Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: w4NhNX/6039ndlMb+TyRgvjesUHWWqahcmFcRsofvig=
Subject key identifier: 9D:24:76:61:1C:CB:90:77:EA:50:D2:DF:F0:34:A9:FB:38:56:F0:A7
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 0196BFA5CD543258C29B9F5E9601D332E91E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 032A
Signing time: Sun 11 May 2025 14:00:36 +0000
Manifest this update: Sun 11 May 2025 14:00:36 +0000
Manifest next update: Mon 12 May 2025 14:00:36 +0000
Files and hashes: 1: O7wVhYp5aN-EHbBcAt5o4QIzfyg.roa (hash: 1pH3pLqu6QshZ8HwYPfHNSe335AW5zx9SMrVG3Y2btc=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: ZRduftfQDOMxHx+mBbCDhc7t1hrqbIiSZy3T2b4/VTY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:a5:cd:54:32:58:c2:9b:9f:5e:96:01:d3:32:e9:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: May 11 14:00:36 2025 GMT
Not After : May 12 14:00:36 2025 GMT
Subject: CN=9d2476611ccb9077ea50d2dff034a9fb3856f0a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2f:27:a2:c1:f9:12:71:df:23:95:85:71:8c:
8e:03:9d:8a:2b:26:87:73:43:8c:10:08:0f:4f:7b:
5a:b3:3c:ba:da:7c:65:6e:d5:a8:dd:1d:d2:e8:96:
98:f4:10:7f:30:d5:3f:b3:46:00:45:2e:0a:03:13:
6c:75:62:27:3a:97:e7:c6:ec:c9:e4:77:bf:fc:f9:
b5:cd:35:21:55:df:70:2a:53:f1:dc:fd:6b:56:50:
9a:d4:b8:ab:54:e1:c4:11:9f:29:81:f7:33:80:94:
21:8b:c4:f3:e1:80:81:44:a9:f2:5e:88:c5:7e:f0:
f1:4b:95:4f:0f:10:cf:ce:a5:50:a4:60:67:be:69:
0b:98:b2:02:ea:b9:5f:fe:64:7e:85:b1:b7:f4:9a:
3b:83:86:85:d4:7b:24:32:80:69:a9:b9:5d:66:80:
fc:dd:b5:0c:76:ab:5c:05:e6:33:3b:de:1e:c9:dc:
9b:03:fc:b9:0b:dd:24:0f:3f:4d:50:b3:48:95:58:
a2:9e:04:16:0b:9f:e9:8b:67:0b:5b:68:45:b8:f2:
bb:6e:f1:a3:8f:4a:a9:3b:51:44:ca:7a:7f:14:05:
ff:50:64:6b:02:05:dc:05:72:1c:9f:a5:27:1b:57:
64:a2:c7:57:f5:97:c8:15:a1:48:dc:68:66:d7:92:
f2:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:24:76:61:1C:CB:90:77:EA:50:D2:DF:F0:34:A9:FB:38:56:F0:A7
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6b:ae:ec:2b:1a:67:36:a3:33:f1:1a:69:a9:e8:a0:fb:aa:
d7:91:be:13:4e:4e:55:34:ba:93:a7:d8:8a:57:27:55:0f:91:
81:62:b5:02:60:40:77:7f:90:5b:f8:4b:24:5e:90:66:cc:da:
70:02:9e:41:b9:51:0a:55:6d:5a:a3:64:f9:18:ae:dc:d5:37:
e7:c2:dc:c4:26:6f:d2:54:e2:ab:eb:57:60:9d:7a:1e:60:f2:
e0:1f:c2:8c:8b:0a:59:01:57:e7:43:9d:18:9e:4a:56:3a:ca:
3b:3d:fd:52:0c:bb:17:b5:cc:ee:a2:9a:72:02:13:fb:10:dc:
67:6a:03:93:b4:d3:ab:1a:50:9f:19:e8:49:3c:df:2c:11:04:
58:05:52:82:ea:13:89:b7:9d:36:c3:f8:4b:ca:f0:13:cb:73:
7b:6f:8d:b4:27:0b:ab:3e:9e:a7:c5:3c:42:11:84:b3:32:ca:
93:e8:dd:64:43:e5:17:29:ed:6b:96:8b:64:0d:61:9b:2a:bc:
28:80:de:8a:4a:5d:6f:52:57:25:50:38:09:2d:c7:74:07:51:
87:c4:98:d5:af:66:a1:d5:14:b5:59:3c:62:60:4c:b9:57:14:
59:07:e3:e9:98:36:de:54:03:da:15:9e:27:66:d8:ae:3a:d9:
f1:5c:e9:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 16:59:57 2025 by rpki-client