Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
File: vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft (raw, json)
Hash identifier: +/RUzIHDOlanZkk4IuwWyKH1ldCpqbQo5JhMpX6HFXo=
Subject key identifier: 70:11:F4:E3:36:36:7E:A3:5B:6E:A8:7A:71:B8:F0:EF:12:80:0A:9B
Authority key identifier: BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
Certificate issuer: /CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Certificate serial: 0197B7456860FE70E895FA5F41D32BBC5F40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
Manifest number: 150B
Signing time: Sat 28 Jun 2025 16:01:08 +0000
Manifest this update: Sat 28 Jun 2025 16:01:08 +0000
Manifest next update: Sun 29 Jun 2025 16:01:08 +0000
Files and hashes: 1: 2NhKjFbuAMp_doRz4AUPYRbSyEU.roa (hash: IgIsz5WqF9AXjPzeVD1tKo5xC9L3dTvcfnef5uQtbKI=)
2: vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl (hash: BCP4iyzpAh4MTqLIx6h/HuCpyd6HopnRGZd/tKyuyNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:68:60:fe:70:e8:95:fa:5f:41:d3:2b:bc:5f:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Validity
Not Before: Jun 28 16:01:08 2025 GMT
Not After : Jun 29 16:01:08 2025 GMT
Subject: CN=7011f4e336367ea35b6ea87a71b8f0ef12800a9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:66:eb:85:96:ec:cb:6e:a7:95:01:ca:a1:dd:
52:a3:f5:0e:ae:e4:30:a1:af:33:ce:41:3a:45:2e:
13:30:df:1c:20:47:75:2f:86:ce:4a:87:9b:6f:db:
74:23:8c:2a:bf:d3:06:f5:5c:d5:0a:dc:f6:47:0a:
30:8a:2a:e0:b4:e7:88:6c:9d:16:a5:3a:9a:4a:d1:
cb:a6:8c:f3:7c:dd:e1:57:0a:0c:37:09:9e:5d:72:
84:11:58:08:4b:f8:09:4e:97:7b:7e:29:2f:bd:34:
05:19:58:33:a8:7f:a9:59:8f:bc:34:42:7d:52:81:
6a:f2:35:99:d8:76:75:6f:5e:e6:d7:b6:8f:09:62:
cc:72:39:29:37:f1:83:d1:c1:e9:b6:ba:15:58:e3:
ae:5d:52:ef:62:10:6d:07:08:47:64:b9:8f:0a:c5:
e4:39:b6:1b:4e:68:50:3e:9a:b4:7e:cd:94:82:58:
00:d0:54:05:08:2c:aa:ad:44:79:91:2b:1d:93:79:
47:54:f2:6c:ed:8f:ba:78:23:df:67:48:a4:7f:fc:
50:cc:61:6e:8b:28:4e:05:31:66:cb:22:d6:6a:d9:
52:8f:f6:99:39:46:7e:cd:ae:5c:b2:97:32:2e:ce:
55:79:20:89:63:ac:15:70:58:dd:17:f2:38:d6:4a:
14:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:11:F4:E3:36:36:7E:A3:5B:6E:A8:7A:71:B8:F0:EF:12:80:0A:9B
X509v3 Authority Key Identifier:
keyid:BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b7:5f:51:6a:ae:53:4a:7c:f7:f8:cc:f8:40:72:e0:8d:4b:02:
9a:e8:b1:08:a5:91:db:1f:f9:5d:73:91:b1:7b:85:fb:88:a9:
16:67:2f:64:82:0d:58:c8:47:a7:c6:63:7a:df:fe:59:79:e9:
1b:34:b9:26:fd:0f:6b:80:f7:5e:25:fc:3f:7b:d5:7a:e3:56:
a4:b5:3f:27:05:7f:1e:63:38:e8:6a:90:58:59:eb:ca:50:6e:
f8:c9:b3:85:a8:d9:a3:1e:d4:d0:6f:70:9f:2d:1a:c8:94:b4:
17:99:9c:18:92:fa:9a:63:12:11:14:d7:0d:0a:58:ad:12:60:
91:a0:5c:16:70:68:2e:f0:c4:17:9e:96:8c:38:86:32:71:67:
10:b6:e5:76:84:1b:1c:a4:46:c8:61:66:1b:18:43:25:f0:cc:
95:45:78:78:02:21:50:21:61:85:1f:af:4c:ef:49:3b:ec:39:
a3:ec:23:79:61:81:88:df:15:cb:ab:92:f6:e2:31:8a:18:a6:
33:86:9e:44:3b:c5:e8:0d:45:b8:3e:84:46:e3:c8:06:44:e8:
49:2f:73:bd:cb:5c:89:0b:0e:19:70:ba:7d:b1:04:23:3c:5e:
27:3b:15:ea:40:0e:77:19:f5:98:bc:7f:9d:7c:24:4e:e1:04:
34:06:e5:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:16:25 2025 by rpki-client