Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
File: vttqTtOT2KO3UH-Wo4vuDEyLR38.mft (raw, json)
Hash identifier: 9WzvB0v1rJOjelHxVOOHlypnqDhyp2WcCn4iL1kfCs8=
Subject key identifier: 1C:F3:12:61:44:C5:79:DB:58:BB:56:0C:9C:A5:18:96:70:7B:8C:F9
Authority key identifier: BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
Certificate issuer: /CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Certificate serial: 01974C697A5EE42E9784ECF47475EE4525C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
Manifest number: 157D
Signing time: Sat 07 Jun 2025 22:01:10 +0000
Manifest this update: Sat 07 Jun 2025 22:01:10 +0000
Manifest next update: Sun 08 Jun 2025 22:01:10 +0000
Files and hashes: 1: 70lNK5fBDtyKP1-Uoyim5AlDIhs.roa (hash: j96/AeWDc3evjhceJaK+DEno6uY4hCQMsDxAEfX1LUM=)
2: vttqTtOT2KO3UH-Wo4vuDEyLR38.crl (hash: wgjyQrGBjVEwKNciBiCcr1n65be3r8Fbx8Eath1bHFA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:7a:5e:e4:2e:97:84:ec:f4:74:75:ee:45:25:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Validity
Not Before: Jun 7 22:01:10 2025 GMT
Not After : Jun 8 22:01:10 2025 GMT
Subject: CN=1cf3126144c579db58bb560c9ca51896707b8cf9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:c2:61:68:0c:86:c2:37:aa:57:8b:c7:85:44:
34:33:89:fc:3a:e3:f4:1f:d7:da:70:73:92:7e:92:
f8:f8:11:f3:55:2c:45:26:51:fc:3c:30:8f:d6:90:
76:a8:c1:6c:90:56:53:49:a7:24:3a:ec:f3:db:be:
54:dd:38:d6:66:b7:a1:b8:7f:66:15:fa:46:33:2f:
1d:e0:a1:75:db:63:b4:48:9b:84:f7:74:76:58:cd:
34:ad:60:16:21:89:2f:28:2b:82:c3:37:03:ce:d9:
5d:47:2c:36:fc:14:d9:5b:6a:5c:3c:6a:9e:8c:04:
63:cf:a5:0c:35:d1:cf:0e:94:bb:9e:57:9c:9c:15:
7a:4b:7a:70:b6:0a:71:df:8f:8e:35:ad:5a:73:16:
25:cb:43:3c:57:78:12:aa:69:83:b4:d9:55:9f:1d:
47:41:be:5c:0c:12:af:50:c2:95:35:16:2b:16:8a:
47:b4:ab:af:f7:40:b9:51:04:b3:3b:85:8f:e0:66:
d8:af:2a:55:df:2d:3b:ac:84:77:ca:7f:e7:b6:1d:
de:25:42:d3:f5:be:a3:15:8a:9c:fc:2b:42:02:21:
a5:77:67:5b:08:b3:1e:0c:e9:63:d7:4c:d5:bf:d5:
35:ac:ac:43:09:c0:e5:fb:78:ce:78:b0:20:4d:c6:
7d:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:F3:12:61:44:C5:79:DB:58:BB:56:0C:9C:A5:18:96:70:7B:8C:F9
X509v3 Authority Key Identifier:
keyid:BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:15:20:44:35:0a:42:9e:92:4f:47:f5:fa:76:8f:e1:4f:8a:
67:88:01:ce:57:d2:54:46:d4:df:84:97:72:de:60:99:a1:92:
f3:52:6f:3a:9c:bf:54:ea:a6:c4:c6:3a:1a:09:2f:72:0d:d9:
c5:eb:a4:2d:ae:25:e4:7f:61:d9:26:3a:9d:f3:3e:02:c1:fd:
fc:b9:bc:af:70:b3:52:ea:5b:e1:70:a6:5e:33:88:a1:1e:f8:
af:43:24:3e:61:fa:a5:6b:70:38:43:f3:0f:35:93:a5:5c:e4:
ba:4a:29:ea:bd:ca:9f:c1:aa:b3:2d:5a:bc:71:a4:88:ac:e7:
57:94:a9:0e:5e:d9:74:97:f2:6e:c5:d8:11:3c:64:a6:42:58:
83:a3:02:83:8e:1b:72:c7:6e:24:00:53:f4:2c:e7:c8:8f:d4:
21:ec:03:62:05:38:37:73:89:4e:bb:47:02:af:7c:10:aa:91:
7b:9e:d9:c7:97:fd:88:ea:a2:39:e6:1a:f3:61:12:f6:b9:7f:
a7:39:90:02:fa:3d:ec:86:59:61:b8:68:11:a4:6f:fd:4b:98:
cf:4f:89:71:82:44:bd:cd:0f:2a:8f:cf:83:dc:d6:76:21:e5:
cc:87:2c:9e:75:d5:5c:7c:50:8a:c1:64:43:0f:0f:67:e1:39:
5e:19:4b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 04:57:41 2025 by rpki-client