Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
File: VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft (raw, json)
Hash identifier: unvPyYatjKIkTpapyVM/2xtDkCDjaUB2vXNAB3RfthA=
Subject key identifier: 9B:E2:83:8E:BB:41:04:1F:48:CC:91:2F:09:25:41:FA:02:31:BB:75
Authority key identifier: 55:9A:76:94:12:D2:D9:63:B4:91:EB:E3:1D:44:11:1D:CA:FC:CC:94
Certificate issuer: /CN=559a769412d2d963b491ebe31d44111dcafccc94
Certificate serial: 0197488D1BE64CCB8DFE8D2F76C937B51594
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
Manifest number: 045F
Signing time: Sat 07 Jun 2025 04:01:36 +0000
Manifest this update: Sat 07 Jun 2025 04:01:36 +0000
Manifest next update: Sun 08 Jun 2025 04:01:36 +0000
Files and hashes: 1: VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl (hash: uQA33FR1kQUWvoYb1EC24YnSRtAiKoq0OHigVExx1aQ=)
2: r1lquQ-XjIWjOg1LAkyGn6KMjo0.roa (hash: wZhXEM3Xxa5+Fz5oyJ1++QkvfDJcpfPRAfCqMyTq70w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 04:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:8d:1b:e6:4c:cb:8d:fe:8d:2f:76:c9:37:b5:15:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=559a769412d2d963b491ebe31d44111dcafccc94
Validity
Not Before: Jun 7 04:01:36 2025 GMT
Not After : Jun 8 04:01:36 2025 GMT
Subject: CN=9be2838ebb41041f48cc912f092541fa0231bb75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:7a:63:2b:73:f9:0d:9b:b8:97:73:8f:bd:1a:
54:7f:b3:9b:c2:69:ad:07:7a:9d:26:c0:db:6b:d1:
c9:7b:54:8a:88:ca:1c:23:f8:95:f7:6b:aa:03:3b:
ec:ab:7f:14:55:01:56:93:f8:07:d8:98:65:53:1e:
b5:1a:de:6e:0d:35:30:ae:1b:56:f1:fe:fd:44:e3:
66:28:00:12:4b:4e:ca:02:78:5c:26:5b:dd:52:3b:
2a:08:4d:8b:67:52:0c:62:8d:54:12:53:81:e0:1b:
16:50:f6:ef:7e:96:48:cf:1f:71:f2:19:b2:4a:26:
30:6e:a8:33:ca:4d:0f:37:8b:4c:ae:51:ee:89:41:
1c:5d:11:b6:31:1a:dd:ab:75:1a:eb:15:4e:ad:46:
07:33:69:2b:b5:45:cd:07:2e:ba:62:5d:dd:92:56:
5e:09:70:b0:37:55:3c:7b:14:aa:90:d7:7b:fd:2e:
f9:ff:fc:a3:ba:6c:45:f7:d3:5c:ce:b0:08:24:a7:
9f:4d:5e:b2:38:ef:20:3d:06:f9:cc:d5:e7:2a:0a:
0b:84:ff:e4:9d:e4:87:b2:1f:86:14:ed:0d:59:0f:
a3:ea:6e:b4:84:e8:ab:f6:3f:05:1b:31:92:10:0d:
82:2b:99:ec:f2:1a:bc:7d:21:b1:66:e5:d1:16:88:
6c:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:E2:83:8E:BB:41:04:1F:48:CC:91:2F:09:25:41:FA:02:31:BB:75
X509v3 Authority Key Identifier:
keyid:55:9A:76:94:12:D2:D9:63:B4:91:EB:E3:1D:44:11:1D:CA:FC:CC:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VZp2lBLS2WO0kevjHUQRHcr8zJQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/d45d3f-57ad-4ca1-b8df-7e253e6398e5/1/VZp2lBLS2WO0kevjHUQRHcr8zJQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:ed:f3:19:dd:d3:4f:d9:8a:7c:45:cb:bb:5e:97:78:0c:31:
