Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
File: VkmqAU6M8795JOd1h9CnyMqhxJc.mft (raw, json)
Hash identifier: d+PMBNKai+OGpPMOEJ5nW3kE0tyIWCdZO5IIWUkkBVI=
Subject key identifier: E7:4F:C6:3D:D0:30:AA:3E:59:BB:E3:F1:28:F6:8C:14:0C:B4:66:66
Authority key identifier: 56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
Certificate issuer: /CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Certificate serial: 019748F9EE8B8F40FFD0029C4D7C399C4E58
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
Manifest number: 09E6
Signing time: Sat 07 Jun 2025 06:00:28 +0000
Manifest this update: Sat 07 Jun 2025 06:00:28 +0000
Manifest next update: Sun 08 Jun 2025 06:00:28 +0000
Files and hashes: 1: VkmqAU6M8795JOd1h9CnyMqhxJc.crl (hash: ybLotHKVzdx4y40o37zMOUgjnbiptw8n7K5jgmZbVfg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:f9:ee:8b:8f:40:ff:d0:02:9c:4d:7c:39:9c:4e:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Validity
Not Before: Jun 7 06:00:28 2025 GMT
Not After : Jun 8 06:00:28 2025 GMT
Subject: CN=e74fc63dd030aa3e59bbe3f128f68c140cb46666
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b4:bb:62:6d:3f:66:d5:70:fd:1b:c7:ae:7e:
fb:8a:6b:d6:be:40:3e:37:11:c3:d1:fc:ab:96:b5:
61:05:68:50:17:df:cb:9c:b1:ff:ae:69:eb:e8:8a:
5b:25:98:86:b1:0f:e0:dd:c4:45:bc:bb:b0:f8:13:
ec:84:e3:12:a9:24:6b:5f:1b:ca:98:e3:81:96:08:
a1:e3:12:9b:e9:2a:4d:3a:3a:69:94:5f:64:60:b6:
8d:65:8e:74:9b:f2:6e:c3:64:37:bf:01:46:fa:bb:
d2:38:2d:82:bf:3c:4e:a4:05:6e:9e:38:2d:86:ff:
8c:eb:2c:ba:1e:eb:c8:44:07:a7:37:5a:d4:7a:01:
8b:6b:6c:48:f7:3e:b2:ab:3c:10:b1:84:5e:05:28:
c6:f3:b3:33:a5:f8:4c:32:ba:3f:88:5f:b8:b2:fa:
54:ea:15:2e:b9:8d:73:35:39:59:05:c1:2a:1c:84:
0c:bf:82:6b:b8:87:ee:02:c3:3d:ea:84:dc:76:4f:
c5:cb:42:5f:e1:0c:96:a8:b3:eb:32:ab:19:d3:87:
c5:5c:10:58:75:1d:5d:3e:ba:89:af:44:b9:fd:38:
dd:79:bc:fa:6f:65:cd:ee:84:07:15:d0:63:f1:ca:
e1:89:53:e2:54:94:45:bf:26:a5:dd:65:a6:ba:e6:
41:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:4F:C6:3D:D0:30:AA:3E:59:BB:E3:F1:28:F6:8C:14:0C:B4:66:66
X509v3 Authority Key Identifier:
keyid:56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:1c:d1:4a:0b:24:90:61:67:20:9b:7b:f7:59:89:f3:b8:4b:
36:b8:62:ad:60:75:a5:42:80:ff:31:6e:2c:19:5b:34:99:50:
01:28:52:77:36:15:21:9b:5d:08:28:71:59:c0:23:e4:bf:19:
