Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
File: VkmqAU6M8795JOd1h9CnyMqhxJc.mft (raw, json)
Hash identifier: MzoApERdCkQnvryaqzzVM1II4R8hwSEOKzglFFmqrgs=
Subject key identifier: 76:C2:21:A9:AB:71:53:C0:21:CE:11:2A:B5:55:8C:F5:49:F6:3C:E0
Authority key identifier: 56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
Certificate issuer: /CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Certificate serial: 019653B746DF512A41A041B863379D123AD5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
Manifest number: 0967
Signing time: Sun 20 Apr 2025 15:00:42 +0000
Manifest this update: Sun 20 Apr 2025 15:00:42 +0000
Manifest next update: Mon 21 Apr 2025 15:00:42 +0000
Files and hashes: 1: VkmqAU6M8795JOd1h9CnyMqhxJc.crl (hash: /beKX2+BUE02KW4oO0cAgL+HFZ2OVimP/aor3N00FVo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:b7:46:df:51:2a:41:a0:41:b8:63:37:9d:12:3a:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5649aa014e8cf3bf7924e77587d0a7c8caa1c497
Validity
Not Before: Apr 20 15:00:42 2025 GMT
Not After : Apr 21 15:00:42 2025 GMT
Subject: CN=76c221a9ab7153c021ce112ab5558cf549f63ce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:23:66:1e:d1:09:9f:19:df:12:7a:98:b3:1d:
72:b2:27:1b:e5:b5:15:df:eb:02:0a:9e:15:54:a0:
b6:41:8e:1d:74:5a:7d:57:d6:cc:16:5c:d1:86:54:
31:1d:aa:48:2d:28:78:9a:90:dc:5c:07:00:cc:da:
cc:b8:11:28:ee:7c:ec:72:62:d1:9b:bd:55:37:47:
7e:2c:25:49:3f:d1:aa:54:f0:9e:e6:27:2f:28:78:
a5:c6:a8:81:90:3f:6a:e8:e6:e8:e4:52:d7:9a:9c:
1f:fb:86:23:08:60:e7:39:70:8a:de:62:0c:2b:27:
09:4a:dd:51:fd:38:fb:9e:73:9d:8e:e7:3b:51:c8:
5a:d7:ab:e0:10:8b:bb:29:ac:cc:80:24:3c:47:8d:
5e:fc:96:c9:39:da:a4:2b:f6:70:8a:77:9f:04:ee:
20:25:36:ce:63:31:f6:86:78:d7:aa:d8:a9:d2:e4:
e5:c8:95:0e:68:3b:3b:a1:43:e2:84:73:6c:d0:d5:
fb:c5:3c:9c:fc:71:44:f4:18:c4:e8:39:b8:62:07:
7b:7e:4e:0a:e7:f4:fb:a4:68:76:03:26:67:75:f1:
c1:f5:5a:04:a7:2c:f5:1e:8d:ae:ac:93:db:9e:3a:
7e:c8:f6:ae:9b:03:d4:23:38:d3:a5:c1:e5:a7:35:
cf:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:C2:21:A9:AB:71:53:C0:21:CE:11:2A:B5:55:8C:F5:49:F6:3C:E0
X509v3 Authority Key Identifier:
keyid:56:49:AA:01:4E:8C:F3:BF:79:24:E7:75:87:D0:A7:C8:CA:A1:C4:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VkmqAU6M8795JOd1h9CnyMqhxJc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/9d2907-0a9c-4e23-a8f8-e8860da10038/1/VkmqAU6M8795JOd1h9CnyMqhxJc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:60:e6:58:6c:8e:23:90:a1:30:bc:2f:bf:dd:1f:76:21:94:
11:11:90:81:ca:02:62:36:24:e1:b3:b9:30:6e:9b:f6:e3:ef:
f4:d2:fd:4a:fb:be:2b:37:f3:7d:59:5b:5f:dc:63:8f:b3:dd:
64:88:9a:39:ef:e7:98:ca:87:a1:cc:b2:65:9c:cd:84:dd:35:
f3:09:b4:f1:66:01:f8:c4:58:02:73:da:ca:ce:61:16:e0:2f:
bf:47:5f:0f:17:27:de:86:b1:11:df:68:15:3a:ef:2b:b9:d9:
69:8c:72:55:1e:23:a4:b4:ca:21:24:92:ee:99:74:ff:99:2a:
c3:4f:3d:7b:72:55:19:37:9c:f1:30:2b:35:d8:b6:46:9b:48:
15:5f:7e:e6:c4:93:0e:fb:ee:29:a9:d6:ff:3e:08:ff:ae:60:
76:80:02:57:1f:ac:20:62:38:e1:2b:9f:f0:f7:c4:60:a6:75:
19:67:3c:34:41:f3:68:c7:bf:59:c6:69:29:62:2f:7f:aa:10:
af:5c:49:26:99:aa:01:c0:5a:47:c9:14:6f:39:c0:5b:e1:e6:
0a:c2:00:f5:85:eb:4b:b6:45:5b:fe:8a:7a:6c:68:93:29:3a:
ce:eb:89:19:36:fa:86:7c:a4:0d:33:72:2d:88:c3:a2:f1:3d:
a7:e4:28:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 17:34:36 2025 by rpki-client