Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
File: VytO2SaC1xio_ESIFAAnQGlgeV8.mft (raw, json)
Hash identifier: sEwbq4M/bw6Q5j1SGMRrIItOTEmFwUffBlRb3ozfCN4=
Subject key identifier: 4D:22:BF:92:2E:30:B6:B8:AF:43:51:9D:90:34:6A:6C:2B:EB:50:64
Authority key identifier: 57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
Certificate issuer: /CN=572b4ed92682d718a8fc4488140027406960795f
Certificate serial: 01974967FA34F910A929EE8D4A9ADE9595B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
Manifest number: 0BD9
Signing time: Sat 07 Jun 2025 08:00:40 +0000
Manifest this update: Sat 07 Jun 2025 08:00:40 +0000
Manifest next update: Sun 08 Jun 2025 08:00:40 +0000
Files and hashes: 1: 8R_SRNPLxmibFS1usJIWud4x3Z8.roa (hash: b2dIcGiMsdbDXAx7DhwSvU4UC5F6aoWQ/Pjpo9tIfQA=)
2: HSPZejR5lJB8cqlG1i1XbvBd4AY.roa (hash: LYg4VkRRLjikz7I2hzCQk0ST28urIdVmK83g08e6nBA=)
3: VytO2SaC1xio_ESIFAAnQGlgeV8.crl (hash: zbpYePUBATon1WeoCTyIpYlohFHKYU/b32K9ov2ydVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:fa:34:f9:10:a9:29:ee:8d:4a:9a:de:95:95:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=572b4ed92682d718a8fc4488140027406960795f
Validity
Not Before: Jun 7 08:00:40 2025 GMT
Not After : Jun 8 08:00:40 2025 GMT
Subject: CN=4d22bf922e30b6b8af43519d90346a6c2beb5064
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:36:ce:97:c0:c7:36:9b:60:07:99:1d:98:5a:
f4:1f:ff:50:c7:53:82:a7:4d:9f:2c:78:d2:89:90:
fd:3c:12:99:4a:05:66:b6:c2:49:f1:75:bb:4f:c0:
8e:ce:c3:50:71:86:ea:ce:d2:46:85:fa:ca:5e:54:
e6:19:fd:b1:b8:ea:43:ce:3e:54:3c:d5:4c:f1:f6:
f1:ad:d8:43:d4:38:9d:4a:15:8e:b3:3f:01:26:06:
e5:fb:87:e5:a8:5f:7c:e9:30:62:cd:f7:5f:6d:ba:
6d:98:03:71:3d:d9:71:ea:54:51:e3:8c:ad:8d:02:
76:4b:b0:0d:69:bc:3c:33:e1:96:7c:a8:5c:b4:3e:
ed:cd:fa:8e:f5:19:9e:75:6e:f2:61:5a:71:d3:72:
b9:6f:01:b8:9d:de:78:49:3c:b5:f3:a6:09:be:17:
2d:6a:e6:22:6a:34:e7:23:bf:0a:df:82:69:c0:eb:
61:aa:eb:4c:07:43:f0:01:e1:6a:58:da:90:a6:fb:
8a:72:22:29:86:3a:62:47:b6:39:be:e6:4e:b6:33:
d0:e7:1a:9b:aa:c9:40:9f:11:4f:bf:79:b6:d0:5d:
c5:84:88:9e:79:5e:9d:a5:c1:aa:5b:88:8b:57:97:
61:18:5c:b2:74:ba:7a:6c:27:95:ab:2c:92:14:e7:
e2:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:22:BF:92:2E:30:B6:B8:AF:43:51:9D:90:34:6A:6C:2B:EB:50:64
X509v3 Authority Key Identifier:
keyid:57:2B:4E:D9:26:82:D7:18:A8:FC:44:88:14:00:27:40:69:60:79:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VytO2SaC1xio_ESIFAAnQGlgeV8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/884c31-e509-422b-b0a1-af9fc012bd54/1/VytO2SaC1xio_ESIFAAnQGlgeV8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:95:19:12:f9:6f:71:de:2f:e4:2e:20:0e:1c:59:32:1f:ce:
ca:df:a5:92:af:de:85:ba:e5:36:71:ad:f6:5a:4d:53:77:15:
11:86:9d:17:f1:5a:5f:24:4f:18:1c:e5:99:8d:11:56:39:66:
43:b1:93:ce:a2:5b:87:e2:37:85:3c:99:10:13:80:53:54:93:
2e:90:2e:96:6b:47:49:cd:5d:dd:dc:a8:57:cd:ce:e6:97:52:
a9:0a:3a:93:0b:2e:8c:da:29:16:ad:8d:61:ff:41:72:d4:0a:
58:6b:18:03:6d:97:02:b3:54:9c:b5:dd:b4:36:e0:6c:db:ff:
13:e7:7b:89:23:f1:6c:8d:82:f7:cd:93:ff:46:e4:f9:ad:ea:
3f:09:97:cf:ca:71:42:8b:59:f2:c6:70:05:0c:fc:25:bf:a4:
78:a5:50:a0:91:14:aa:01:96:2e:ae:6d:bc:c9:8e:8c:70:1d:
d6:9b:75:5f:de:9e:63:fc:1c:33:3c:0b:62:7f:ed:85:c5:1b:
b6:e8:ae:31:73:b0:9a:18:42:66:50:84:17:20:93:65:21:eb:
23:94:5e:47:99:a0:d3:c4:9f:46:4e:6c:0a:e5:ca:c1:01:21:
2c:13:e8:31:f5:3f:d2:9f:81:1e:9f:0e:52:5e:38:8e:a6:85:
4a:be:b2:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 16:20:52 2025 by rpki-client