Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: yQcBe8aIVjaZlV5a/2DBFM4E+BpbuKG7ya8IDVioE/Q=
Subject key identifier: 8F:06:D6:FA:1F:C4:AC:04:B0:2D:72:BC:64:CE:B5:69:CA:AB:EE:96
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 01958C2976CBA93D591DCA12B385D57E2E83
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 07C0
Signing time: Wed 12 Mar 2025 21:01:22 +0000
Manifest this update: Wed 12 Mar 2025 21:01:22 +0000
Manifest next update: Thu 13 Mar 2025 21:01:22 +0000
Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: CrkbfcguKYaNFt6c2Sh4dX4N3MG0E0Hco0Vnr9T+u1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:76:cb:a9:3d:59:1d:ca:12:b3:85:d5:7e:2e:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: Mar 12 21:01:22 2025 GMT
Not After : Mar 13 21:01:22 2025 GMT
Subject: CN=8f06d6fa1fc4ac04b02d72bc64ceb569caabee96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:5d:b5:a8:ff:37:30:fe:81:e8:04:7e:36:7c:
7a:6f:f3:fa:5e:15:83:00:2f:d1:57:fd:08:ff:cf:
43:95:62:a8:cd:01:88:e9:61:09:5d:cb:db:4c:ec:
79:02:6c:9d:a7:20:d8:ad:c4:e3:ba:68:8d:fb:13:
55:89:01:37:ce:e1:73:b7:a5:d5:3e:c0:7a:a5:83:
5d:6e:05:1e:a4:e0:2f:a2:a5:04:17:91:12:e1:d5:
4c:5c:ba:ab:8f:53:09:f0:9f:72:67:42:78:4d:68:
7c:c2:fe:ed:02:bd:8d:67:5b:5d:21:ff:a7:6f:2e:
b7:1a:5d:e1:24:4d:10:a4:cd:03:df:d6:ec:73:9c:
bf:f8:bd:6f:11:71:a1:63:b9:99:88:29:32:64:03:
c6:ed:43:93:a0:a5:ba:d0:fb:4a:b0:7c:f2:94:86:
a2:e5:50:46:15:1f:70:9a:6f:79:eb:f5:cb:ee:bf:
21:56:95:a2:6c:37:d9:71:c1:1e:98:15:30:0a:73:
ad:e2:7a:54:bd:f0:66:48:6d:d2:b4:8c:04:40:30:
5c:c3:17:38:5c:2a:6f:ba:38:77:37:b8:70:a6:c1:
1e:35:8a:e3:a9:3a:4a:82:a5:52:0e:67:56:3c:64:
10:0b:d9:fc:9c:c2:0d:7c:05:4d:df:79:13:0e:ff:
20:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:06:D6:FA:1F:C4:AC:04:B0:2D:72:BC:64:CE:B5:69:CA:AB:EE:96
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:bb:58:64:61:c3:d9:b3:cb:e5:d2:92:45:63:ed:f0:4f:f1:
5d:b9:5f:bb:3a:05:26:e0:05:e2:45:6f:99:d4:44:89:a0:87:
57:7d:3b:b5:c5:8d:85:38:1a:a7:fe:1e:a0:d6:d0:c7:e3:53:
cc:4f:1a:79:7f:0a:86:40:4d:0b:05:67:6c:2d:33:2f:e6:18:
fa:0a:ad:97:c1:f1:13:c9:b1:9b:cc:8d:c5:4b:c7:c0:56:fa:
b7:87:0c:0c:d5:6b:c4:10:d6:70:61:98:c7:ef:45:5f:f2:d6:
ca:81:ac:56:70:b1:93:35:0d:6c:c5:50:ba:db:a3:13:85:c2:
2d:8c:2a:45:79:44:33:84:95:f6:55:86:76:17:08:ae:f2:e3:
f4:01:28:69:82:d6:23:8e:e2:6e:73:2e:e5:b3:41:9c:a8:39:
f4:a7:a2:5a:1e:4f:6c:13:90:78:c7:6f:5e:5a:53:ab:6c:9c:
c0:07:62:ac:d8:fa:8b:a0:4b:db:b5:48:68:41:d5:91:46:b5:
bb:22:c7:ab:b8:c8:57:23:bd:d6:9d:1d:82:2d:c2:a9:0f:ba:
b5:b2:b4:b8:c0:59:d8:e7:97:3f:45:2e:44:bf:3e:aa:72:60:
af:b1:12:91:e8:6e:4b:d9:1f:fb:cc:07:f2:8e:09:11:9a:8b:
7e:68:fc:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:25:10 2025 by rpki-client