Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.mft
File: VmhcNSHqj-av5l1TOjsZno92UFs.mft (raw, json)
Hash identifier: 9W80eCQgtRkMDLOJB3ry+CEhpMX3PvIWRsRXAg5XPSc=
Subject key identifier: 5F:5D:86:C3:49:8D:0D:E7:02:08:FF:0D:0B:FB:B1:85:B3:CB:84:0C
Authority key identifier: 56:68:5C:35:21:EA:8F:E6:AF:E6:5D:53:3A:3B:19:9E:8F:76:50:5B
Certificate issuer: /CN=56685c3521ea8fe6afe65d533a3b199e8f76505b
Certificate serial: 0197B8906B191B247CD4007321A32C6F43AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VmhcNSHqj-av5l1TOjsZno92UFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.mft
Manifest number: 14BB
Signing time: Sat 28 Jun 2025 22:02:41 +0000
Manifest this update: Sat 28 Jun 2025 22:02:41 +0000
Manifest next update: Sun 29 Jun 2025 22:02:41 +0000
Files and hashes: 1: VmhcNSHqj-av5l1TOjsZno92UFs.crl (hash: 6xMK3SjcV7s/mizaBAnB4mO6fj86jyEfEKvFYJN/J3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/VmhcNSHqj-av5l1TOjsZno92UFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:90:6b:19:1b:24:7c:d4:00:73:21:a3:2c:6f:43:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=56685c3521ea8fe6afe65d533a3b199e8f76505b
Validity
Not Before: Jun 28 22:02:41 2025 GMT
Not After : Jun 29 22:02:41 2025 GMT
Subject: CN=5f5d86c3498d0de70208ff0d0bfbb185b3cb840c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:77:5a:1d:83:90:fd:43:99:6d:30:82:72:30:
dd:35:db:f2:41:9b:7e:c0:48:5a:21:b1:bf:ba:1b:
45:a1:a2:69:54:1d:03:63:a2:a0:86:e5:ea:13:46:
6b:2b:61:01:32:56:83:e1:1e:53:c2:b0:30:04:b5:
67:7b:4f:85:d1:21:2d:68:79:72:2a:98:85:d5:cc:
fb:70:ff:cb:c4:59:35:4d:c9:89:a7:16:b9:a7:30:
99:41:b5:87:2d:2d:dc:ab:f2:ac:7c:09:94:54:38:
90:e3:1c:e3:74:32:3e:f4:ee:66:6d:6e:30:7e:55:
cf:6d:17:85:71:cc:56:8d:7a:c3:b1:c1:e5:53:54:
be:ac:d9:9e:2a:de:0d:42:29:c8:ef:c5:c3:cc:dd:
a7:fe:84:40:85:f5:1e:57:47:ce:fa:1d:76:9f:a3:
c9:99:cc:20:8f:35:71:2b:e4:e5:f1:47:d5:ec:0b:
b7:96:8a:a1:08:f3:50:bc:1c:9f:14:28:7a:56:50:
82:3c:28:af:86:9b:87:5c:18:78:c7:97:3d:30:33:
4f:5f:5c:61:fe:61:1e:e6:10:9b:fc:c0:21:80:18:
20:db:eb:12:ba:fa:0e:e3:06:d7:d2:12:fa:b5:7c:
fa:8b:0b:96:01:88:bd:63:86:ab:72:19:de:72:13:
07:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:5D:86:C3:49:8D:0D:E7:02:08:FF:0D:0B:FB:B1:85:B3:CB:84:0C
X509v3 Authority Key Identifier:
keyid:56:68:5C:35:21:EA:8F:E6:AF:E6:5D:53:3A:3B:19:9E:8F:76:50:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VmhcNSHqj-av5l1TOjsZno92UFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/16fcd2-5de3-4216-a75c-58c32895dcde/1/VmhcNSHqj-av5l1TOjsZno92UFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:5b:11:f8:e0:f1:96:2c:26:26:a0:4c:d9:79:dc:6e:03:b5:
e9:aa:7e:14:64:f7:a9:c4:4a:90:f5:db:68:58:57:50:79:56:
bb:0d:42:f9:45:47:c7:86:92:bd:ba:9a:96:1e:84:27:84:ca:
0d:f1:f2:56:2a:7e:fe:f9:a2:58:70:ea:8b:0c:f1:00:13:7d:
8e:a0:fe:bc:51:0d:bd:1a:7c:1b:7c:69:44:e0:4d:0b:33:09:
ba:14:11:db:9f:03:ba:66:a1:49:0d:93:35:e4:00:63:be:f8:
ef:7f:2c:1b:96:f7:2b:87:ed:5f:ba:c7:3b:03:6c:43:6e:50:
21:11:94:c6:7c:d0:0a:46:56:a1:90:e2:8d:f1:e4:85:61:2c:
e0:e2:e1:f3:63:d3:8c:57:c1:d0:09:8e:3c:fa:ef:50:7d:02:
b1:98:03:75:fa:7e:7c:43:56:3d:16:aa:d9:50:fb:07:c0:db:
de:43:ad:1c:82:f7:1b:43:60:3a:35:9a:cd:f7:34:3f:aa:ec:
6e:b7:9b:0e:d8:a6:12:82:f0:c6:69:2f:e8:0f:16:e4:0c:ad:
f6:e5:97:d2:51:42:a5:f5:35:1f:5c:47:b6:ff:69:61:a9:4f:
6e:21:75:e0:8c:fc:66:87:fb:73:28:7b:8b:55:94:93:97:4e:
c4:1f:99:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:16:23 2025 by rpki-client