b8:e6:87:fc:76:45:48:ff:a5:79:c9:0c:a4:b5:73:07:95:74:
d2:35:b5:4c:5b:07:41:b7:53:ba:66:eb:b7:38:d0:58:c7:2a:
b4:b2:cb:0b:60:3a:32:7d:0d:a5:e5:ed:d8:ab:20:91:ca:89:
39:7d:cc:ad:78:60:83:c3:28:13:2b:93:51:df:8c:1a:be:c1:
e9:de:56:16:22:44:78:19:01:fe:59:3a:10:1e:bc:9f:82:44:
50:8c:58:cb:78:fc:7a:2e:a0:a5:de:e5:b5:ca:d3:1c:fc:ae:
64:64:16:22:3a:f6:a9:a4:50:85:ea:e2:47:b0:b4:af:85:65:
0b:77:f6:a8:34:c8:d5:cd:86:49:c6:7f:52:98:14:ef:61:5b:
0f:74:34:47:03:fa:53:02:9a:f6:50:b0:6f:42:b9:37:b3:a1:
09:91:b8:85:34:1a:df:cb:d8:42:19:50:3a:ac:82:8a:85:b3:
81:81:8c:48:3a:7b:1e:4f:51:8f:8e:e9:c8:64:da:a2:2d:07:
82:a6:6b:0d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdI+e6Lj0D/0AKcTXw5nE5YMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU2NDlhYTAxNGU4Y2YzYmY3OTI0ZTc3NTg3ZDBhN2M4Y2Fh
MWM0OTcwHhcNMjUwNjA3MDYwMDI4WhcNMjUwNjA4MDYwMDI4WjAzMTEwLwYDVQQD
EyhlNzRmYzYzZGQwMzBhYTNlNTliYmUzZjEyOGY2OGMxNDBjYjQ2NjY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkLS7Ym0/ZtVw/RvHrn77imvWvkA+
NxHD0fyrlrVhBWhQF9/LnLH/rmnr6IpbJZiGsQ/g3cRFvLuw+BPshOMSqSRrXxvK
mOOBlgih4xKb6SpNOjpplF9kYLaNZY50m/Juw2Q3vwFG+rvSOC2CvzxOpAVunjgt
hv+M6yy6HuvIRAenN1rUegGLa2xI9z6yqzwQsYReBSjG87MzpfhMMro/iF+4svpU
6hUuuY1zNTlZBcEqHIQMv4JruIfuAsM96oTcdk/Fy0Jf4QyWqLPrMqsZ04fFXBBY
dR1dPrqJr0S5/Tjdebz6b2XN7oQHFdBj8crhiVPiVJRFvyal3WWmuuZBAwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOdPxj3QMKo+Wbvj8Sj2jBQMtGZmMB8GA1UdIwQY
MBaAFFZJqgFOjPO/eSTndYfQp8jKocSXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVmttcUFVNk04Nzk1Sk9kMWg5Q255TXFoeEpjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC85ZDI5MDctMGE5Yy00ZTIzLWE4Zjgt
ZTg4NjBkYTEwMDM4LzEvVmttcUFVNk04Nzk1Sk9kMWg5Q255TXFoeEpjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC85ZDI5MDctMGE5Yy00ZTIzLWE4ZjgtZTg4NjBkYTEwMDM4
LzEvVmttcUFVNk04Nzk1Sk9kMWg5Q255TXFoeEpjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaxzRSgsk
kGFnIJt791mJ87hLNrhirWB1pUKA/zFuLBlbNJlQAShSdzYVIZtdCChxWcAj5L8Z
uOaH/HZFSP+leckMpLVzB5V00jW1TFsHQbdTumbrtzjQWMcqtLLLC2A6Mn0NpeXt
2KsgkcqJOX3MrXhgg8MoEyuTUd+MGr7B6d5WFiJEeBkB/lk6EB68n4JEUIxYy3j8
ei6gpd7ltcrTHPyuZGQWIjr2qaRQheriR7C0r4VlC3f2qDTI1c2GScZ/UpgU72Fb
D3Q0RwP6UwKa9lCwb0K5N7OhCZG4hTQa38vYQhlQOqyCioWzgYGMSDp7Hk9Rj47p
yGTaoi0HgqZrDQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 13:54:24 2025 by rpki-client