Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
File: VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft (raw, json)
Hash identifier: PGiYy6DV8xmcj11uvxqFH8+Ao4Tf/W7tEKTE6UozDa8=
Subject key identifier: 49:9A:D9:E7:07:EB:16:4A:DB:C8:0C:9E:A8:4D:0A:8A:F7:83:00:F5
Authority key identifier: 54:16:78:C3:7A:1F:93:34:31:4F:EE:A5:83:25:EA:79:40:AF:0F:5D
Certificate issuer: /CN=541678c37a1f9334314feea58325ea7940af0f5d
Certificate serial: 0196C1CB170D9001C9271310BBA7760BE8D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
Manifest number: 11B1
Signing time: Mon 12 May 2025 00:00:34 +0000
Manifest this update: Mon 12 May 2025 00:00:34 +0000
Manifest next update: Tue 13 May 2025 00:00:34 +0000
Files and hashes: 1: VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl (hash: Q1J1rrtdYkbHKX+0Vqc/JBeYv3ABSFGLRPA8vMRbj4o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl
rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 00:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:cb:17:0d:90:01:c9:27:13:10:bb:a7:76:0b:e8:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=541678c37a1f9334314feea58325ea7940af0f5d
Validity
Not Before: May 12 00:00:34 2025 GMT
Not After : May 13 00:00:34 2025 GMT
Subject: CN=499ad9e707eb164adbc80c9ea84d0a8af78300f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:28:74:4a:b7:17:66:95:82:da:84:35:3d:c7:
03:4e:b5:1c:91:0e:31:a0:a6:ab:f7:99:5e:45:5f:
73:ee:5e:d0:97:29:8d:fb:7f:08:6f:90:7f:06:58:
e1:bf:3a:c9:33:81:22:d9:8f:7e:f7:48:83:59:d2:
0f:21:ac:ec:c2:24:dd:97:25:3e:a3:05:06:48:2c:
3e:0d:dc:b2:7a:7b:6e:65:ee:78:5d:b5:91:97:39:
91:9e:63:d4:a9:0d:01:ef:a3:2e:f1:a2:66:7d:1e:
9c:f6:a8:cf:a2:37:2a:b2:13:84:34:a7:11:01:24:
11:c7:35:73:2d:1e:77:b8:bd:94:bb:f2:d7:05:7c:
7f:49:1d:51:fa:5d:f3:b8:5b:e7:5f:5c:ce:d2:88:
36:e1:a1:c3:f1:e6:7c:42:86:06:78:5d:e8:22:50:
a2:4b:bd:7a:a8:85:c5:84:58:ef:58:63:e2:5b:a7:
ba:25:61:29:49:c5:47:c5:d9:8b:8d:bf:bf:6e:74:
22:61:09:b7:92:30:93:65:9b:42:2c:3e:2b:5f:6f:
d0:c3:92:a2:d7:16:eb:b9:24:cc:90:91:d8:1d:bd:
e5:f8:aa:dc:26:35:ee:d0:7a:55:27:f1:b9:a2:39:
31:4c:0b:b7:05:10:e3:e6:84:c4:59:97:26:5d:bf:
0a:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:9A:D9:E7:07:EB:16:4A:DB:C8:0C:9E:A8:4D:0A:8A:F7:83:00:F5
X509v3 Authority Key Identifier:
keyid:54:16:78:C3:7A:1F:93:34:31:4F:EE:A5:83:25:EA:79:40:AF:0F:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VBZ4w3ofkzQxT-6lgyXqeUCvD10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/616f03-424e-4910-abe1-0388a266160b/1/VBZ4w3ofkzQxT-6lgyXqeUCvD10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:85:d7:ba:9e:a8:10:02:b7:05:f4:9f:c0:b3:eb:37:25:8b:
3b:4c:82:91:a1:2f:d6:24:8e:29:3c:9e:13:21:e7:5a:60:87:
b7:e9:64:45:77:30:2c:c5:61:52:c9:28:31:49:b8:33:45:66:
df:f0:55:17:e2:4b:f9:d3:da:94:83:0b:34:5b:cd:8a:1f:84:
b4:ad:ac:c4:30:a5:1b:c7:69:6a:a9:63:27:7a:62:d6:b4:bf:
c0:d6:fa:80:7d:3b:20:c3:f7:ff:10:62:44:a2:e3:b9:70:f1:
54:79:2d:1a:d5:e3:94:69:5a:c1:e0:8c:65:77:f5:6e:8c:d5:
36:d9:23:ef:0d:54:2c:af:05:ec:69:8e:ac:c7:df:15:cc:21:
e8:aa:18:63:fe:fa:fd:39:16:ee:c2:7a:be:bc:f5:1b:a3:ef:
7d:dd:69:9d:52:53:a4:4e:7b:55:50:69:6a:d7:94:21:c9:4e:
0b:71:a0:42:7b:43:5b:b4:3f:56:5d:a0:fe:c0:71:d5:41:ee:
1e:12:5b:85:7f:c4:37:3b:58:96:8e:c0:58:40:b2:e2:87:5d:
96:7a:44:81:18:69:a8:50:d4:60:78:a2:58:99:b2:39:ce:c3:
88:be:05:29:a5:2d:8f:06:64:75:00:48:fe:a4:96:b2:ee:a1:
13:d1:5a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 10:18:47 2025 by rpki-client