Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
File: VkmqAU6M8795JOd1h9CnyMqhxJc.mft (raw, json)
Hash identifier: tRbv5AjFtbEfGRAwOjIMH8nX1iC4WwBYh2r6Ouq8uIY=
Subject key identifier: 18:12:11:A0:AD:B6:07:9D:D0:18:85:4A:59:A1:C3:A3:BE:CB:63:37
Authority key identifier: 56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
Certificate issuer: /CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Certificate serial: 01958CCF0300FDE8574CA9C7E5ED6824EDA3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
Manifest number: 0900
Signing time: Thu 13 Mar 2025 00:02:11 +0000
Manifest this update: Thu 13 Mar 2025 00:02:11 +0000
Manifest next update: Fri 14 Mar 2025 00:02:11 +0000
Files and hashes: 1: VkmqAU6M8795JOd1h9CnyMqhxJc.crl (hash: BZqWq5CTy4RNJf6m2qpks3PMSjZ/on3PQ5yRL47qn1k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:cf:03:00:fd:e8:57:4c:a9:c7:e5:ed:68:24:ed:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Validity
Not Before: Mar 13 00:02:11 2025 GMT
Not After : Mar 14 00:02:11 2025 GMT
Subject: CN=181211a0adb6079dd018854a59a1c3a3becb6337
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:a4:5f:c2:67:55:32:30:41:8e:52:44:48:79:
e5:82:82:b2:f6:ed:77:97:9c:48:26:fc:d8:ad:a2:
5d:93:0a:1f:5d:aa:46:ac:e6:aa:51:df:83:c3:51:
72:ee:9c:55:d2:47:3d:f6:95:ab:e2:d7:dc:a2:a4:
3c:fa:ba:72:bf:44:6f:72:64:98:aa:ee:9c:53:b0:
8d:98:ef:c4:9b:79:57:dc:25:3f:11:b6:08:dd:cc:
82:59:3f:4c:a6:6f:d7:ff:82:90:42:d9:f8:65:bc:
37:11:25:ae:dd:59:b1:0b:d2:c7:14:5d:a0:6e:51:
4f:15:f8:14:e1:d3:ed:d7:fb:ea:7e:1d:34:c5:62:
5b:92:2e:5d:d2:82:8b:c1:ac:ae:05:5e:31:b7:4b:
41:b3:c1:5a:dd:57:d0:ea:d7:1b:c3:df:8e:de:51:
56:36:32:4d:21:c8:84:07:7a:ab:3a:fb:bd:b4:31:
68:79:8e:53:c3:b8:c8:8b:40:81:78:fe:b0:c3:02:
ae:bd:10:df:10:45:70:e0:21:41:64:ed:5a:c4:37:
8d:33:31:74:fb:e6:66:ea:41:26:53:a9:c4:5a:20:
d9:4a:1b:2c:0b:15:d0:81:47:4c:66:da:07:c2:17:
7c:ac:61:10:ae:90:3d:f9:64:f6:d4:b1:1f:7a:bf:
1e:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:12:11:A0:AD:B6:07:9D:D0:18:85:4A:59:A1:C3:A3:BE:CB:63:37
X509v3 Authority Key Identifier:
keyid:56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:9d:bc:14:03:3b:81:8c:1e:a1:e2:fb:06:60:43:0c:ef:a8:
f1:b2:a6:31:8e:70:0a:89:9e:c9:0c:97:3c:fc:61:6e:9f:0a:
8b:c6:4b:72:14:cc:ce:e2:c7:a6:ea:42:b1:e5:57:c8:07:0e:
be:1a:1f:b9:03:0c:c3:58:39:f9:94:ab:2e:b8:31:21:2c:7d:
d4:6b:d2:9a:76:e7:fd:7b:6d:03:af:84:33:16:78:b5:1d:60:
da:6d:ce:41:9c:a7:6f:25:24:df:b2:2e:46:1c:25:71:74:70:
70:4f:f6:3f:ff:e0:6a:a7:2c:25:88:2e:0f:c5:08:9f:f4:e5:
81:15:65:6d:2b:45:37:e6:c9:a3:75:84:19:09:ec:36:24:dc:
0f:77:72:1c:c2:fd:db:e1:6a:73:5d:3f:d8:10:ea:d6:9a:0b:
94:b7:f2:7c:97:88:a8:c1:bc:05:77:fc:82:6e:c1:de:cb:c2:
a6:d3:22:5e:90:12:14:65:30:72:d4:74:87:1a:ad:05:19:03:
11:27:55:7f:8d:31:0f:15:7e:41:9e:55:b8:5e:32:fe:9e:15:
4b:61:fd:e5:cb:23:f8:e6:5b:82:0d:9c:19:52:61:14:31:06:
b3:27:59:b5:18:cd:41:67:bf:27:1d:5a:ac:8b:08:f8:b6:01:
5f:03:b8:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:56:37 2025 by rpki-client