Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
File: vkjMNUiL2ebzErIPx2oQJy8M3to.mft (raw, json)
Hash identifier: QpvVGmtuuZnfdreuyB48fA/xO0KyIT1iRZCNO0NBdFo=
Subject key identifier: A4:62:AC:44:B1:BB:25:C0:A3:AF:13:C0:3F:DA:94:37:69:71:FE:F0
Authority key identifier: BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
Certificate issuer: /CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Certificate serial: 01964FA3ABE4772E2962C9B7C055F90A1C14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
Manifest number: 14FE
Signing time: Sat 19 Apr 2025 20:00:48 +0000
Manifest this update: Sat 19 Apr 2025 20:00:48 +0000
Manifest next update: Sun 20 Apr 2025 20:00:48 +0000
Files and hashes: 1: YmYarA5XO8juvrriR0BtAqIdcCU.roa (hash: J8e/3PBcMoffAup3qudGNq5pMDjkvtJSIDtohCQMO8M=)
2: vkjMNUiL2ebzErIPx2oQJy8M3to.crl (hash: h/vAviLnN1sHi4OpK4NxVKy+dcHpDEFAgvBfc5k+FkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 20:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:a3:ab:e4:77:2e:29:62:c9:b7:c0:55:f9:0a:1c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be48cc35488bd9e6f312b20fc76a10272f0cdeda
Validity
Not Before: Apr 19 20:00:48 2025 GMT
Not After : Apr 20 20:00:48 2025 GMT
Subject: CN=a462ac44b1bb25c0a3af13c03fda94376971fef0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:a1:09:ab:00:1f:d0:31:af:cb:21:bd:fd:d3:
e8:8e:e6:49:55:aa:27:a5:55:64:fd:43:f6:51:b2:
b7:1f:83:56:62:e7:c1:66:60:21:0f:6b:3a:34:38:
a9:8f:c9:09:05:b5:61:03:06:89:e7:8e:1a:bc:50:
8b:48:18:f6:0a:05:98:16:9b:cd:15:7f:e8:be:df:
94:2c:31:bc:ac:4d:b0:c2:e2:a9:2b:7b:6d:6d:c4:
6d:35:e1:fd:17:d7:7c:5f:5e:e0:fc:bb:79:fe:69:
66:7d:02:20:90:95:94:2a:2b:45:61:b7:91:8f:9e:
b6:b0:40:1b:75:f8:12:25:06:4a:f9:7e:67:3d:76:
ab:fb:25:d5:aa:18:1d:67:b5:aa:1c:2f:8a:70:87:
c1:0f:8e:60:b5:98:bc:ad:53:55:94:89:67:26:18:
31:94:d9:d3:b3:a5:0f:84:98:cb:c6:2c:86:b7:b0:
a6:dc:44:e3:c3:0a:d7:b6:e7:01:78:2f:9f:c2:e6:
74:1a:cd:36:e4:2f:d8:44:c2:51:76:36:c0:5f:d1:
05:4e:c7:4d:77:f0:33:c8:17:26:c0:4f:55:89:fe:
4a:22:70:07:9b:46:12:58:4d:7b:9e:8a:2e:04:6c:
c9:5e:32:62:78:97:53:cf:63:de:87:10:df:c7:d9:
be:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:62:AC:44:B1:BB:25:C0:A3:AF:13:C0:3F:DA:94:37:69:71:FE:F0
X509v3 Authority Key Identifier:
keyid:BE:48:CC:35:48:8B:D9:E6:F3:12:B2:0F:C7:6A:10:27:2F:0C:DE:DA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vkjMNUiL2ebzErIPx2oQJy8M3to.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d26971-b7a8-4ede-8bb4-49bc43660c97/1/vkjMNUiL2ebzErIPx2oQJy8M3to.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:9e:53:7f:32:ea:f9:58:2e:00:d4:9e:e6:f9:97:a1:14:2f:
