Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
File: vqe2d3e5poMpM1dkl7RqmxYwTNk.mft (raw, json)
Hash identifier: IdeaAnWtyg9ClKlqCx9yCydDtVWddkTTUm/8Y7UwgRY=
Subject key identifier: 34:A4:E2:79:DB:B6:44:64:53:2D:F2:2F:C9:E9:39:D8:16:19:7A:E1
Authority key identifier: BE:A7:B6:77:77:B9:A6:83:29:33:57:64:97:B4:6A:9B:16:30:4C:D9
Certificate issuer: /CN=bea7b67777b9a6832933576497b46a9b16304cd9
Certificate serial: 01964EFE9596A885AED99DBCE36315C1E919
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
Manifest number: 133C
Signing time: Sat 19 Apr 2025 17:00:29 +0000
Manifest this update: Sat 19 Apr 2025 17:00:29 +0000
Manifest next update: Sun 20 Apr 2025 17:00:29 +0000
Files and hashes: 1: sf1KX3-278D909_VQvgz_1jkfVI.roa (hash: zN2i6GvyNGlDViFzbVFFZ6ISLkchZMIvYNFAKpwZnH0=)
2: vqe2d3e5poMpM1dkl7RqmxYwTNk.crl (hash: GB4766PDjFAQ+4v83WTNBGovIMHvEY+GFVlQfAR95xI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 17:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4e:fe:95:96:a8:85:ae:d9:9d:bc:e3:63:15:c1:e9:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bea7b67777b9a6832933576497b46a9b16304cd9
Validity
Not Before: Apr 19 17:00:29 2025 GMT
Not After : Apr 20 17:00:29 2025 GMT
Subject: CN=34a4e279dbb64464532df22fc9e939d816197ae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:5e:9e:64:fb:ab:be:85:57:40:21:b3:66:a9:
12:be:6c:fd:de:a2:03:d3:cf:e2:5b:5c:68:4f:5d:
9b:98:b5:5d:95:f3:b3:c8:0e:bd:57:d9:f0:76:fd:
8d:76:f0:59:1a:a0:65:ba:7e:79:6d:23:0f:d8:48:
cd:1b:db:62:06:c9:27:c1:0c:83:07:57:61:c2:c1:
0f:b5:9f:cc:98:f9:e5:fa:cd:28:45:77:aa:d4:78:
23:9f:f3:49:59:c4:0d:d6:6c:14:3e:a7:73:5d:79:
f4:fb:a2:25:0d:2b:2f:d3:28:6e:6d:e5:2d:88:53:
e3:79:6d:72:c3:3f:99:ac:87:29:f6:d6:d9:f9:99:
a5:7d:6e:ab:64:66:0a:a9:95:4b:f9:6d:7a:36:ca:
0a:a1:76:d3:29:02:71:32:db:f9:ce:1e:e7:b8:1c:
f5:5b:13:a6:01:6b:cc:fd:24:09:ff:2b:d2:99:80:
8b:05:a0:31:eb:07:bf:14:01:88:ff:86:43:50:28:
96:bc:14:83:be:cc:59:7b:b7:02:a6:18:9d:72:a6:
61:45:65:57:ca:23:be:ee:8f:71:e6:0e:90:31:d7:
ef:f4:e0:f3:ca:d6:85:46:e5:76:7d:f0:01:87:94:
2e:8e:16:45:8d:37:68:be:1a:57:a2:40:18:23:71:
42:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:A4:E2:79:DB:B6:44:64:53:2D:F2:2F:C9:E9:39:D8:16:19:7A:E1
X509v3 Authority Key Identifier:
keyid:BE:A7:B6:77:77:B9:A6:83:29:33:57:64:97:B4:6A:9B:16:30:4C:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:7d:3e:d2:9c:7d:3f:6a:88:f2:da:c1:60:81:b4:5c:0a:46:
e3:c8:3f:26:62:7b:91:4e:fe:70:2d:83:20:eb:96:bc:c9:35:
de:ad:af:0a:8c:91:88:8d:1a:f3:11:cb:df:07:fb:45:76:76:
52:4b:f0:1d:2c:20:63:62:f8:50:b3:ea:b8:aa:c0:53:61:ae:
6d:30:e3:6a:79:60:e6:9b:84:66:8a:59:9d:2c:7f:64:b7:a3:
c0:70:13:96:b7:47:59:fc:04:33:00:9a:9a:64:1e:75:3e:3e:
71:3e:27:61:5f:32:11:bf:81:aa:30:88:76:fa:d9:d8:d5:93:
60:b7:7f:37:d9:59:a3:2d:22:c3:57:36:b9:75:f9:07:4e:d6:
8c:34:18:7e:b4:b7:50:e5:d4:80:1f:8a:0d:ba:ff:10:af:75:
88:60:a7:41:39:08:9d:36:27:a7:e8:d1:28:c3:c3:a1:e9:73:
c2:5d:be:c5:3f:9a:e7:49:37:f8:c7:ff:c2:d1:20:2c:b9:d1:
cb:c1:4f:49:1e:7e:23:3a:1c:47:10:00:de:3a:8e:a0:d6:cc:
7c:25:72:e0:91:0a:64:3f:61:57:18:16:a8:34:bc:2e:4a:27:
30:f6:ea:cd:56:bc:3d:94:08:77:fc:ca:8d:21:e7:b4:16:42:
b8:29:85:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:17:17 2025 by rpki-client