Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
File: vjcHM7jbYU2qdgoALCQEgCgwDi0.mft (raw, json)
Hash identifier: ec7ccsAh4R+wlkwGQF+0Z4SUJgqaYPjLs+IDtf7UwEc=
Subject key identifier: 28:2D:50:B1:78:8F:D6:F3:EE:DB:6A:66:19:6D:5A:47:E0:D5:1B:68
Authority key identifier: BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D
Certificate issuer: /CN=be370733b8db614daa760a002c24048028300e2d
Certificate serial: 0197553530C67393AE6892BD39A5AE78C270
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
Manifest number: 1582
Signing time: Mon 09 Jun 2025 15:00:38 +0000
Manifest this update: Mon 09 Jun 2025 15:00:38 +0000
Manifest next update: Tue 10 Jun 2025 15:00:38 +0000
Files and hashes: 1: paMGJN73rjp1fa_w9RA1xrwwx18.roa (hash: Z6fxiaAqnra9zk/dGdgt7claLY2U/7DrFceSHabOI5E=)
2: vjcHM7jbYU2qdgoALCQEgCgwDi0.crl (hash: 7AQJSuXMilZ7pyB+5Bb9t3ZG3zKrCgGKFdedWskypEA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:55:35:30:c6:73:93:ae:68:92:bd:39:a5:ae:78:c2:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be370733b8db614daa760a002c24048028300e2d
Validity
Not Before: Jun 9 15:00:38 2025 GMT
Not After : Jun 10 15:00:38 2025 GMT
Subject: CN=282d50b1788fd6f3eedb6a66196d5a47e0d51b68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:09:13:97:66:73:37:37:b6:36:94:56:ff:ef:
30:58:87:fc:20:ba:bb:ab:b7:dd:ed:a0:00:88:c0:
7c:4a:7c:40:82:78:9f:f2:11:2c:27:f1:78:cd:2b:
0c:0e:b9:17:36:30:00:9f:9a:76:01:9f:8e:8c:d4:
ca:bb:e6:74:9a:b0:94:2b:54:38:63:87:09:02:f3:
2e:a1:9a:cd:5d:e7:7c:4b:00:a8:05:d5:e9:4d:94:
d4:eb:18:5a:5b:50:05:f2:c1:07:ce:4a:ac:03:33:
09:8e:46:73:e6:70:39:ac:0b:4d:19:f5:15:df:f0:
67:54:f4:ac:3a:85:de:4e:ed:de:44:b7:b7:b7:a8:
54:84:c8:e4:aa:f1:ac:c1:8b:52:f7:2c:38:c2:36:
97:a0:45:d2:9a:d7:aa:d5:54:8d:d0:cc:75:5b:df:
d4:9b:6f:89:3b:ea:0f:77:55:c1:42:4e:48:0c:fb:
8f:ca:b4:16:22:e0:f5:d5:ae:c4:87:23:e3:62:90:
27:73:9b:d3:cc:6c:26:61:0c:ff:51:55:ee:35:c5:
56:0c:83:36:2c:5b:46:15:ee:c7:e4:aa:3c:46:9d:
06:e1:08:f4:85:bb:9b:90:01:b0:e9:19:8b:5c:db:
03:0d:54:1c:ec:be:94:f6:6f:da:ad:87:3c:1d:10:
3f:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:2D:50:B1:78:8F:D6:F3:EE:DB:6A:66:19:6D:5A:47:E0:D5:1B:68
X509v3 Authority Key Identifier:
keyid:BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:4f:c1:89:b7:16:2e:da:b1:02:ed:1d:b3:eb:b1:de:e8:92:
a9:ae:a3:da:c6:6c:a6:4a:60:f4:b1:f0:09:41:a1:42:a6:b3:
6d:eb:36:7c:bb:d8:ac:18:c2:08:49:37:cc:e1:b2:80:1b:e3:
b9:1e:3c:08:a9:36:3a:76:30:36:f9:d2:d6:d6:e1:c4:57:50:
81:a2:56:72:d5:b4:7b:78:04:f3:58:f1:82:4d:67:f6:d0:96:
80:2b:76:bf:fe:ec:46:9f:15:3f:b4:73:a1:c6:89:14:e7:49:
ab:c3:bf:61:c1:40:fb:94:91:65:07:a8:40:ef:3c:42:71:8d:
05:ca:fb:58:9d:2c:21:cd:33:88:7b:b2:fa:7d:56:41:08:d9:
b4:75:f9:2c:cc:dd:ed:3a:bd:58:1e:f3:f5:34:5b:5c:81:c1:
5a:9c:68:96:b0:7c:8d:09:b9:e1:38:59:2b:71:23:25:0f:18:
c9:6b:cd:e9:d0:77:67:5c:85:41:52:4b:28:9f:72:ce:0a:45:
81:ae:87:e5:bc:15:5c:5d:df:64:5b:ef:ac:9e:84:f6:ff:e5:
e1:54:a3:dc:85:3d:4a:6c:15:60:f0:1f:0c:03:1d:86:2a:df:
16:85:b7:1c:86:4e:fe:78:c2:95:60:00:8a:c0:19:3e:6d:23:
f0:6b:22:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 01:13:32 2025 by rpki-client