Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
File: vqe2d3e5poMpM1dkl7RqmxYwTNk.mft (raw, json)
Hash identifier: ZnonE1LxRXKDlVF7+IdaJvJ9B5aMvCf9yMviT0kwmUQ=
Subject key identifier: AC:38:40:3E:AB:15:1F:A8:F9:D7:5E:95:C1:0A:93:6F:74:BC:9C:F3
Authority key identifier: BE:A7:B6:77:77:B9:A6:83:29:33:57:64:97:B4:6A:9B:16:30:4C:D9
Certificate issuer: /CN=bea7b67777b9a6832933576497b46a9b16304cd9
Certificate serial: 0197481E3964C0D8ADEE86022506FC1679A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
Manifest number: 13BD
Signing time: Sat 07 Jun 2025 02:00:29 +0000
Manifest this update: Sat 07 Jun 2025 02:00:29 +0000
Manifest next update: Sun 08 Jun 2025 02:00:29 +0000
Files and hashes: 1: sf1KX3-278D909_VQvgz_1jkfVI.roa (hash: zN2i6GvyNGlDViFzbVFFZ6ISLkchZMIvYNFAKpwZnH0=)
2: vqe2d3e5poMpM1dkl7RqmxYwTNk.crl (hash: 5wrxQn4va/AXvy+Fp9SggCmnV1E04SsKln8K82K98wo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 22:50:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:1e:39:64:c0:d8:ad:ee:86:02:25:06:fc:16:79:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bea7b67777b9a6832933576497b46a9b16304cd9
Validity
Not Before: Jun 7 02:00:29 2025 GMT
Not After : Jun 8 02:00:29 2025 GMT
Subject: CN=ac38403eab151fa8f9d75e95c10a936f74bc9cf3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:d6:95:ad:58:de:79:aa:91:41:b5:a8:d8:2e:
71:39:1a:0a:24:22:54:50:9a:08:e6:e8:c4:89:a6:
71:16:1a:b6:1e:62:d6:fe:0e:4d:ee:23:66:db:88:
d5:55:7b:dc:76:5f:37:27:da:36:ed:12:e1:b3:d2:
cb:b4:9d:66:1a:c7:6d:2d:29:75:ae:c8:5b:97:46:
6f:f0:c1:a0:3b:a3:e5:86:fb:5d:12:8b:05:cb:f7:
f6:fa:fe:b3:ec:67:81:32:77:ca:16:62:41:3b:f3:
c4:50:ef:64:22:f6:51:2c:e5:5d:c3:82:d3:81:cb:
dd:3d:37:a5:89:7c:6d:73:7f:b7:4a:46:6e:a4:4d:
94:d7:a9:64:47:a2:87:a5:af:72:d5:cc:6e:45:bc:
af:b0:a8:27:2f:38:c1:68:56:58:db:73:00:ff:23:
c3:fd:75:ed:cb:ea:25:89:12:a9:0b:7d:46:59:e8:
b6:2e:8e:2e:2a:0c:ec:b9:55:41:58:17:92:b2:43:
f2:29:ff:88:f2:3b:11:1f:ce:09:78:96:5a:7d:4f:
96:2a:ef:bd:9c:af:cb:06:4a:7f:10:ce:02:c2:81:
5c:e7:c2:3f:19:b1:40:23:1b:3e:92:cb:81:1c:7f:
bf:d3:9e:9c:f2:e7:bd:68:0d:9d:d3:a4:b5:c0:a3:
4c:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:38:40:3E:AB:15:1F:A8:F9:D7:5E:95:C1:0A:93:6F:74:BC:9C:F3
X509v3 Authority Key Identifier:
keyid:BE:A7:B6:77:77:B9:A6:83:29:33:57:64:97:B4:6A:9B:16:30:4C:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vqe2d3e5poMpM1dkl7RqmxYwTNk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/41c111-6505-41a4-9e67-3b91ff9a1acd/1/vqe2d3e5poMpM1dkl7RqmxYwTNk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:b9:e2:24:ef:42:aa:68:ce:2f:b1:dd:eb:65:35:b7:53:fb:
32:de:f3:b4:6e:3f:b9:df:7c:20:84:05:53:3e:fc:b9:b3:1f:
ae:b4:60:60:84:9c:e3:bb:50:74:3d:52:8f:aa:b9:b7:54:b3:
da:fb:18:ac:b3:2f:c1:7f:98:6a:46:89:41:a4:0b:3f:03:90:
b0:26:84:0c:99:bb:3f:1d:7e:23:ec:00:da:58:7a:ae:1e:90:
b3:e2:12:7b:ab:9d:27:6f:fe:c1:20:e2:e2:00:0d:ad:64:b5:
53:b7:e1:05:38:fc:ae:38:a2:d1:2a:2f:20:0f:0d:6a:f3:95:
a6:6b:25:f0:02:83:c5:2d:a8:75:57:bb:e6:56:7e:ce:5d:a1:
66:9c:2d:64:9b:1e:38:01:87:fa:4d:34:01:54:2a:ca:1c:27:
72:db:88:01:b3:fa:06:01:81:49:ac:e9:6d:21:b0:93:7d:8c:
fe:42:a0:22:a5:0b:32:4f:2a:b2:1e:a8:99:de:b3:06:9b:59:
fa:43:29:75:8b:9a:20:90:a7:98:47:6f:92:b9:df:35:d1:01:
cd:64:57:7a:08:4b:02:fd:0c:e7:b6:1f:22:d7:73:f3:60:56:
9d:f3:a5:50:f1:0e:cc:e2:ab:d7:5a:46:f6:93:57:25:f0:c9:
5f:4c:94:33
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdIHjlkwNit7oYCJQb8FnmnMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJlYTdiNjc3NzdiOWE2ODMyOTMzNTc2NDk3YjQ2YTliMTYz
MDRjZDkwHhcNMjUwNjA3MDIwMDI5WhcNMjUwNjA4MDIwMDI5WjAzMTEwLwYDVQQD
EyhhYzM4NDAzZWFiMTUxZmE4ZjlkNzVlOTVjMTBhOTM2Zjc0YmM5Y2YzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7daVrVjeeaqRQbWo2C5xORoKJCJU
UJoI5ujEiaZxFhq2HmLW/g5N7iNm24jVVXvcdl83J9o27RLhs9LLtJ1mGsdtLSl1
rshbl0Zv8MGgO6PlhvtdEosFy/f2+v6z7GeBMnfKFmJBO/PEUO9kIvZRLOVdw4LT
gcvdPTeliXxtc3+3SkZupE2U16lkR6KHpa9y1cxuRbyvsKgnLzjBaFZY23MA/yPD
/XXty+oliRKpC31GWei2Lo4uKgzsuVVBWBeSskPyKf+I8jsRH84JeJZafU+WKu+9
nK/LBkp/EM4CwoFc58I/GbFAIxs+ksuBHH+/056c8ue9aA2d06S1wKNMJwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKw4QD6rFR+o+ddelcEKk290vJzzMB8GA1UdIwQY
MBaAFL6ntnd3uaaDKTNXZJe0apsWMEzZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnFlMmQzZTVwb01wTTFka2w3UnFteFl3VE5rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy80MWMxMTEtNjUwNS00MWE0LTllNjct
M2I5MWZmOWExYWNkLzEvdnFlMmQzZTVwb01wTTFka2w3UnFteFl3VE5rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMy80MWMxMTEtNjUwNS00MWE0LTllNjctM2I5MWZmOWExYWNk
LzEvdnFlMmQzZTVwb01wTTFka2w3UnFteFl3VE5rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPrniJO9C
qmjOL7Hd62U1t1P7Mt7ztG4/ud98IIQFUz78ubMfrrRgYISc47tQdD1Sj6q5t1Sz
2vsYrLMvwX+YakaJQaQLPwOQsCaEDJm7Px1+I+wA2lh6rh6Qs+ISe6udJ2/+wSDi
4gANrWS1U7fhBTj8rjii0SovIA8NavOVpmsl8AKDxS2odVe75lZ+zl2hZpwtZJse
OAGH+k00AVQqyhwnctuIAbP6BgGBSazpbSGwk32M/kKgIqULMk8qsh6omd6zBptZ
+kMpdYuaIJCnmEdvkrnfNdEBzWRXeghLAv0M57YfItdz82BWnfOlUPEOzOKr11pG
9pNXJfDJX0yUMw==
-----END CERTIFICATE-----
Generated at Sat Jun 7 09:00:14 2025 by rpki-client