Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.mft
File: VFjdpvrZNtqJUgABqigr-syLguM.mft (raw, json)
Hash identifier: OA/Ecx/+Py/J0Z90n3+4D7leAFoq44gfQC1gsEiVwaA=
Subject key identifier: 5A:89:4C:5E:87:D1:D4:3C:3A:A9:D7:37:62:A5:A3:EF:63:6E:42:10
Authority key identifier: 54:58:DD:A6:FA:D9:36:DA:89:52:00:01:AA:28:2B:FA:CC:8B:82:E3
Certificate issuer: /CN=5458dda6fad936da89520001aa282bfacc8b82e3
Certificate serial: 0196A84359F16507A6060A9B5061CB1EDD28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VFjdpvrZNtqJUgABqigr-syLguM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.mft
Manifest number: 1010
Signing time: Wed 07 May 2025 01:01:48 +0000
Manifest this update: Wed 07 May 2025 01:01:48 +0000
Manifest next update: Thu 08 May 2025 01:01:48 +0000
Files and hashes: 1: VFjdpvrZNtqJUgABqigr-syLguM.crl (hash: OUTcRatwWPaHVbWw0KpKwDCApZKxk6qIBYSu3vcoVnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.mft
rsync://rpki.ripe.net/repository/DEFAULT/VFjdpvrZNtqJUgABqigr-syLguM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 08 May 2025 01:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a8:43:59:f1:65:07:a6:06:0a:9b:50:61:cb:1e:dd:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5458dda6fad936da89520001aa282bfacc8b82e3
Validity
Not Before: May 7 01:01:48 2025 GMT
Not After : May 8 01:01:48 2025 GMT
Subject: CN=5a894c5e87d1d43c3aa9d73762a5a3ef636e4210
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c7:f9:47:a3:69:10:00:03:51:41:e6:ad:d9:
75:79:a7:08:4f:ee:04:2f:4e:75:d8:76:b6:1a:79:
80:a6:22:14:1a:71:6f:14:1e:1e:4e:bf:3c:9e:f5:
73:f4:90:6e:20:7e:11:bf:c2:9b:fe:b8:46:89:d0:
ed:b2:eb:0b:05:c7:19:73:cb:51:e3:57:16:29:0b:
4e:fd:f2:26:68:49:99:1f:23:e4:94:c1:88:a7:b4:
6e:93:fc:a7:77:e5:ee:4b:41:9f:9f:33:8e:4d:06:
0b:da:3b:7f:65:94:2d:0a:ef:89:2c:3c:d7:fc:c9:
b6:04:ed:5b:c3:5d:fb:f3:53:c7:d3:c5:e2:5e:8a:
b1:6d:77:d7:28:dd:ca:b4:db:0e:8d:ea:d7:17:5f:
95:d0:ab:a4:49:80:2c:5b:5d:cd:7b:29:58:b7:db:
fb:44:20:66:a1:85:ef:1c:01:a0:1d:89:59:88:8c:
08:92:2c:38:74:02:df:8f:27:85:3d:80:0f:9e:68:
de:4c:b4:76:d2:64:03:be:57:1c:7a:83:07:38:87:
9f:3b:9b:85:1f:e5:16:b3:59:17:15:1b:1b:1f:3f:
11:31:d7:8e:0b:85:f7:70:ac:61:37:31:50:a3:89:
0c:98:da:fc:c7:73:0e:ac:9f:79:ad:e0:e9:93:58:
9a:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:89:4C:5E:87:D1:D4:3C:3A:A9:D7:37:62:A5:A3:EF:63:6E:42:10
X509v3 Authority Key Identifier:
keyid:54:58:DD:A6:FA:D9:36:DA:89:52:00:01:AA:28:2B:FA:CC:8B:82:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VFjdpvrZNtqJUgABqigr-syLguM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/4781ea-0a32-43f9-9890-de97bcd40368/1/VFjdpvrZNtqJUgABqigr-syLguM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:73:1d:73:98:c7:55:03:51:09:0c:63:a3:65:e9:43:0f:7b:
