Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
File: vSpaBrm0P86hiFQdMMbcNDCq85I.mft (raw, json)
Hash identifier: d2yXHmVILe6zlpE+IkvpppkjrCFmqdVg1MTqLQ8JZmI=
Subject key identifier: 57:17:F2:B0:6D:E6:36:A1:CC:36:FD:D5:1B:BD:0B:65:0C:51:19:8C
Authority key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
Certificate issuer: /CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Certificate serial: 019749685AD80BFED71482DAE46F5029B78F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
Manifest number: 1051
Signing time: Sat 07 Jun 2025 08:01:04 +0000
Manifest this update: Sat 07 Jun 2025 08:01:04 +0000
Manifest next update: Sun 08 Jun 2025 08:01:04 +0000
Files and hashes: 1: dNOXWcyjBwUcXV5oIaNhLVVvSEU.roa (hash: 4Fft0psn/kwpjVEKZgVhKcfKwufV2SXuxRSuxxvAa+k=)
2: vSpaBrm0P86hiFQdMMbcNDCq85I.crl (hash: xL8gDhZJHXWKkOHunajqhid6J1XEM4j95CuT8KuRewo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:68:5a:d8:0b:fe:d7:14:82:da:e4:6f:50:29:b7:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392
Validity
Not Before: Jun 7 08:01:04 2025 GMT
Not After : Jun 8 08:01:04 2025 GMT
Subject: CN=5717f2b06de636a1cc36fdd51bbd0b650c51198c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0e:dd:30:29:37:37:23:ce:34:cc:e4:1b:be:
c4:0f:8f:bf:4f:b8:79:70:6e:04:16:23:ab:58:e0:
55:46:b4:00:22:12:35:5e:45:04:68:22:32:cb:44:
6a:9a:95:af:f4:58:1f:d1:d1:94:0d:d9:e7:88:c0:
8e:43:09:60:ab:dc:09:80:50:db:51:01:ac:e7:3a:
00:e5:83:85:74:31:fe:6b:a0:48:a8:6b:23:e7:c6:
d7:89:f6:62:e9:f8:08:02:6f:e5:1d:81:71:c9:56:
8b:31:34:66:cc:8b:28:4c:9a:a2:f0:e3:10:19:71:
5f:b6:08:a0:c2:b8:c8:41:2e:03:7d:e9:7a:67:f1:
a8:69:51:3e:1c:88:9b:f7:5f:34:82:0c:7b:9e:c7:
1b:b6:32:e0:78:18:f2:39:26:6c:69:69:9b:67:e3:
17:16:2b:60:1e:ce:02:24:56:d5:db:a4:15:09:09:
ab:8f:b6:3c:11:9c:ea:d1:6c:01:da:b1:42:c9:92:
e5:67:3a:56:19:e0:47:85:c9:fe:7c:b7:07:3e:42:
e8:d4:01:7c:5b:14:18:bf:f0:99:73:df:f5:8b:d3:
37:30:d9:24:1d:b6:72:0e:40:58:6c:4d:21:b9:b2:
9d:e3:15:0f:76:73:35:d1:54:11:df:11:7c:5c:3f:
84:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:17:F2:B0:6D:E6:36:A1:CC:36:FD:D5:1B:BD:0B:65:0C:51:19:8C
X509v3 Authority Key Identifier:
keyid:BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:5a:0b:68:9b:18:fc:d8:d0:86:90:1d:67:c8:eb:82:fd:25:
96:5d:b5:84:fb:83:31:91:0c:87:f6:2e:e6:e6:ee:91:3d:b4:
96:ce:58:8a:d2:63:c1:53:b6:8c:a9:5e:b8:7b:c7:da:bd:4c:
4f:04:f2:b7:f6:fa:2e:a4:47:bc:57:df:e5:08:59:7b:b1:75:
dc:10:02:ed:59:8b:e3:a0:1d:65:96:56:ff:e0:8c:57:e8:da:
92:ca:11:fa:d7:d1:8f:29:3e:82:5e:e3:89:33:f9:68:4b:39:
e6:68:67:d7:5e:3a:81:13:1b:ae:1a:a7:c4:e2:cc:5b:e8:9c:
9f:11:63:d1:da:f2:5d:91:66:ec:16:7d:0d:31:f7:6c:1b:a5:
58:ad:e8:44:15:c1:62:1b:1b:07:f6:9f:d2:99:5f:05:88:33:
00:d6:08:47:96:22:4a:25:0c:05:af:fe:2f:29:49:3c:1d:c1:
1f:1d:84:a1:dc:6b:33:db:97:fd:bc:14:72:67:34:7c:24:c5:
e4:2c:c4:f3:56:f9:a2:e9:f5:a0:98:c5:4e:b2:df:bf:1f:a4:
f3:23:fb:30:ab:eb:7f:3d:fe:32:77:ba:33:0d:65:98:be:d7:
96:6c:25:cc:4e:e4:1c:75:fd:c5:39:4a:ac:12:6d:e4:fa:48:
69:9d:5e:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:07:32 2025 by rpki-client