Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
File: vh89wilTBsx9-HLO7M1olNDg6uY.mft (raw, json)
Hash identifier: HmLT6MDP275mnu432oF9576yHcQFEQFOSXtFfMRlGy4=
Subject key identifier: B5:28:08:0F:3F:8C:71:53:0E:60:3B:E0:1D:F2:52:1F:F5:37:3B:5E
Authority key identifier: BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
Certificate issuer: /CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Certificate serial: 0196C3B9D31AE7E01C182B9F8DF2242BFA7F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
Manifest number: 0655
Signing time: Mon 12 May 2025 09:00:57 +0000
Manifest this update: Mon 12 May 2025 09:00:57 +0000
Manifest next update: Tue 13 May 2025 09:00:57 +0000
Files and hashes: 1: 1DMwz6cy5-zMTggYwJ41QekWZIY.roa (hash: nwmEuQjAVrxnR0Ze+XAFnQ4uH1WM0zEOCcXND1iguH8=)
2: tAG_ogHK36F9dYARrabqMiVm7WI.roa (hash: XyLTR6YvVH7wVie2ZS7kPXzKlWsXCj8THEJuI5lJwIg=)
3: vh89wilTBsx9-HLO7M1olNDg6uY.crl (hash: ++J/KlUrRKSVquOQK5y06By9+Plc9TwzWZj7FOndDO8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:d3:1a:e7:e0:1c:18:2b:9f:8d:f2:24:2b:fa:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Validity
Not Before: May 12 09:00:57 2025 GMT
Not After : May 13 09:00:57 2025 GMT
Subject: CN=b528080f3f8c71530e603be01df2521ff5373b5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:f8:30:1e:c2:b7:ea:8e:50:b6:eb:49:94:db:
be:c7:44:d7:89:c4:c1:f7:bf:fe:19:8d:9f:00:20:
72:50:64:0c:47:a8:3d:78:f8:31:77:26:04:31:9c:
44:29:0b:af:6e:dc:17:c6:73:46:01:e8:19:1d:be:
df:75:10:d2:e7:38:3a:2b:8d:d2:b9:63:c6:a0:25:
fc:63:a9:4f:7f:03:47:17:6f:86:54:1f:15:b4:df:
d0:f8:3e:d4:a1:d0:75:cd:ea:80:34:1d:07:fe:85:
56:85:bb:46:16:0b:99:9c:8b:40:21:a4:4f:c4:f1:
f5:1b:48:a6:c4:93:17:04:cf:94:26:53:40:53:3b:
30:c5:27:46:d7:2b:72:19:7e:21:33:90:c9:ed:12:
84:cf:54:cb:76:05:af:6d:7f:96:e7:71:c9:f7:f2:
39:87:92:67:aa:31:06:ad:6b:4d:99:c1:13:1d:9b:
b6:cd:37:4d:76:4b:82:91:73:cc:80:57:54:f4:e9:
e6:7a:72:43:83:dd:c8:c4:2c:6a:c9:bb:23:3e:4d:
fe:5b:a4:e6:a5:bb:af:4b:4b:39:2a:49:c2:cb:3c:
59:d4:50:1e:31:b9:a5:de:ab:f5:32:90:05:e8:2d:
01:ba:6c:49:54:0a:37:39:f1:4f:96:dc:f6:94:5b:
a3:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:28:08:0F:3F:8C:71:53:0E:60:3B:E0:1D:F2:52:1F:F5:37:3B:5E
X509v3 Authority Key Identifier:
keyid:BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:3c:6c:10:ca:68:81:66:6f:51:a3:b0:0b:b3:7a:3a:48:61:
9c:97:c8:ef:c5:8b:17:d1:b0:7c:b0:63:f4:fa:c1:44:fc:9f:
74:aa:64:06:80:22:5a:e1:9d:39:8c:72:72:a3:81:9b:99:b7:
db:e1:31:80:92:b7:a0:3f:b8:66:24:50:eb:63:a3:ab:35:0b:
17:70:0a:b6:8d:00:87:8f:66:54:7c:ff:09:0f:53:10:cc:aa:
c0:f3:7e:b6:d0:8e:e1:60:11:28:bd:df:8a:a1:63:cb:8a:60:
ef:43:62:ac:c7:63:2a:28:39:cc:9d:51:1a:ca:7c:00:40:48:
6d:55:6c:3e:cf:31:c4:86:2b:39:d6:2d:7d:40:b8:3b:e4:51:
d7:b2:33:73:64:49:9d:b9:44:a4:3f:fe:23:a5:4a:bd:77:c5:
27:d6:43:1a:7c:bc:6d:b0:d7:de:47:81:d7:b9:95:b6:d8:76:
ab:5f:58:a5:a4:ec:76:6e:74:54:e9:a5:4c:50:d1:f7:d7:28:
7d:9d:8c:21:cd:05:15:e7:a7:ee:84:5b:03:21:4b:92:0a:24:
45:d4:b1:e9:23:db:cd:0a:30:15:f9:34:1f:a2:07:a5:0d:b5:
61:bc:58:93:1b:cd:4e:37:58:dc:b5:f5:ea:be:b9:de:d9:fc:
ac:c7:43:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 13:49:15 2025 by rpki-client