac:e1:26:ab:65:34:cc:4d:c5:
5a:57:a5:cd:5f:41:61:24:ac:ea:44:16:ad:e6:94:
37:91:1b:a5:29:a2:b8:37:f8:63:20:59:8a:c3:65:
05:73:a3:60:c9:e4:9c:ef:30:fc:f7:9e:3d:9b:dc:
27:df:27:ab:50:80:9d:50:5d:5e:54:91:a4:e0:2d:
a6:19:17:ab:7c:e7:df:30:93:af:cb:9f:2f:e8:d2:
b8:13:35:5e:a1:67:a5:b0:cf:ca:15:e8:be:f1:be:
23:d4:e3:d8:93:31:8a:2c:56:4c:fd:0c:7d:b5:81:
db:6d:65:22:7a:8c:7b:ea:86:33:8d:5b:b7:c3:1a:
40:b1:ec:f2:b3:3d:38:95:f3:d6:3b:f8:68:e3:1d:
88:ce:fa:2d:89:e8:d5:48:7e:51:d3:f2:8a:7b:17:
a3:72:24:10:7a:07:e2:98:33:72:4f:52:a6:5e:af:
f0:0d:7c:6a:0c:77:4a:3a:08:f3:ce:3b:52:b8:41:
2b:8f:90:89:fc:27:cd:a3:83:d5:03:e3:4b:77:51:
f1:76:65:e8:0a:e7:19:e6:f1:f2:9d:26:80:ca:b1:
30:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:65:6B:E0:43:85:0F:71:27:FD:85:60:09:B3:3A:85:AC:CC:3F:A8
X509v3 Authority Key Identifier:
keyid:BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:ce:ce:98:b5:cb:c8:6f:ca:2d:6d:1a:80:38:85:5c:50:44:
19:10:91:3b:f3:a4:ed:ae:18:d7:a1:dc:08:2d:93:c6:74:b6:
c8:99:91:ae:e2:08:c5:19:00:80:5b:db:c5:ad:16:0f:b7:26:
af:d4:72:26:78:bf:cb:fc:bf:1d:4c:c5:d4:8f:a8:32:e7:ce:
ea:bc:b1:42:75:22:83:56:bf:b4:21:83:f7:f4:db:10:1e:93:
94:09:cc:ac:0f:94:c4:10:53:53:77:59:33:7a:7c:b9:40:4f:
0e:12:3e:71:98:99:02:3d:29:3f:d7:97:ae:45:81:6c:ea:cf:
ff:56:eb:c9:b3:20:9c:63:3e:1e:98:17:e5:15:90:14:dc:d0:
08:27:05:3d:de:95:0f:19:5d:91:dc:1b:fc:1c:77:60:87:f2:
83:11:67:c8:ab:95:71:29:ee:16:67:bf:22:17:3f:d4:18:4b:
d4:1a:48:36:3a:9d:2f:cc:79:67:87:d5:88:97:5f:ae:9b:60:
bf:8b:aa:6d:bc:c6:a5:3f:16:88:84:46:5d:f4:94:97:aa:db:
13:01:40:94:ce:8b:47:11:9b:67:12:c0:ef:70:f3:30:2f:49:
b2:0f:7a:96:68:ec:c9:8b:12:3f:8a:1f:c8:5c:2b:74:ea:c8:
a0:ea:3f:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 20:35:54 2025 by rpki-client