Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
File: vh89wilTBsx9-HLO7M1olNDg6uY.mft (raw, json)
Hash identifier: VS1ZAojFwf+kZxnveo4xOtQPMERiwYSGwXkM4hJRr08=
Subject key identifier: 04:09:78:B9:54:05:89:BF:11:CD:FA:AD:DE:FC:3C:BB:5A:A4:8F:7A
Authority key identifier: BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
Certificate issuer: /CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Certificate serial: 0197B8FCBD79E8038D5C8602790E33339362
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
Manifest number: 06D4
Signing time: Sun 29 Jun 2025 00:01:00 +0000
Manifest this update: Sun 29 Jun 2025 00:01:00 +0000
Manifest next update: Mon 30 Jun 2025 00:01:00 +0000
Files and hashes: 1: 1DMwz6cy5-zMTggYwJ41QekWZIY.roa (hash: nwmEuQjAVrxnR0Ze+XAFnQ4uH1WM0zEOCcXND1iguH8=)
2: tAG_ogHK36F9dYARrabqMiVm7WI.roa (hash: XyLTR6YvVH7wVie2ZS7kPXzKlWsXCj8THEJuI5lJwIg=)
3: vh89wilTBsx9-HLO7M1olNDg6uY.crl (hash: FeJ3YR65nTW4pqxKjVd7ThKnOGgkUqJkV7EpMGIp3A0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fc:bd:79:e8:03:8d:5c:86:02:79:0e:33:33:93:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be1f3dc2295306cc7df872ceeccd6894d0e0eae6
Validity
Not Before: Jun 29 00:01:00 2025 GMT
Not After : Jun 30 00:01:00 2025 GMT
Subject: CN=040978b9540589bf11cdfaaddefc3cbb5aa48f7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:93:6b:35:9d:41:3b:12:59:75:12:eb:15:bc:
fe:4c:b2:bf:52:b3:bb:78:2d:14:5e:e7:30:8f:63:
96:d3:5f:29:ed:a2:a2:d6:7a:a0:55:1b:42:8b:de:
14:0e:09:a6:97:51:24:e1:22:32:ef:89:36:dc:34:
63:a3:ac:37:e7:fe:64:7f:d5:bf:fc:04:db:0b:7c:
ed:c7:98:96:e4:a4:a4:62:e0:3d:45:26:40:6e:a6:
6d:24:72:79:fb:5f:89:a2:f5:53:1b:0d:24:b8:28:
c4:31:29:da:38:1d:08:ae:01:88:48:72:c8:c3:dd:
81:35:e5:23:28:9f:4d:b3:3a:d4:4b:cc:53:9d:ed:
07:d5:75:af:3a:e2:d8:50:4c:65:f1:4c:ff:44:d5:
cc:37:71:7e:d7:48:7a:a5:6f:04:41:9d:68:85:58:
4f:3c:d2:53:34:5a:42:b8:d4:57:96:5c:6f:22:8c:
3c:12:bb:ca:73:67:13:fb:cd:d1:19:ce:b7:a8:3f:
50:51:4f:92:ab:fa:c7:53:ca:5b:d4:85:5b:7f:9b:
34:aa:00:32:58:58:bd:d4:67:d1:10:bc:2f:d4:bd:
cd:41:9e:b4:cc:0a:5e:d3:72:8c:74:a6:34:23:cd:
8f:e6:69:d9:a4:aa:c6:0a:8b:07:e1:bb:c2:1e:01:
8a:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:09:78:B9:54:05:89:BF:11:CD:FA:AD:DE:FC:3C:BB:5A:A4:8F:7A
X509v3 Authority Key Identifier:
keyid:BE:1F:3D:C2:29:53:06:CC:7D:F8:72:CE:EC:CD:68:94:D0:E0:EA:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vh89wilTBsx9-HLO7M1olNDg6uY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/1bdbf8-395f-4a85-a44a-b51adffc6eec/1/vh89wilTBsx9-HLO7M1olNDg6uY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:4d:3e:70:5e:8b:9b:0c:95:30:ee:c8:1c:7a:66:1f:8e:2b:
8b:1b:55:01:75:fe:46:db:19:b2:74:d9:bb:92:6d:a8:ed:8b:
cb:05:66:d5:f2:b7:a3:6b:43:4c:e3:3e:9d:aa:2c:55:27:d5:
25:1f:4e:7d:a8:10:31:5b:30:64:d3:75:68:7c:e3:9d:cf:07:
0b:ee:df:c7:07:dd:3d:ed:fa:93:c9:7c:8f:73:c9:2b:3d:20:
bb:52:cc:22:b7:47:66:02:b8:53:20:c4:70:51:59:6e:c8:c8:
68:70:2a:3e:3e:13:c3:d1:f2:77:7b:98:75:2f:5d:78:87:71:
68:f6:1c:ff:a7:fc:7b:c3:50:c6:71:a1:bb:53:47:e7:1b:02:
cf:08:55:b0:f5:da:14:d7:1f:66:17:3e:82:7a:03:ba:aa:cc:
45:fe:2c:37:91:99:3f:60:28:60:76:f9:18:8d:c0:20:31:a2:
21:0a:46:ef:9f:0e:d7:aa:36:e0:ee:67:80:29:0f:d7:03:70:
61:9a:25:a1:42:46:55:00:bb:84:1a:f3:d2:f5:6e:5a:7a:de:
0a:69:65:9c:d0:99:c6:3e:07:6d:f5:8f:f6:56:a3:5b:97:66:
95:ff:b2:32:e7:45:c1:5d:0a:8b:ea:87:3e:f5:63:5a:7b:b2:
ea:b7:76:5d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 05:50:51 2025 by rpki-client