Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
File: vFxHuPnkKkkot2dDFqcap21AHjw.mft (raw, json)
Hash identifier: fs9RV/o0+zR1AXt+8t0easOY/dv9WUso21B48RPAkDc=
Subject key identifier: D6:4F:05:56:FC:08:74:5F:59:7E:CB:DB:44:B3:6A:72:9F:E9:88:2B
Authority key identifier: BC:5C:47:B8:F9:E4:2A:49:28:B7:67:43:16:A7:1A:A7:6D:40:1E:3C
Certificate issuer: /CN=bc5c47b8f9e42a4928b7674316a71aa76d401e3c
Certificate serial: 0197B6A07FD6E97C17C5414D04A3525F586C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
Manifest number: 0B46
Signing time: Sat 28 Jun 2025 13:01:01 +0000
Manifest this update: Sat 28 Jun 2025 13:01:01 +0000
Manifest next update: Sun 29 Jun 2025 13:01:01 +0000
Files and hashes: 1: vFxHuPnkKkkot2dDFqcap21AHjw.crl (hash: +/e6uJuuss/RYB569uWwzjfS6a38YmMH+/jWIK1sYns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:7f:d6:e9:7c:17:c5:41:4d:04:a3:52:5f:58:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc5c47b8f9e42a4928b7674316a71aa76d401e3c
Validity
Not Before: Jun 28 13:01:01 2025 GMT
Not After : Jun 29 13:01:01 2025 GMT
Subject: CN=d64f0556fc08745f597ecbdb44b36a729fe9882b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:10:fb:71:d1:d1:09:e1:47:63:59:34:8d:ef:
bd:c0:54:e2:1a:3c:18:67:4d:b0:3a:d3:f2:94:f1:
50:e7:9a:56:d8:fa:19:a2:b2:e4:fe:61:92:81:d2:
21:ef:16:a7:7d:14:ac:55:d7:27:24:bc:17:44:c7:
03:a7:fd:2c:12:4e:d6:68:12:48:99:31:f4:08:87:
20:25:84:f8:5b:59:90:ac:6e:eb:65:86:5a:19:b1:
a1:59:8d:8d:d3:93:aa:b5:78:2f:d1:cd:fa:4e:3b:
2e:40:b8:d7:0e:75:19:0f:d3:cd:18:73:80:6b:63:
e9:d6:7c:af:4f:bd:c9:13:70:83:dd:93:4e:29:5a:
e4:9a:90:18:26:a0:18:64:8c:90:d6:d3:15:f1:ff:
7f:e1:6a:b5:43:7c:0c:c4:ae:30:b6:01:dd:79:ba:
4f:06:e1:e5:7b:27:25:1a:3e:cd:0f:5c:46:1d:06:
8e:86:10:69:75:b2:83:c7:03:05:44:97:8f:e5:42:
11:d4:62:a9:9c:6c:9d:96:8f:12:64:61:f5:84:e2:
9d:a9:33:2a:c1:85:90:91:f6:18:f0:4f:20:f4:e9:
54:2a:87:74:fc:85:ce:45:25:21:cc:1b:cc:75:4d:
bf:61:bd:20:a3:a1:02:e2:5b:40:e6:7f:47:93:16:
82:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:4F:05:56:FC:08:74:5F:59:7E:CB:DB:44:B3:6A:72:9F:E9:88:2B
X509v3 Authority Key Identifier:
keyid:BC:5C:47:B8:F9:E4:2A:49:28:B7:67:43:16:A7:1A:A7:6D:40:1E:3C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vFxHuPnkKkkot2dDFqcap21AHjw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/fd8762-47bc-4511-93a5-7a18c179076d/1/vFxHuPnkKkkot2dDFqcap21AHjw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:59:19:ab:bf:83:46:28:f3:7a:41:9d:dc:00:60:2c:8b:37:
e5:ba:2b:ff:b4:68:81:25:ab:05:9e:97:59:29:48:a5:26:cd:
f8:a5:67:f1:88:7f:d4:2a:c7:c7:99:07:a5:2c:77:90:79:2e:
bf:62:16:3f:20:85:95:e8:be:9a:1b:2c:16:45:09:b0:5c:15:
d9:b1:50:48:c3:13:4a:a7:ba:3c:aa:11:7b:d8:33:23:05:e0:
3f:e2:32:ff:ee:a5:0b:a1:ac:5c:26:4b:d9:7f:5a:e8:94:23:
29:d9:04:6f:a6:8d:aa:35:8a:a1:9a:74:fa:49:f5:52:61:86:
bd:7f:03:61:72:44:3a:15:c9:70:67:56:f6:b8:c8:f0:15:7c:
9e:1f:18:eb:80:0f:91:74:2d:aa:0d:5c:af:9e:12:d6:b5:23:
c0:81:4e:ec:7e:47:ae:26:77:83:3c:c8:75:e3:5d:de:e0:d7:
3e:c7:54:86:4c:e5:2b:e5:23:2f:2d:63:1d:d2:63:6a:98:01:
a7:cd:46:4f:ae:57:a9:82:4b:79:07:ed:b2:e2:9d:29:26:79:
ad:e5:b2:3f:49:33:8c:87:b5:e0:8d:77:db:5e:53:ec:f5:47:
63:87:03:22:44:5a:a7:2c:46:f3:f6:27:b3:b5:f0:03:1c:22:
28:14:b5:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:57:51 2025 by rpki-client