de:3c:ad:70:40:f3:cd:e5:7c:75:71:07:7b:8e:73:eb:98:f6:
bb:e9:b1:bc:be:5b:c5:ae:d0:2b:41:f2:67:b1:4a:d1:eb:27:
21:2b:4d:7e:c6:43:f7:eb:fc:df:c4:98:3c:1c:c0:80:04:2e:
dd:a5:de:af:9d:5a:a3:9c:13:65:80:7d:30:5c:18:26:b6:7c:
53:ba:80:8f:1c:00:47:3d:bb:08:d9:d8:95:5e:63:26:ac:96:
40:f8:9b:01:73:aa:5f:7b:55:cd:88:12:cc:e2:74:01:0d:c3:
93:4a:b5:c8:16:b1:83:4c:a5:10:d9:41:93:b3:1e:c5:21:b2:
93:82:61:17:ac:d4:00:6f:c9:29:7c:c6:83:ba:a1:2a:76:48:
14:be:e8:66:d2:de:d9:f0:db:08:d7:b4:30:f8:28:b5:ee:93:
cd:d0:c2:b6:7b:5d:20:a9:22:91:13:2f:95:cc:92:49:86:ea:
12:56:3d:89:76:91:8a:d7:e8:38:dd:cd:42:dd:3b:2f:82:55:
a4:6b:3e:c0:8a:39:33:08:e8:b3:5b:7e:c1:81:0c:ac:bc:2f:
82:82:55:1f:c2:bb:f5:b6:9c:8a:9d:57:86:ae:c3:0e:c0:7c:
1a:0c:d0:4c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZPo6vkdy4pYsm3wFX5ChwUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlNDhjYzM1NDg4YmQ5ZTZmMzEyYjIwZmM3NmExMDI3MmYw
Y2RlZGEwHhcNMjUwNDE5MjAwMDQ4WhcNMjUwNDIwMjAwMDQ4WjAzMTEwLwYDVQQD
EyhhNDYyYWM0NGIxYmIyNWMwYTNhZjEzYzAzZmRhOTQzNzY5NzFmZWYwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnqEJqwAf0DGvyyG9/dPojuZJVaon
pVVk/UP2UbK3H4NWYufBZmAhD2s6NDipj8kJBbVhAwaJ544avFCLSBj2CgWYFpvN
FX/ovt+ULDG8rE2wwuKpK3ttbcRtNeH9F9d8X17g/Lt5/mlmfQIgkJWUKitFYbeR
j562sEAbdfgSJQZK+X5nPXar+yXVqhgdZ7WqHC+KcIfBD45gtZi8rVNVlIlnJhgx
lNnTs6UPhJjLxiyGt7Cm3ETjwwrXtucBeC+fwuZ0Gs025C/YRMJRdjbAX9EFTsdN
d/AzyBcmwE9Vif5KInAHm0YSWE17noouBGzJXjJieJdTz2PehxDfx9m+bQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKRirESxuyXAo68TwD/alDdpcf7wMB8GA1UdIwQY
MBaAFL5IzDVIi9nm8xKyD8dqECcvDN7aMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdmtqTU5VaUwyZWJ6RXJJUHgyb1FKeThNM3RvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy9kMjY5NzEtYjdhOC00ZWRlLThiYjQt
NDliYzQzNjYwYzk3LzEvdmtqTU5VaUwyZWJ6RXJJUHgyb1FKeThNM3RvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kNy9kMjY5NzEtYjdhOC00ZWRlLThiYjQtNDliYzQzNjYwYzk3
LzEvdmtqTU5VaUwyZWJ6RXJJUHgyb1FKeThNM3RvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIJ5TfzLq
+VguANSe5vmXoRQv3jytcEDzzeV8dXEHe45z65j2u+mxvL5bxa7QK0HyZ7FK0esn
IStNfsZD9+v838SYPBzAgAQu3aXer51ao5wTZYB9MFwYJrZ8U7qAjxwARz27CNnY
lV5jJqyWQPibAXOqX3tVzYgSzOJ0AQ3Dk0q1yBaxg0ylENlBk7MexSGyk4JhF6zU
AG/JKXzGg7qhKnZIFL7oZtLe2fDbCNe0MPgote6TzdDCtntdIKkikRMvlcySSYbq
ElY9iXaRitfoON3NQt07L4JVpGs+wIo5Mwjos1t+wYEMrLwvgoJVH8K79bacip1X
hq7DDsB8GgzQTA==
-----END CERTIFICATE-----
Generated at Sun Apr 20 02:50:18 2025 by rpki-client