Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
File: vmBP81opyRFWvkvSKbO693yDl70.mft (raw, json)
Hash identifier: E/DFaIEgvRgJEU4UM1QFGqeCL/yyMmYR1jMQlERGumk=
Subject key identifier: 67:95:47:ED:46:96:87:01:EC:D7:2D:78:2D:87:17:65:57:50:B5:60
Authority key identifier: BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
Certificate issuer: /CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Certificate serial: 0197B88F6763B7996B48784CB41878B85596
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
Manifest number: 07DF
Signing time: Sat 28 Jun 2025 22:01:35 +0000
Manifest this update: Sat 28 Jun 2025 22:01:35 +0000
Manifest next update: Sun 29 Jun 2025 22:01:35 +0000
Files and hashes: 1: 8TP605-bnnRU4oKxlSCpw5mXUvE.roa (hash: mDnmEgfw91sdWLEWlPQZ2jWiCvBV4IYovQSRnJwJt28=)
2: vmBP81opyRFWvkvSKbO693yDl70.crl (hash: NfYctaBDF6OfRc4HyZQjzlDqVO1O6rL5K4uyF7TFaiE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 19:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:8f:67:63:b7:99:6b:48:78:4c:b4:18:78:b8:55:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be604ff35a29c91156be4bd229b3baf77c8397bd
Validity
Not Before: Jun 28 22:01:35 2025 GMT
Not After : Jun 29 22:01:35 2025 GMT
Subject: CN=679547ed46968701ecd72d782d8717655750b560
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:b8:a8:1a:b5:ef:f2:33:24:d9:45:f6:05:6b:
f5:76:bd:54:bd:53:1e:37:e2:64:31:af:12:62:11:
c2:84:44:25:fc:36:d0:de:f9:3e:b7:8c:2c:60:04:
8c:84:5a:07:47:36:22:59:fb:47:09:ad:87:d1:0b:
74:8a:97:ab:1f:7b:32:03:2b:51:af:30:a1:f7:6b:
b7:97:45:f7:38:af:d0:0e:4b:73:8c:1f:aa:82:9c:
7b:fb:01:7d:d2:e3:65:d4:32:35:b7:1d:43:dd:ae:
ed:41:26:47:e1:c8:b1:97:08:08:6b:0a:e5:24:32:
cd:8c:cf:c5:e6:6f:57:ca:c2:b3:c2:af:a7:5a:0f:
ea:f7:25:d5:3c:0c:18:b3:2b:4a:98:11:97:25:11:
7e:4c:4e:c9:88:8e:55:5c:70:5f:f3:55:61:09:3e:
0d:b7:0e:7a:a5:7d:16:84:c0:03:e1:2d:0b:c0:f3:
07:5e:a6:d9:4b:34:52:c8:53:a3:f4:e8:fe:0b:8f:
d8:81:4a:f0:7e:32:d7:73:06:8f:b5:b2:7f:b8:a8:
62:28:c7:96:09:00:b8:97:23:14:95:e8:79:24:ab:
8c:32:62:55:44:28:b4:54:a6:ed:1e:68:f2:93:fa:
74:1d:b4:0c:7f:6d:47:38:eb:e2:bb:a8:41:54:58:
57:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:95:47:ED:46:96:87:01:EC:D7:2D:78:2D:87:17:65:57:50:B5:60
X509v3 Authority Key Identifier:
keyid:BE:60:4F:F3:5A:29:C9:11:56:BE:4B:D2:29:B3:BA:F7:7C:83:97:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vmBP81opyRFWvkvSKbO693yDl70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/e849bb-1304-44ea-838f-1a39c3d34f08/1/vmBP81opyRFWvkvSKbO693yDl70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:5e:e1:7e:59:bd:91:85:2d:00:29:05:a3:62:65:08:60:0a:
97:21:96:04:0a:be:5d:cd:f9:3f:a9:67:80:f0:e7:7c:3b:8a:
75:5f:66:87:a6:4b:7c:e5:7c:36:21:c7:79:f2:2b:ab:79:a4:
87:24:ed:e2:3b:34:ce:02:af:3f:14:fb:5e:fa:27:b1:f6:48:
08:54:8f:79:7f:e8:06:77:97:3c:84:06:31:3b:ef:26:61:16:
77:1d:27:9f:37:66:fa:99:7c:e1:61:bc:8d:93:99:31:bf:4c:
2b:c2:b2:cf:4a:f8:cf:90:95:8b:ea:a5:a4:a9:83:8b:2f:eb:
ed:7d:78:62:b6:ba:69:d1:51:0b:da:f3:4f:d9:5b:8b:8f:6f:
e9:74:b4:9d:ed:20:1d:e9:89:c9:34:dc:8c:46:75:a6:79:e7:
c4:83:42:81:eb:1d:f1:a4:6e:cc:46:83:c8:bc:60:d1:b1:50:
7d:d4:9e:be:fb:9b:e5:c6:1d:a7:1e:c4:7c:c0:0e:27:16:b1:
d7:69:77:57:68:66:0e:82:1d:00:ef:83:c1:81:fa:0e:88:39:
cf:77:5f:f6:52:1a:0c:66:d7:23:0e:97:98:21:b0:0b:d9:3d:
8b:cd:1b:b4:5c:b6:1f:3d:c3:4c:55:71:e0:13:f7:d2:9d:f9:
8c:5b:bc:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 01:46:16 2025 by rpki-client