Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
File: vyk4WQ4NABlyVmLUtK5Myew6c00.mft (raw, json)
Hash identifier: 7rKV/VqRfGLm6Oj+kBe3hL2wXOgo7N+w3lf4wIyWMY4=
Subject key identifier: D3:2B:04:DB:BB:7D:9D:67:69:06:5A:19:E3:9F:FE:A9:AE:9F:A0:35
Authority key identifier: BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
Certificate issuer: /CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Certificate serial: 0197B6D74FAB5DA2A5D90F2C5B6AB47BC589
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
Manifest number: 0854
Signing time: Sat 28 Jun 2025 14:00:53 +0000
Manifest this update: Sat 28 Jun 2025 14:00:53 +0000
Manifest next update: Sun 29 Jun 2025 14:00:53 +0000
Files and hashes: 1: vQtF-L-9ooOZxF-UCZufP97_4Tk.roa (hash: uZu5EdE4zrTNj+JjaQISrCgWGaWpGkfUNjvMVUEKljA=)
2: vyk4WQ4NABlyVmLUtK5Myew6c00.crl (hash: TRyvN60m/kmlT9FFkfbSPctHuUZUo/seZdUnzeIjYzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:4f:ab:5d:a2:a5:d9:0f:2c:5b:6a:b4:7b:c5:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bf2938590e0d0019725662d4b4ae4cc9ec3a734d
Validity
Not Before: Jun 28 14:00:53 2025 GMT
Not After : Jun 29 14:00:53 2025 GMT
Subject: CN=d32b04dbbb7d9d6769065a19e39ffea9ae9fa035
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:32:99:2e:f0:d4:44:a0:d8:fa:c9:9a:dc:97:
db:8e:21:db:50:d5:7a:c1:a8:a8:fc:23:f9:f4:cb:
94:f3:ff:1d:d6:1e:ec:b9:9b:9f:3d:d4:eb:a6:25:
88:0c:74:84:45:40:d2:18:1e:13:19:d1:71:57:42:
ad:21:1f:1e:38:85:cd:bb:f4:39:2d:91:45:53:2c:
34:ad:12:67:ba:36:ac:70:26:9e:e1:e0:7f:97:d3:
c8:a9:59:6a:88:88:6d:a1:cd:cf:de:18:8b:55:d1:
92:e2:c0:c9:6d:2b:66:be:85:b3:1f:8a:0c:1d:0b:
73:29:5e:eb:e1:b6:8a:14:b1:ae:2f:3f:0f:7c:e6:
f0:59:c4:df:20:70:a5:55:86:12:40:4a:8c:d9:09:
91:c8:bd:6c:e9:be:ba:24:2e:c5:62:d2:e6:d9:29:
ae:3a:a5:c3:8f:4b:a6:ef:5f:ac:06:2e:a7:70:9c:
31:bc:f0:10:ed:ca:50:12:db:f2:b8:e2:ec:99:4a:
99:f4:51:cc:af:b7:75:77:dc:cd:8b:1f:d5:54:21:
3b:9b:82:76:8e:52:75:be:3f:4b:49:c2:b6:1c:24:
99:2a:94:05:90:7c:8f:01:26:56:89:8d:df:6c:2b:
eb:7d:9b:93:1b:b6:7f:10:38:4b:3f:bd:c9:97:d1:
38:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:2B:04:DB:BB:7D:9D:67:69:06:5A:19:E3:9F:FE:A9:AE:9F:A0:35
X509v3 Authority Key Identifier:
keyid:BF:29:38:59:0E:0D:00:19:72:56:62:D4:B4:AE:4C:C9:EC:3A:73:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vyk4WQ4NABlyVmLUtK5Myew6c00.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/833aa2-af04-4f10-a167-6acd86686e85/1/vyk4WQ4NABlyVmLUtK5Myew6c00.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:7d:4d:e5:94:2d:65:db:ed:ce:21:db:bc:fc:f5:cc:50:e8:
17:2c:f2:97:c2:74:94:1a:2c:fd:90:91:f7:d2:bb:2f:b0:5d:
1b:d0:85:2c:10:89:c2:fd:be:f2:af:b9:5c:0c:21:8f:35:a8:
fc:d0:5f:43:ef:b0:ae:58:17:12:9a:b8:6b:b0:77:f6:02:5a:
73:cb:6d:07:08:ca:d6:60:48:7c:06:97:3a:92:b2:4d:f0:51:
42:b4:3d:82:70:e3:4e:ad:7f:2e:39:78:97:91:66:3b:93:13:
8d:c1:bd:a4:e3:01:c1:86:55:60:e0:23:3c:12:a2:a3:96:98:
f4:a3:06:06:16:e6:54:3e:64:3d:68:de:8d:52:32:d0:fc:8d:
74:a8:41:9d:54:79:fc:c9:65:65:60:b3:4e:de:bd:c8:f3:63:
a6:19:88:16:4f:7f:95:b9:86:19:12:6d:e7:ef:9f:06:a5:10:
6b:fb:c5:80:e5:fe:0f:26:d2:03:96:c0:cc:5f:3e:9d:55:e4:
0f:e7:f4:23:01:ec:bf:4c:e1:89:ba:24:9d:14:58:ef:90:bf:
92:7d:4c:e0:e6:c1:5a:cd:c6:0d:f5:cf:f7:74:c8:95:d5:9a:
b0:4b:61:63:ca:33:6a:12:06:0d:c8:7d:3a:ce:f9:1b:43:b5:
b7:3f:cc:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:29:39 2025 by rpki-client