Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
File: vkjMNUiL2ebzErIPx2oQJy8M3to.mft (raw, json)
Hash identifier: L8Squ8iX3FPpp03LAhlkCGr2irCFyhyDeZmXcoYXe/A=
Subject key identifier: F1:04:57:12:13:E0:17:80:8D:DE:DE:22:12:EB:37:23:60:B6:4D:61
Authority key identifier: BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
Certificate issuer: /CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Certificate serial: 019748C2F2A8E85A83CC266E5DC12C176E69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
Manifest number: 157F
Signing time: Sat 07 Jun 2025 05:00:25 +0000
Manifest this update: Sat 07 Jun 2025 05:00:25 +0000
Manifest next update: Sun 08 Jun 2025 05:00:25 +0000
Files and hashes: 1: YmYarA5XO8juvrriR0BtAqIdcCU.roa (hash: J8e/3PBcMoffAup3qudGNq5pMDjkvtJSIDtohCQMO8M=)
2: vkjMNUiL2ebzErIPx2oQJy8M3to.crl (hash: 3q1K4deIV9M0iS+QUP+rk0sJFb7PwDIotPaCG9mHJ9c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 05:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:c2:f2:a8:e8:5a:83:cc:26:6e:5d:c1:2c:17:6e:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Validity
Not Before: Jun 7 05:00:25 2025 GMT
Not After : Jun 8 05:00:25 2025 GMT
Subject: CN=f104571213e017808ddede2212eb372360b64d61
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:e3:f0:0a:a9:2b:69:eb:48:57:a1:ad:1b:ec:
54:6c:68:21:98:f0:3e:58:b3:a1:ff:9c:aa:c4:1e:
62:9a:cf:6b:8b:95:09:44:95:28:31:37:63:b8:56:
b2:9c:8e:eb:2e:db:6c:89:e6:0a:69:11:6c:29:6d:
46:71:fe:bb:eb:06:57:3b:65:ab:ca:f1:2d:05:2b:
31:8f:a9:d3:44:59:9c:2c:6e:d1:37:32:6c:47:b8:
64:0b:ef:76:ff:e8:0a:47:58:9d:85:3f:cc:5d:88:
bb:6a:c8:51:a6:f8:7d:6c:ba:9d:73:ab:2e:0e:25:
64:25:81:bd:9e:45:70:1d:f6:33:eb:08:16:bf:56:
09:61:72:2f:d0:8c:c8:e4:56:d8:53:47:2a:d4:8f:
40:d9:7f:86:24:58:f5:2f:f7:e5:8f:7a:93:55:4f:
53:1c:a3:76:e2:a4:48:be:02:48:60:2d:f8:8b:c6:
b4:bd:f4:dd:a5:27:83:14:cb:81:b7:77:77:7f:50:
43:14:36:5f:e5:b3:2d:ba:87:86:a8:89:f8:6c:97:
2d:4f:bd:54:ff:25:ce:5e:2a:77:de:2e:ae:28:af:
c0:1e:aa:c3:5b:ff:39:bd:27:f5:6c:db:74:bb:24:
bb:3f:f6:09:db:de:35:82:63:90:6e:76:32:33:f8:
89:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:04:57:12:13:E0:17:80:8D:DE:DE:22:12:EB:37:23:60:B6:4D:61
X509v3 Authority Key Identifier:
keyid:BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:e7:9d:a0:0d:fd:a3:71:21:60:15:00:06:c9:a8:0e:f4:86:
5e:84:8a:6a:7d:59:88:49:f5:5a:b1:3d:12:82:c5:dc:30:3b:
