Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
File: vttqTtOT2KO3UH-Wo4vuDEyLR38.mft (raw, json)
Hash identifier: ZPsiHlVfv4Lub2iNAMDBw24FmKx37XXSz2R6WsGSdOM=
Subject key identifier: B5:EC:C3:38:73:9A:89:5B:81:1A:A4:09:A7:D9:67:6D:A5:14:61:9F
Authority key identifier: BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
Certificate issuer: /CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Certificate serial: 01965349FC1B2D0C8E74742B83FE9D742294
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 13:01:19 +0000
Manifest this update: Sun 20 Apr 2025 13:01:19 +0000
Manifest next update: Mon 21 Apr 2025 13:01:19 +0000
Files and hashes: 1: 70lNK5fBDtyKP1-Uoyim5AlDIhs.roa (hash: j96/AeWDc3evjhceJaK+DEno6uY4hCQMsDxAEfX1LUM=)
2: vttqTtOT2KO3UH-Wo4vuDEyLR38.crl (hash: ImVHS6sHvP7cs0TiOx5vvmUDvP/IjfD1k4ds5kMwUm8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:49:fc:1b:2d:0c:8e:74:74:2b:83:fe:9d:74:22:94
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bedb6a4ed393d8a3b7507f96a38bee0c4c8b477f
Validity
Not Before: Apr 20 13:01:19 2025 GMT
Not After : Apr 21 13:01:19 2025 GMT
Subject: CN=b5ecc338739a895b811aa409a7d9676da514619f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:d8:7b:08:67:e5:fd:d8:61:ed:1a:b5:d9:bb:
41:96:ce:9e:f5:ff:54:48:67:9b:74:7d:4e:be:cb:
2e:50:b5:72:e8:f4:d3:6b:f1:a3:27:7d:9d:4f:73:
0c:29:c3:5b:c3:d9:20:3a:cf:07:dc:28:56:66:1d:
3f:5a:b3:3d:96:9f:68:d0:19:69:c2:df:37:ad:61:
fa:60:48:e9:04:d0:3d:3b:20:97:85:be:72:e3:a8:
b0:c9:72:0b:5d:25:9e:72:6e:b3:b6:f4:cb:c0:25:
ef:b8:81:a4:e3:00:6c:da:cc:47:67:87:43:ec:2e:
3a:cf:f7:f6:a4:58:12:99:3a:87:17:dc:4c:ae:c5:
f2:44:11:ee:7f:85:14:88:28:44:42:43:64:1e:3d:
07:2d:92:86:2a:09:19:05:1b:82:45:d8:0d:e4:9c:
66:5d:02:d2:d7:7d:a3:a3:57:27:20:13:11:be:11:
d6:90:4f:d3:d8:5a:ec:34:75:75:1b:4e:8c:0c:60:
b6:1b:25:f9:0b:11:94:8e:3b:75:c9:60:c5:aa:72:
fe:04:db:36:09:75:ab:6a:ef:1a:14:4a:f7:b3:f0:
01:ea:ee:2a:ec:8d:96:f9:4a:24:da:e6:9e:48:10:
3e:82:3a:0e:7e:9a:87:60:2a:a2:4d:19:86:5d:e5:
29:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:EC:C3:38:73:9A:89:5B:81:1A:A4:09:A7:D9:67:6D:A5:14:61:9F
X509v3 Authority Key Identifier:
keyid:BE:DB:6A:4E:D3:93:D8:A3:B7:50:7F:96:A3:8B:EE:0C:4C:8B:47:7F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vttqTtOT2KO3UH-Wo4vuDEyLR38.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d4635f-2195-4d94-8d16-470a93b3d3e7/1/vttqTtOT2KO3UH-Wo4vuDEyLR38.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:d1:ec:f8:57:65:c7:47:9f:3e:76:af:76:d6:a9:82:68:a4:
c0:ab:5a:0b:d1:64:c8:8d:2c:08:c0:aa:93:d4:68:2f:02:2d:
5b:10:9a:d3:96:3d:26:86:0d:a9:85:93:79:3e:34:63:5e:86:
71:03:aa:1c:1e:c4:1e:15:b0:e0:fe:8f:3f:c3:ea:e6:ad:05:
d6:1e:59:ac:1e:f8:ad:a2:82:bd:e7:c6:c7:f6:ae:ad:97:e9:
34:0f:96:35:a5:11:21:8f:81:da:6e:2c:2c:0d:6f:73:52:b9:
6b:ae:fa:3a:71:e9:58:b3:13:74:cc:2c:ae:c5:96:21:22:53:
85:8f:aa:28:e3:9b:b8:99:bd:19:44:36:f3:7c:3c:7b:96:43:
ff:e1:27:c1:6d:c2:e2:88:3d:10:5f:c9:09:b4:5e:b6:1d:51:
d1:ef:3d:2a:a6:88:83:4c:cc:15:76:3f:44:39:d5:cb:3c:60:
e6:70:36:11:62:60:b9:ff:57:10:b6:44:11:7b:78:51:d7:1c:
ea:54:f8:4c:8a:bf:b4:df:61:63:fa:3b:ca:2b:92:2e:cc:be:
dd:7a:98:f3:03:07:f2:2b:b1:ee:73:de:47:c8:af:43:e2:de:
de:53:b3:9f:54:1b:c9:65:4d:e3:c9:55:e1:e8:b3:a5:9c:cc:
b4:f2:c3:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:14:22 2025 by rpki-client