2d:ff:06:38:b2:28:08:da:35:c5:ce:28:86:82:da:59:42:c0:
6f:12:3f:58:59:b5:54:c3:d2:7c:ec:87:b5:42:4b:e2:3a:e3:
aa:0a:de:7c:99:db:10:64:88:92:dd:14:00:66:bb:5e:4d:03:
77:9f:ec:78:0e:ae:24:b8:03:0d:5f:cf:7f:0a:16:58:f8:2d:
e1:63:83:59:0c:67:d6:ad:a1:7c:33:e7:b9:ec:99:8d:4c:82:
1f:18:99:0f:ac:05:ac:5f:79:c4:9f:bd:e9:bc:1b:94:90:bc:
84:c9:96:4f:8b:10:69:d9:d7:bf:f0:6a:1e:48:bb:88:c7:98:
8d:45:4e:3d:12:03:c9:bb:41:fe:e4:ef:12:c3:a6:cd:59:6d:
5b:ab:72:42:aa:10:ff:73:e1:90:8b:6d:4c:87:2d:ba:ee:40:
fe:4b:45:9d:87:08:2e:a6:3d:36:7a:3c:1f:e8:ce:d4:7c:46:
e7:7a:96:a8:46:0c:7f:ea:e7:77:e6:13:58:84:47:7f:4a:07:
dc:15:f5:8d:1e:17:dc:89:2c:53:27:77:a3:21:f8:1a:1e:c2:
e4:5b:45:05:f9:13:07:16:7f:8b:d0:7d:c5:59:ee:d5:c7:60:
88:cd:bb:20
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZaoQ1nxZQemBgqbUGHLHt0oMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0NThkZGE2ZmFkOTM2ZGE4OTUyMDAwMWFhMjgyYmZhY2M4
YjgyZTMwHhcNMjUwNTA3MDEwMTQ4WhcNMjUwNTA4MDEwMTQ4WjAzMTEwLwYDVQQD
Eyg1YTg5NGM1ZTg3ZDFkNDNjM2FhOWQ3Mzc2MmE1YTNlZjYzNmU0MjEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxMf5R6NpEAADUUHmrdl1eacIT+4E
L0512Ha2GnmApiIUGnFvFB4eTr88nvVz9JBuIH4Rv8Kb/rhGidDtsusLBccZc8tR
41cWKQtO/fImaEmZHyPklMGIp7Ruk/ynd+XuS0GfnzOOTQYL2jt/ZZQtCu+JLDzX
/Mm2BO1bw13781PH08XiXoqxbXfXKN3KtNsOjerXF1+V0KukSYAsW13NeylYt9v7
RCBmoYXvHAGgHYlZiIwIkiw4dALfjyeFPYAPnmjeTLR20mQDvlcceoMHOIefO5uF
H+UWs1kXFRsbHz8RMdeOC4X3cKxhNzFQo4kMmNr8x3MOrJ95reDpk1iaHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFqJTF6H0dQ8OqnXN2Klo+9jbkIQMB8GA1UdIwQY
MBaAFFRY3ab62TbaiVIAAaooK/rMi4LjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkZqZHB2clpOdHFKVWdBQnFpZ3Itc3lMZ3VNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC80NzgxZWEtMGEzMi00M2Y5LTk4OTAt
ZGU5N2JjZDQwMzY4LzEvVkZqZHB2clpOdHFKVWdBQnFpZ3Itc3lMZ3VNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC80NzgxZWEtMGEzMi00M2Y5LTk4OTAtZGU5N2JjZDQwMzY4
LzEvVkZqZHB2clpOdHFKVWdBQnFpZ3Itc3lMZ3VNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARnMdc5jH
VQNRCQxjo2XpQw97Lf8GOLIoCNo1xc4ohoLaWULAbxI/WFm1VMPSfOyHtUJL4jrj
qgrefJnbEGSIkt0UAGa7Xk0Dd5/seA6uJLgDDV/PfwoWWPgt4WODWQxn1q2hfDPn
ueyZjUyCHxiZD6wFrF95xJ+96bwblJC8hMmWT4sQadnXv/BqHki7iMeYjUVOPRID
ybtB/uTvEsOmzVltW6tyQqoQ/3PhkIttTIctuu5A/ktFnYcILqY9Nno8H+jO1HxG
53qWqEYMf+rnd+YTWIRHf0oH3BX1jR4X3IksUyd3oyH4Gh7C5FtFBfkTBxZ/i9B9
xVnu1cdgiM27IA==
-----END CERTIFICATE-----
Generated at Wed May 7 10:17:19 2025 by rpki-client