Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
File: vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft (raw, json)
Hash identifier: 46We1b/ITHiTc/hZn5NYJrrXdGOO/AjYC/zJG2U3DRM=
Subject key identifier: 22:7D:C8:DB:D3:6C:01:BE:92:29:A1:71:3D:76:6D:93:DF:3E:A9:02
Authority key identifier: BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
Certificate issuer: /CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Certificate serial: 0196BE252F872CA7BF56F20829AB15F86B17
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
Manifest number: 148A
Signing time: Sun 11 May 2025 07:00:30 +0000
Manifest this update: Sun 11 May 2025 07:00:30 +0000
Manifest next update: Mon 12 May 2025 07:00:30 +0000
Files and hashes: 1: 2NhKjFbuAMp_doRz4AUPYRbSyEU.roa (hash: IgIsz5WqF9AXjPzeVD1tKo5xC9L3dTvcfnef5uQtbKI=)
2: vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl (hash: B/CaceL6+MxdPDi19tx+d30fcTgKf5jJM5BIAaHSOcc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:be:25:2f:87:2c:a7:bf:56:f2:08:29:ab:15:f8:6b:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bda3d0bb422b0bca706716c20f7ad58dd2765471
Validity
Not Before: May 11 07:00:30 2025 GMT
Not After : May 12 07:00:30 2025 GMT
Subject: CN=227dc8dbd36c01be9229a1713d766d93df3ea902
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:19:1c:48:62:89:0e:8a:cd:70:f8:5c:dc:98:
02:6f:2d:e5:3e:49:d7:b5:47:47:8f:f9:98:31:02:
d3:8f:44:63:bd:c8:e7:c4:ce:89:c0:32:cb:a7:25:
0a:24:d1:17:9e:23:b0:1b:68:71:56:15:56:fb:db:
bc:d9:17:ca:c3:39:c1:5f:db:09:bd:44:c4:2b:21:
5a:84:46:64:9d:48:57:a3:22:2f:36:d9:ad:bc:4a:
2f:57:0c:dc:14:6a:69:10:3c:98:d1:73:8d:1a:fb:
85:5f:e2:73:4c:59:80:c0:77:2d:b3:ff:52:4b:6b:
50:d5:16:df:52:12:de:65:77:cc:8c:8b:32:4e:ab:
78:bf:3a:b6:bf:4c:e8:d9:58:45:71:a7:05:e1:2c:
3d:46:68:ad:35:21:bf:b8:91:69:30:e9:ea:c8:f5:
92:d3:a7:af:c2:f2:79:67:49:9f:0c:b0:a0:88:24:
26:dd:7f:06:ce:58:38:cb:fe:0e:8f:e3:c3:47:48:
61:5a:cf:82:29:f9:11:01:ce:06:da:d0:d2:88:1c:
87:9f:b2:db:fd:78:74:21:3d:13:9d:16:db:f8:4b:
f4:81:57:87:fb:9d:46:00:52:9a:2d:d0:58:f7:2b:
a3:c5:d6:da:23:16:e4:e8:eb:1e:cc:d5:fe:bc:c7:
b6:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:7D:C8:DB:D3:6C:01:BE:92:29:A1:71:3D:76:6D:93:DF:3E:A9:02
X509v3 Authority Key Identifier:
keyid:BD:A3:D0:BB:42:2B:0B:CA:70:67:16:C2:0F:7A:D5:8D:D2:76:54:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f8a46e-bdfd-4df6-8261-f23283601764/1/vaPQu0IrC8pwZxbCD3rVjdJ2VHE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:da:55:e7:9a:01:4a:1b:fb:ad:0b:0a:0f:7b:d4:c1:b5:de:
5c:78:dd:ed:65:6f:f5:a1:84:37:46:38:83:c2:dc:60:fb:cb:
3b:1c:89:16:68:3c:6a:b1:40:ae:be:23:f2:5a:75:a2:29:15:
b0:4a:eb:cc:8c:e7:bc:27:9b:7b:67:b9:31:bc:f7:1e:c0:55:
01:f5:5f:2d:d1:17:8e:8d:0e:65:2c:bd:65:fd:7e:b0:cf:ef:
4b:8b:9e:c8:8b:9f:6a:aa:d9:01:ad:b5:c2:de:fc:9e:32:e0:
1b:a5:dc:e4:1d:91:55:f1:99:c3:c1:fc:6d:03:ca:5a:67:9c:
9b:9a:c3:3f:31:11:18:b0:80:cc:7d:a6:8c:a3:cb:e4:eb:17:
9b:83:96:12:c0:93:04:4d:26:0b:c0:5f:e3:c3:ee:b2:c8:e0:
0a:f8:20:af:55:9e:0f:0a:87:30:5c:e2:28:59:8f:c1:f3:72:
21:ea:85:cd:52:c0:4b:86:11:66:a2:8b:db:d0:5e:18:13:6f:
8a:37:49:4e:74:9b:51:d4:9d:1d:f9:0f:a9:17:f5:aa:5b:f6:
48:b2:a9:b7:97:42:58:3f:17:2f:a4:11:40:f8:93:e5:79:1a:
2c:92:c5:a0:56:c3:fa:dd:9c:79:9c:12:b6:cf:f4:23:ed:6d:
48:ad:4e:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 10:33:09 2025 by rpki-client