Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
File: vyk4WQ4NABlyVmLUtK5Myew6c00.mft (raw, json)
Hash identifier: /cyqUliriyn79lb3K3Ma/LE0qP99+SJOP6Vmg1YbczM=
Subject key identifier: A4:D6:94:8A:15:F2:FB:63:B1:8B:DD:41:B2:F0:A2:AD:51:C6:EE:62
Authority key identifier: BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
Certificate issuer: /CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Certificate serial: 0196A0BF69D37EBAC8778026ABAAC3B2F2A3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
Manifest number: 07C4
Signing time: Mon 05 May 2025 14:00:21 +0000
Manifest this update: Mon 05 May 2025 14:00:21 +0000
Manifest next update: Tue 06 May 2025 14:00:21 +0000
Files and hashes: 1: vQtF-L-9ooOZxF-UCZufP97_4Tk.roa (hash: uZu5EdE4zrTNj+JjaQISrCgWGaWpGkfUNjvMVUEKljA=)
2: vyk4WQ4NABlyVmLUtK5Myew6c00.crl (hash: 7HjGXbPR0Gx9IuS/ylJV8o0aWBKlPrZ3Rs6mFYy/PUg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 06 May 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a0:bf:69:d3:7e:ba:c8:77:80:26:ab:aa:c3:b2:f2:a3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Validity
Not Before: May 5 14:00:21 2025 GMT
Not After : May 6 14:00:21 2025 GMT
Subject: CN=a4d6948a15f2fb63b18bdd41b2f0a2ad51c6ee62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b8:16:ee:66:f9:7b:ed:2f:45:20:35:54:d3:
22:12:85:cf:6a:ee:92:d0:5a:df:52:e7:79:72:73:
19:b3:ed:96:5d:9b:b4:d9:2d:66:28:c7:78:f2:44:
46:11:d0:f3:5e:b3:a5:17:82:24:77:70:fc:ca:97:
04:18:9f:c0:62:14:10:4a:ad:08:51:93:8c:f8:e7:
57:78:d8:1d:f6:3a:cc:8a:49:ce:89:9e:a9:f7:72:
ad:25:c4:5f:da:35:51:ee:9d:0a:2f:f7:57:90:b9:
52:b2:d3:01:36:4b:1f:d5:ec:4b:21:95:fc:81:3e:
ff:79:ab:cf:9a:70:c9:9e:d3:9d:56:31:5c:9c:67:
e2:5b:33:5f:55:1c:b4:71:40:66:8f:43:ef:d2:ce:
d4:c6:8a:05:76:90:f3:a2:43:91:dc:6c:e7:f0:73:
e3:95:cb:db:e9:fb:a3:c3:d3:5f:e8:c5:84:fc:b0:
5a:a9:63:bf:55:8c:ed:2b:8f:2e:2d:6e:3e:1d:eb:
7e:07:16:69:78:ee:ad:23:68:4a:a8:ae:5d:03:4f:
0f:ba:4d:3e:1d:5f:1f:e9:d6:04:41:8d:7c:92:63:
27:b9:47:0f:65:65:59:74:17:6e:05:ce:4f:a3:d2:
1a:26:d5:a8:cc:68:25:22:c8:c9:47:3b:c0:08:10:
f9:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:D6:94:8A:15:F2:FB:63:B1:8B:DD:41:B2:F0:A2:AD:51:C6:EE:62
X509v3 Authority Key Identifier:
keyid:BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:45:4e:64:7f:76:d6:78:28:c1:42:33:09:a5:1d:26:eb:21:
f9:b2:3d:2c:c4:1f:fe:73:8c:b3:4d:55:f5:1f:8c:71:ac:e7:
47:19:c1:a3:4a:ca:0b:73:9f:74:b7:d8:c1:92:dd:7f:34:ca:
1c:03:9b:87:1a:80:73:d4:0e:f8:75:95:31:4d:20:a3:8a:b7:
80:78:74:7a:44:f5:41:c5:80:12:b4:a5:3d:3b:da:07:fb:57:
b3:c4:5a:5d:c9:bb:26:1f:6e:6b:5b:73:ed:f6:6e:28:e5:85:
14:c2:be:98:fe:a3:71:74:07:09:07:c5:9b:ac:cb:20:69:53:
98:a1:ad:f6:be:77:f6:85:37:f1:60:6b:d6:c4:f8:1a:3b:fd:
85:cf:47:56:52:b6:c5:df:81:50:fd:83:f1:bc:d5:f7:65:76:
71:7c:10:58:be:59:0f:37:9c:33:c2:94:ac:92:22:12:75:1b:
25:e0:0f:22:88:d2:c3:73:00:cc:1f:fd:08:18:ea:a0:b8:9a:
6d:f1:d1:43:7f:e5:1f:da:e1:37:73:96:76:a8:f9:a6:28:ea:
d0:6f:24:1d:99:37:66:6b:2b:af:f9:10:28:a5:75:3e:04:f5:
88:e5:df:fd:2c:64:53:59:65:31:40:46:11:d2:81:61:cf:9f:
ae:40:bf:ea
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZagv2nTfrrId4Amq6rDsvKjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGJmMjkzODU5MGUwZDAwMTk3MjU2NjJkNGI0YWU0Y2M5ZWMz
YTczNGQwHhcNMjUwNTA1MTQwMDIxWhcNMjUwNTA2MTQwMDIxWjAzMTEwLwYDVQQD
EyhhNGQ2OTQ4YTE1ZjJmYjYzYjE4YmRkNDFiMmYwYTJhZDUxYzZlZTYyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp7gW7mb5e+0vRSA1VNMiEoXPau6S
0FrfUud5cnMZs+2WXZu02S1mKMd48kRGEdDzXrOlF4Ikd3D8ypcEGJ/AYhQQSq0I
UZOM+OdXeNgd9jrMiknOiZ6p93KtJcRf2jVR7p0KL/dXkLlSstMBNksf1exLIZX8
gT7/eavPmnDJntOdVjFcnGfiWzNfVRy0cUBmj0Pv0s7UxooFdpDzokOR3Gzn8HPj
lcvb6fujw9Nf6MWE/LBaqWO/VYztK48uLW4+Het+BxZpeO6tI2hKqK5dA08Puk0+
HV8f6dYEQY18kmMnuUcPZWVZdBduBc5Po9IaJtWozGglIsjJRzvACBD5NwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKTWlIoV8vtjsYvdQbLwoq1Rxu5iMB8GA1UdIwQY
MBaAFL8pOFkODQAZclZi1LSuTMnsOnNNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdnlrNFdRNE5BQmx5Vm1MVXRLNU15ZXc2YzAwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy84MzNhYTItYWYwNC00ZjEwLWExNjct
NmFjZDg2Njg2ZTg1LzEvdnlrNFdRNE5BQmx5Vm1MVXRLNU15ZXc2YzAwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy84MzNhYTItYWYwNC00ZjEwLWExNjctNmFjZDg2Njg2ZTg1
LzEvdnlrNFdRNE5BQmx5Vm1MVXRLNU15ZXc2YzAwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfEVOZH92
1ngowUIzCaUdJush+bI9LMQf/nOMs01V9R+McaznRxnBo0rKC3OfdLfYwZLdfzTK
HAObhxqAc9QO+HWVMU0go4q3gHh0ekT1QcWAErSlPTvaB/tXs8RaXcm7Jh9ua1tz
7fZuKOWFFMK+mP6jcXQHCQfFm6zLIGlTmKGt9r539oU38WBr1sT4Gjv9hc9HVlK2
xd+BUP2D8bzV92V2cXwQWL5ZDzecM8KUrJIiEnUbJeAPIojSw3MAzB/9CBjqoLia
bfHRQ3/lH9rhN3OWdqj5pijq0G8kHZk3Zmsrr/kQKKV1PgT1iOXf/SxkU1llMUBG
EdKBYc+frkC/6g==
-----END CERTIFICATE-----
Generated at Mon May 5 16:23:10 2025 by rpki-client