Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
File: VDxwGANHJZY6lxyWqMqrWYyuY4o.mft (raw, json)
Hash identifier: 5E8gNmQDRVTW8pqgiOqB+KXoP2L8F5TU5RzAV7XZZZA=
Subject key identifier: 5D:87:F0:EA:F4:03:C7:A2:B2:AA:68:0E:48:D9:22:09:8B:C7:EA:71
Authority key identifier: 54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
Certificate issuer: /CN=543c7018034725963a971c96a8caab598cae638a
Certificate serial: 0197B6D7488A62C4DAD1B63DEFE79F489B34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
Manifest number: 03AA
Signing time: Sat 28 Jun 2025 14:00:51 +0000
Manifest this update: Sat 28 Jun 2025 14:00:51 +0000
Manifest next update: Sun 29 Jun 2025 14:00:51 +0000
Files and hashes: 1: O7wVhYp5aN-EHbBcAt5o4QIzfyg.roa (hash: 1pH3pLqu6QshZ8HwYPfHNSe335AW5zx9SMrVG3Y2btc=)
2: VDxwGANHJZY6lxyWqMqrWYyuY4o.crl (hash: Ej7+E29y4pKmWHoEoh9ItTUgdNwuJLnhQRb4DxWVUaI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:48:8a:62:c4:da:d1:b6:3d:ef:e7:9f:48:9b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=543c7018034725963a971c96a8caab598cae638a
Validity
Not Before: Jun 28 14:00:51 2025 GMT
Not After : Jun 29 14:00:51 2025 GMT
Subject: CN=5d87f0eaf403c7a2b2aa680e48d922098bc7ea71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:97:77:d8:d0:b3:09:e2:6d:36:ed:df:2d:73:
eb:5d:21:03:fa:fb:5f:71:2b:0c:38:02:38:16:7d:
24:9a:81:05:4f:7a:59:79:20:c9:6f:8f:eb:53:f5:
e9:05:7f:47:af:12:af:0c:c2:0b:de:c2:c3:45:0f:
1c:bb:8e:13:e2:c5:e2:57:f7:75:09:38:e5:95:e4:
2b:60:97:14:ef:1e:5f:c7:21:da:4c:72:ed:70:f0:
57:fa:5c:c7:1b:05:a1:36:67:64:1e:e8:b6:e4:02:
48:20:61:35:1d:56:4c:5b:00:8f:99:5e:24:a0:0f:
b3:0a:0a:cb:05:28:9c:d3:68:03:a6:be:31:a9:b7:
bf:ea:d6:42:84:a6:3e:f7:6a:31:4c:4d:28:c7:90:
4d:69:74:0d:3b:36:84:67:b4:ba:a8:12:87:da:99:
57:6e:32:e8:de:e8:bd:ac:07:75:e2:f3:58:45:a3:
d6:d0:d5:fe:19:aa:dc:29:d9:0c:ff:4a:32:04:f9:
3f:77:16:b7:51:d5:99:58:2d:70:ee:24:22:93:db:
d9:6c:e0:6a:14:08:6b:ea:76:ef:d0:a6:55:06:f6:
d0:3b:c7:f1:14:35:ad:d0:b5:4c:af:a6:82:8f:99:
0a:4d:bd:9a:41:7e:55:1b:ff:b9:30:8e:a5:ce:dc:
28:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:87:F0:EA:F4:03:C7:A2:B2:AA:68:0E:48:D9:22:09:8B:C7:EA:71
X509v3 Authority Key Identifier:
keyid:54:3C:70:18:03:47:25:96:3A:97:1C:96:A8:CA:AB:59:8C:AE:63:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VDxwGANHJZY6lxyWqMqrWYyuY4o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/509d0b-acd1-4958-a3cd-375f2449a8c1/1/VDxwGANHJZY6lxyWqMqrWYyuY4o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:cc:5d:0f:04:68:69:ba:2c:34:f1:07:14:90:61:56:8c:5a:
07:8d:d8:c5:5e:f1:54:ee:a9:db:1d:29:f7:c1:2a:7a:7a:37:
e8:ee:a3:8a:91:6e:68:9c:4f:23:76:5e:62:a7:34:b5:a8:7d:
a7:ad:5c:f3:6d:4a:56:08:17:fb:cc:3d:1d:47:c7:0d:0e:65:
34:9e:5b:55:50:34:8d:72:5e:60:52:79:dd:f0:e3:b9:9b:e5:
91:b3:b1:2a:c3:db:7a:8e:a9:49:89:55:56:82:89:4f:15:49:
7c:ce:65:6a:87:f9:ea:33:b7:64:33:12:d6:5a:92:45:3c:7c:
da:43:6f:1f:df:77:4d:d3:dd:4e:3d:82:e9:ce:1a:8f:6e:62:
41:22:a9:82:40:bc:f3:80:ab:98:45:b4:03:9b:df:b0:f3:e6:
d0:3e:04:e1:d2:f7:e5:b0:fe:f2:3d:69:ad:20:cf:b7:b9:a6:
84:a1:b2:f0:49:05:05:01:bf:c1:7c:3c:1b:c5:02:77:97:40:
ef:cb:4b:63:99:39:76:28:25:db:0c:36:33:77:7d:12:a0:e0:
16:81:91:40:d8:3b:9d:98:fe:20:1c:66:be:dd:84:5c:75:4b:
a6:8f:2c:3a:fd:eb:b0:ec:3a:ef:a9:77:70:0a:28:68:22:d8:
46:00:51:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:35 2025 by rpki-client