
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
File: vjcHM7jbYU2qdgoALCQEgCgwDi0.mft (raw, json)
Hash identifier: 7EUf8SledDcZEwY0jYoOY6pynaPtDrZqcbxRSrPyqW0=
Subject key identifier: 5A:85:82:10:53:AD:B9:C3:D2:A2:5C:5D:34:94:80:80:8F:70:A6:4F
Authority key identifier: BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D
Certificate issuer: /CN=be370733b8db614daa760a002c24048028300e2d
Certificate serial: 01976C61F3B3440034F583D367DBC512E37F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
Manifest number: 158E
Signing time: Sat 14 Jun 2025 03:00:48 +0000
Manifest this update: Sat 14 Jun 2025 03:00:48 +0000
Manifest next update: Sun 15 Jun 2025 03:00:48 +0000
Files and hashes: 1: paMGJN73rjp1fa_w9RA1xrwwx18.roa (hash: Z6fxiaAqnra9zk/dGdgt7claLY2U/7DrFceSHabOI5E=)
2: vjcHM7jbYU2qdgoALCQEgCgwDi0.crl (hash: sNQUmuYhzPsgqeTOUPKQ+N3pKuO8AO8XUrTZAra7zrw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 03:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:61:f3:b3:44:00:34:f5:83:d3:67:db:c5:12:e3:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be370733b8db614daa760a002c24048028300e2d
Validity
Not Before: Jun 14 03:00:48 2025 GMT
Not After : Jun 15 03:00:48 2025 GMT
Subject: CN=5a85821053adb9c3d2a25c5d349480808f70a64f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e6:09:00:8d:2c:1b:fd:18:f3:48:eb:d3:fa:
be:04:6f:6c:21:20:9d:be:78:c4:b0:f3:a1:e6:40:
b1:03:21:d6:6c:1d:17:94:45:ba:93:1c:0b:2f:00:
d2:1b:d3:e1:c5:1c:70:7a:2a:58:f7:7c:af:77:71:
ea:a2:2f:a9:0e:c1:87:46:09:fe:3b:ee:65:9d:de:
9b:61:fc:94:fb:83:f5:af:05:2a:fc:cc:7b:72:42:
57:a9:0a:c9:9b:1c:96:9f:86:ff:4a:e4:2c:b8:1b:
67:23:7c:b9:d6:5f:09:90:7a:db:e7:0b:ce:5a:c8:
af:01:fa:9f:39:19:0c:f9:a3:ce:68:59:96:f7:21:
87:c8:9a:e7:3a:e7:ed:76:40:a4:a5:f8:8c:39:0e:
8e:9b:9d:d1:b7:a5:5e:e0:a0:40:21:b3:59:0c:47:
3f:30:84:89:35:d0:b4:f7:2e:65:13:19:e5:0a:ba:
5b:93:f8:42:26:84:47:21:d1:67:1e:27:76:98:ea:
73:8b:1d:db:d7:ee:cc:0e:fe:ba:fa:fb:66:c9:90:
90:82:89:56:3f:e0:a8:a0:a3:41:b6:04:a6:5f:fb:
59:31:20:47:5d:7d:0a:6f:30:9c:b4:73:89:b7:c6:
49:18:03:99:aa:0a:1b:46:ca:15:5f:d0:ed:2e:a2:
39:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:85:82:10:53:AD:B9:C3:D2:A2:5C:5D:34:94:80:80:8F:70:A6:4F
X509v3 Authority Key Identifier:
keyid:BE:37:07:33:B8:DB:61:4D:AA:76:0A:00:2C:24:04:80:28:30:0E:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vjcHM7jbYU2qdgoALCQEgCgwDi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/896ab3-c479-470a-8bb9-24222d87f88d/1/vjcHM7jbYU2qdgoALCQEgCgwDi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:27:cb:c1:09:14:30:46:a2:8d:2e:73:11:bf:00:8f:b6:3f:
72:9f:96:a9:ff:3f:61:e3:ab:9a:40:91:56:48:c6:5a:bf:cc:
04:cd:b8:a8:65:b0:bf:42:56:97:22:a4:7d:52:1f:05:58:9e:
f7:1f:61:f2:af:76:ea:1b:50:18:4a:5f:63:00:6e:6d:6f:75:
6b:cd:29:f8:5a:87:e8:26:f2:c6:69:ba:a2:0d:39:0f:6b:fc:
1b:6a:87:26:7c:a8:df:7f:b0:ad:18:e5:f2:5a:27:0e:35:fd:
1b:30:bd:74:bd:15:09:11:d5:bc:af:1e:7c:42:cf:c8:00:ef:
8d:65:a0:e1:48:cf:f8:2c:cb:73:2e:4e:c8:e1:45:18:ac:1d:
7d:34:b8:58:ac:4d:4e:60:0d:66:0c:d8:b8:01:b7:02:21:20:
c9:44:f0:8d:36:fd:19:dc:43:e9:98:9b:d9:89:53:eb:57:44:
8c:71:7b:e6:75:26:46:09:35:92:8d:0b:c6:52:44:e8:44:40:
3f:05:f7:d2:9f:90:e1:1a:76:d7:94:f0:e2:65:08:fd:04:6e:
7a:f2:52:c8:02:0c:57:f5:5c:86:27:30:2a:ab:26:0c:87:02:
5f:d2:99:14:ed:31:e8:ab:72:0e:22:24:f6:92:99:ad:4a:cf:
c4:64:90:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 14:08:30 2025 by rpki-client