Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
File: VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft (raw, json)
Hash identifier: H/nibQwvG7XMXWFHuA39t8hWg4ELGJbv4Lk2T25Evto=
Subject key identifier: A4:B8:7A:7E:71:4A:73:F1:23:50:03:C0:93:E8:A0:FC:B9:C5:E5:AD
Authority key identifier: 54:16:78:C3:7A:1F:93:34:31:4F:EE:A5:83:25:EA:79:40:AF:0F:5D
Certificate issuer: /CN=541678c37a1f9334314feea58325ea7940af0f5d
Certificate serial: 0197B70F179F298E9A26BABCC3529BB5F5AF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
Manifest number: 1230
Signing time: Sat 28 Jun 2025 15:01:48 +0000
Manifest this update: Sat 28 Jun 2025 15:01:48 +0000
Manifest next update: Sun 29 Jun 2025 15:01:48 +0000
Files and hashes: 1: VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl (hash: 20nLAARbyN2eCv8eq7dJfKmcQ2TjcRQIomfPdo9RqtM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0f:17:9f:29:8e:9a:26:ba:bc:c3:52:9b:b5:f5:af
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541678c37a1f9334314feea58325ea7940af0f5d
Validity
Not Before: Jun 28 15:01:48 2025 GMT
Not After : Jun 29 15:01:48 2025 GMT
Subject: CN=a4b87a7e714a73f1235003c093e8a0fcb9c5e5ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:40:ea:5c:55:bb:a1:6d:fa:13:ed:76:9b:5d:
8f:82:9a:44:ad:6f:62:82:cb:42:ec:1b:21:6b:76:
25:44:cb:95:e4:f7:69:23:21:74:ce:b0:b8:4d:c1:
41:4f:b6:b6:57:91:86:1b:af:30:e2:20:e5:fd:68:
90:8c:ac:87:c2:10:05:8b:5b:25:5a:e2:91:cf:6d:
64:2d:da:8b:5a:81:02:1c:a6:1e:7e:dc:43:92:b8:
48:1e:24:2f:2c:bc:81:9c:83:98:30:cc:33:61:5d:
5a:60:6a:60:b4:f6:e0:8b:61:e6:bb:57:a6:8a:5f:
a9:6b:60:c7:47:97:a0:c3:96:e6:e1:c6:78:25:60:
0f:e7:aa:46:4c:c4:46:15:4a:3f:a2:e3:24:b2:e4:
c1:8a:4f:8f:de:15:8f:b4:ec:e7:6d:f3:d7:cb:d1:
42:e0:5b:4d:9d:b0:64:84:33:7b:4d:82:8e:54:e1:
7d:72:bc:3a:d4:d6:e8:86:d6:df:c9:ef:8f:f6:20:
46:9b:fc:4a:60:7e:8c:98:43:36:2b:71:ba:60:2c:
2e:42:0c:42:10:f9:0e:a4:ac:28:fd:13:58:e1:4d:
04:dd:5a:f7:df:12:d8:23:45:1c:09:cc:cf:87:5e:
69:4f:70:a5:b3:56:41:b0:e1:16:f1:71:a5:00:0a:
37:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:B8:7A:7E:71:4A:73:F1:23:50:03:C0:93:E8:A0:FC:B9:C5:E5:AD
X509v3 Authority Key Identifier:
keyid:54:16:78:C3:7A:1F:93:34:31:4F:EE:A5:83:25:EA:79:40:AF:0F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:04:1a:85:3a:74:92:c5:fe:02:04:5e:1f:bd:5e:ca:10:8e:
b5:0a:ae:c9:dd:31:68:ea:a8:05:2e:72:9f:39:92:52:5e:14:
1b:06:e4:cf:4f:70:e3:95:6d:07:19:0c:c2:21:b7:38:fd:5d:
0b:e4:fc:2f:c7:c2:fb:52:29:26:aa:2e:b6:15:3c:de:fd:16:
0c:07:d8:d0:3c:00:d9:7f:f3:d6:3d:47:50:a9:54:0d:a7:68:
6e:83:6f:6a:48:54:87:c6:46:ef:86:42:a5:28:c9:f0:cc:bb:
56:4a:f3:0b:5f:65:f0:74:41:75:61:0c:38:6a:79:64:2c:d4:
bd:1c:8e:cb:50:9f:65:12:8a:b2:45:05:db:98:44:01:19:31:
a3:ce:a8:3f:b1:fe:66:cc:e3:66:1a:de:7e:13:27:0d:1c:7e:
35:c1:23:ee:c3:bb:e5:05:83:c7:45:97:1e:47:ef:02:72:07:
58:9d:da:f4:41:dd:a8:d3:e2:08:14:bc:5b:dd:2e:7e:71:8c:
a4:ff:9f:39:53:40:e8:ca:cf:86:a8:eb:89:37:c1:bb:97:c1:
6a:70:65:b0:39:4b:93:95:94:d1:f5:42:98:11:57:b7:4e:97:
d3:59:99:b4:cf:31:22:e3:b6:18:7f:c0:dc:48:ba:c8:a0:00:
17:7f:99:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3DxefKY6aJrq8w1KbtfWvMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0MTY3OGMzN2ExZjkzMzQzMTRmZWVhNTgzMjVlYTc5NDBh
ZjBmNWQwHhcNMjUwNjI4MTUwMTQ4WhcNMjUwNjI5MTUwMTQ4WjAzMTEwLwYDVQQD
EyhhNGI4N2E3ZTcxNGE3M2YxMjM1MDAzYzA5M2U4YTBmY2I5YzVlNWFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAskDqXFW7oW36E+12m12PgppErW9i
gstC7Bsha3YlRMuV5PdpIyF0zrC4TcFBT7a2V5GGG68w4iDl/WiQjKyHwhAFi1sl
WuKRz21kLdqLWoECHKYeftxDkrhIHiQvLLyBnIOYMMwzYV1aYGpgtPbgi2Hmu1em
il+pa2DHR5egw5bm4cZ4JWAP56pGTMRGFUo/ouMksuTBik+P3hWPtOznbfPXy9FC
4FtNnbBkhDN7TYKOVOF9crw61Nbohtbfye+P9iBGm/xKYH6MmEM2K3G6YCwuQgxC
EPkOpKwo/RNY4U0E3Vr33xLYI0UcCczPh15pT3Cls1ZBsOEW8XGlAAo3TwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKS4en5xSnPxI1ADwJPooPy5xeWtMB8GA1UdIwQY
MBaAFFQWeMN6H5M0MU/upYMl6nlArw9dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVkJaNHczb2ZrelF4VC02bGd5WHFlVUN2RDEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi82MTZmMDMtNDI0ZS00OTEwLWFiZTEt
MDM4OGEyNjYxNjBiLzEvVkJaNHczb2ZrelF4VC02bGd5WHFlVUN2RDEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yi82MTZmMDMtNDI0ZS00OTEwLWFiZTEtMDM4OGEyNjYxNjBi
LzEvVkJaNHczb2ZrelF4VC02bGd5WHFlVUN2RDEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPAQahTp0
ksX+AgReH71eyhCOtQquyd0xaOqoBS5ynzmSUl4UGwbkz09w45VtBxkMwiG3OP1d
C+T8L8fC+1IpJqouthU83v0WDAfY0DwA2X/z1j1HUKlUDadoboNvakhUh8ZG74ZC
pSjJ8My7VkrzC19l8HRBdWEMOGp5ZCzUvRyOy1CfZRKKskUF25hEARkxo86oP7H+
ZszjZhrefhMnDRx+NcEj7sO75QWDx0WXHkfvAnIHWJ3a9EHdqNPiCBS8W90ufnGM
pP+fOVNA6MrPhqjriTfBu5fBanBlsDlLk5WU0fVCmBFXt06X01mZtM8xIuO2GH/A
3Ei6yKAAF3+ZvA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 20:57:24 2025 by rpki-client