d1:d3:58:40:74:ad:fc:20:eb:e0:ea:83:ff:c8:ee:d3:2c:56:
8b:39:c6:6e:fc:2e:62:a0:69:27:96:17:44:f6:ed:09:37:a5:
29:64:f1:20:2c:6d:fb:85:d8:4e:84:32:7b:86:dd:fc:c2:63:
44:27:2b:22:09:17:e9:08:ae:fe:5e:2e:7a:b2:da:f5:57:7a:
23:2a:e4:98:4c:00:31:a0:ef:e2:0f:ea:3b:0a:b0:05:a5:85:
d9:01:93:24:91:4f:ed:3e:a5:8f:fd:0e:f6:fd:cd:5b:28:37:
34:f3:e7:25:bb:12:6f:59:80:8a:b8:b8:b8:de:7f:e1:41:89:
6d:be:65:f0:88:54:68:2b:4c:ed:f1:c8:72:e9:c1:17:89:d5:
ac:7c:87:d6:9d:5f:91:1f:57:a8:54:db:23:21:8c:f5:b0:95:
96:8f:10:51:ed:31:05:c4:63:47:e5:8d:24:95:40:67:9c:83:
e3:e3:c6:58:60:5e:cd:fd:68:de:ef:b4:7a:3b:6a:fd:ab:50:
8d:f9:38:c5:bf:14:01:dd:fb:1b:7d:3f:8a:83:4c:af:41:e1:
79:8c:ec:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIwvKo6FqDzCZuXcEsF25pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlNDhjYzM1NDg4YmQ5ZTZmMzEyYjIwZmM3NmExMDI3MmYw
Y2RlZGEwHhcNMjUwNjA3MDUwMDI1WhcNMjUwNjA4MDUwMDI1WjAzMTEwLwYDVQQD
EyhmMTA0NTcxMjEzZTAxNzgwOGRkZWRlMjIxMmViMzcyMzYwYjY0ZDYxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1uPwCqkraetIV6GtG+xUbGghmPA+
WLOh/5yqxB5ims9ri5UJRJUoMTdjuFaynI7rLttsieYKaRFsKW1Gcf676wZXO2Wr
yvEtBSsxj6nTRFmcLG7RNzJsR7hkC+92/+gKR1idhT/MXYi7ashRpvh9bLqdc6su
DiVkJYG9nkVwHfYz6wgWv1YJYXIv0IzI5FbYU0cq1I9A2X+GJFj1L/flj3qTVU9T
HKN24qRIvgJIYC34i8a0vfTdpSeDFMuBt3d3f1BDFDZf5bMtuoeGqIn4bJctT71U
/yXOXip33i6uKK/AHqrDW/85vSf1bNt0uyS7P/YJ2941gmOQbnYyM/iJHwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPEEVxIT4BeAjd7eIhLrNyNgtk1hMB8GA1UdIwQY
MBaAFL5IzDVIi9nm8xKyD8dqECcvDN7aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmtqTU5VaUwyZWJ6RXJJUHgyb1FKeThNM3RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9kMjY5NzEtYjdhOC00ZWRlLThiYjQt
NDliYzQzNjYwYzk3LzEvdmtqTU5VaUwyZWJ6RXJJUHgyb1FKeThNM3RvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy9kMjY5NzEtYjdhOC00ZWRlLThiYjQtNDliYzQzNjYwYzk3
LzEvdmtqTU5VaUwyZWJ6RXJJUHgyb1FKeThNM3RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYeedoA39
o3EhYBUABsmoDvSGXoSKan1ZiEn1WrE9EoLF3DA70dNYQHSt/CDr4OqD/8ju0yxW
iznGbvwuYqBpJ5YXRPbtCTelKWTxICxt+4XYToQye4bd/MJjRCcrIgkX6Qiu/l4u
erLa9Vd6IyrkmEwAMaDv4g/qOwqwBaWF2QGTJJFP7T6lj/0O9v3NWyg3NPPnJbsS
b1mAiri4uN5/4UGJbb5l8IhUaCtM7fHIcunBF4nVrHyH1p1fkR9XqFTbIyGM9bCV
lo8QUe0xBcRjR+WNJJVAZ5yD4+PGWGBezf1o3u+0ejtq/atQjfk4xb8UAd37G30/
ioNMr0HheYzs+Q==
-----END CERTIFICATE-----
Generated at Sat Jun 7 14:53:24 2025 by rpki-client