07:5a:81:28:f1:9e:90:ac:fe:82:05:c8:14:27:35:34:0c:7f:
e6:5d:c8:a4:a7:22:1e:ae:db:53:9c:e0:29:00:14:c9:ef:5d:
47:e9:28:c4:af:67:7a:d9:e4:39:1c:49:6a:fe:56:c5:b7:e2:
18:e4:9f:9b:32:cb:51:de:ca:27:ae:f2:60:68:4d:68:8b:62:
cb:45:4f:b1:c8:1e:8c:74:7e:db:5c:9b:01:ee:8f:9e:79:5a:
4e:98:11:bb:63:0d:ec:6f:29:9e:4e:2a:ac:c4:b9:55:87:0d:
84:80:5b:d0:60:72:69:fe:d9:03:f1:5e:9e:2d:f9:14:f0:3f:
9f:11:1a:8b:ff:f5:18:de:eb:b2:24:98:34:06:07:cd:57:12:
00:65:d0:2d:9b:b2:a3:2e:32:27:4e:1a:8e:35:40:f0:02:b8:
91:36:40:3e:18:a5:39:ad:ab:25:eb:15:d4:44:fe:1e:2c:26:
cf:7e:e4:2e:84:e9:ed:e4:b2:63:22:4c:ba:84:ee:1f:a0:27:
3e:47:2e:e4:9e:7f:64:c2:ae:8a:c1:33:c3:19:b3:7e:e3:8e:
da:5e:f4:72:a4:a7:02:83:dd:e4:47:d4:05:12:16:c6:38:af:
b0:d1:ec:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIjRvmTMuN/o0vdsk3tRWUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU1OWE3Njk0MTJkMmQ5NjNiNDkxZWJlMzFkNDQxMTFkY2Fm
Y2NjOTQwHhcNMjUwNjA3MDQwMTM2WhcNMjUwNjA4MDQwMTM2WjAzMTEwLwYDVQQD
Eyg5YmUyODM4ZWJiNDEwNDFmNDhjYzkxMmYwOTI1NDFmYTAyMzFiYjc1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHpjK3P5DZu4l3OPvRpUf7Obwmmt
B3qdJsDba9HJe1SKiMocI/iV92uqAzvsq38UVQFWk/gH2JhlUx61Gt5uDTUwrhtW
8f79RONmKAASS07KAnhcJlvdUjsqCE2LZ1IMYo1UElOB4BsWUPbvfpZIzx9x8hmy
SiYwbqgzyk0PN4tMrlHuiUEcXRG2MRrdq3Ua6xVOrUYHM2krtUXNBy66Yl3dklZe
CXCwN1U8exSqkNd7/S75//yjumxF99NczrAIJKefTV6yOO8gPQb5zNXnKgoLhP/k
neSHsh+GFO0NWQ+j6m60hOir9j8FGzGSEA2CK5ns8hq8fSGxZuXRFohsyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJvig467QQQfSMyRLwklQfoCMbt1MB8GA1UdIwQY
MBaAFFWadpQS0tljtJHr4x1EER3K/MyUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVlpwMmxCTFMyV08wa2V2akhVUVJIY3I4ekpRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi9kNDVkM2YtNTdhZC00Y2ExLWI4ZGYt
N2UyNTNlNjM5OGU1LzEvVlpwMmxCTFMyV08wa2V2akhVUVJIY3I4ekpRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hNi9kNDVkM2YtNTdhZC00Y2ExLWI4ZGYtN2UyNTNlNjM5OGU1
LzEvVlpwMmxCTFMyV08wa2V2akhVUVJIY3I4ekpRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQe3zGd3T
T9mKfEXLu16XeAwxB1qBKPGekKz+ggXIFCc1NAx/5l3IpKciHq7bU5zgKQAUye9d
R+koxK9netnkORxJav5WxbfiGOSfmzLLUd7KJ67yYGhNaItiy0VPscgejHR+21yb
Ae6PnnlaTpgRu2MN7G8pnk4qrMS5VYcNhIBb0GByaf7ZA/Feni35FPA/nxEai//1
GN7rsiSYNAYHzVcSAGXQLZuyoy4yJ04ajjVA8AK4kTZAPhilOa2rJesV1ET+Hiwm
z37kLoTp7eSyYyJMuoTuH6AnPkcu5J5/ZMKuisEzwxmzfuOO2l70cqSnAoPd5EfU
BRIWxjivsNHsaw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:57:16 2025 by rpki-client