Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft
File: VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft (raw, json)
Hash identifier: N4oxbKCqTjHEv1cq8fzzN9gk14Ytv144qzJSSRPgrB4=
Subject key identifier: DC:78:19:0E:D7:E2:FF:A7:FE:9C:B2:33:65:29:D2:A0:07:FD:E3:83
Authority key identifier: 54:A1:4B:E6:19:75:5E:EE:EB:91:FE:2F:62:A1:D4:EE:07:86:14:96
Certificate issuer: /CN=54a14be619755eeeeb91fe2f62a1d4ee07861496
Certificate serial: 01974AB1839311689F762933C4954804CD5B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft
Manifest number: 0C76
Signing time: Sat 07 Jun 2025 14:00:36 +0000
Manifest this update: Sat 07 Jun 2025 14:00:36 +0000
Manifest next update: Sun 08 Jun 2025 14:00:36 +0000
Files and hashes: 1: VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl (hash: CKR0HoZaNhFP7Hentm8EtwsxlllHUP2qSEIYaoB/r6w=)
2: VtoCPIJdz7eHPyB83a7Nn8Gfd4c.roa (hash: PUXsuDYu+cUr4eIS8shnPGPZDRmbjLqE+BBuYonEPq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:b1:83:93:11:68:9f:76:29:33:c4:95:48:04:cd:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54a14be619755eeeeb91fe2f62a1d4ee07861496
Validity
Not Before: Jun 7 14:00:36 2025 GMT
Not After : Jun 8 14:00:36 2025 GMT
Subject: CN=dc78190ed7e2ffa7fe9cb2336529d2a007fde383
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:df:92:76:0f:94:37:d2:b7:20:5a:e5:4c:58:
ab:20:48:57:73:6d:be:fd:25:68:e5:5b:7c:ef:34:
fe:08:9b:05:95:58:d3:56:06:d7:23:82:56:5e:e6:
65:cc:bb:1d:a0:99:d6:e3:ad:d1:9a:e6:c9:c5:09:
76:4f:a7:e7:ed:25:c6:76:d8:7f:6c:26:62:b1:6b:
9e:9b:11:b0:14:4d:62:68:df:56:fe:d8:06:29:3d:
8f:d8:e1:5e:28:12:57:cc:44:c8:74:3c:d1:49:70:
c4:df:9f:09:79:8e:99:b5:dc:bf:bc:aa:57:28:d4:
48:60:a1:d6:15:d5:98:8e:e5:c3:0b:21:da:fb:23:
53:e5:ed:19:a6:e1:3c:d5:63:73:83:9b:94:d9:cb:
e6:c8:b6:6d:59:0c:ce:98:7b:da:f3:fd:81:fe:6c:
9a:be:aa:0f:f7:c5:cc:b6:63:64:21:77:0e:be:3f:
a4:41:ed:f8:34:30:f2:89:3c:62:e3:56:bc:b3:5c:
5e:42:42:e0:3b:f4:c0:0c:5e:6d:b6:5e:42:85:d6:
ea:7b:9c:bd:51:08:1e:1e:1c:0a:62:ab:76:b4:89:
30:79:e5:7b:d3:25:09:c0:bc:66:5a:2e:ac:bb:52:
a3:1a:90:87:3d:6f:40:7a:c2:0a:f0:53:c4:39:44:
0c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:78:19:0E:D7:E2:FF:A7:FE:9C:B2:33:65:29:D2:A0:07:FD:E3:83
X509v3 Authority Key Identifier:
keyid:54:A1:4B:E6:19:75:5E:EE:EB:91:FE:2F:62:A1:D4:EE:07:86:14:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VKFL5hl1Xu7rkf4vYqHU7geGFJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b8a9e7-9450-436c-bf90-8e90466bad38/1/VKFL5hl1Xu7rkf4vYqHU7geGFJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d5:c9:0c:55:7e:ab:1a:e4:ac:ba:52:53:d8:32:8e:4c:2d:dd:
0f:06:78:2c:64:59:2e:fb:d1:a8:e2:f3:b6:7e:5a:07:d8:c6:
c0:22:fd:71:46:6e:7a:b9:97:a1:9b:00:01:e4:8b:28:c2:e0:
25:f3:c8:eb:25:4d:99:ac:cd:eb:f1:c8:98:01:ec:dc:ce:7f:
46:4f:b5:5d:ed:62:0a:f5:de:10:1a:84:1d:2a:42:c2:bc:ce:
d0:97:62:d3:2e:3e:ee:f7:8d:e5:2f:55:30:1e:76:bc:07:c4:
c4:fd:c4:6a:b9:da:ba:11:61:c2:52:38:ec:f9:be:f0:71:df:
0e:21:75:cc:04:33:9d:a5:b4:66:d7:88:a3:7d:fe:6c:f4:68:
61:fc:17:75:35:f5:f4:0f:2c:7b:43:d0:76:f7:22:8c:bf:f8:
0d:90:50:8c:41:c2:ec:b2:97:96:6d:9a:7c:8f:86:28:97:01:
3c:0c:f5:ef:ca:e1:8d:af:43:14:51:ec:f7:e6:2d:aa:fb:14:
b6:c4:92:2c:9b:28:9d:ba:8d:4e:13:54:1e:c7:09:24:f6:e9:
76:81:04:f4:77:90:a2:53:b0:e3:c9:a7:86:f1:28:2c:ca:a2:
df:49:fc:64:4d:f7:2c:e6:df:d3:9f:2d:a3:e7:5e:b1:a2:a5:
4e:cc:86:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 20:02:17 2025 by rpki-client