Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
File: vSUqdclhrTOP2RFH1GHdiz0gz1E.mft (raw, json)
Hash identifier: qI6aw6lqRzArrQDjkQh6/QZ//H+130PbYlhJJ2HlgZc=
Subject key identifier: E8:E7:88:10:B1:E4:BC:D2:B4:EA:4B:97:11:A4:DC:11:84:4E:A9:DC
Authority key identifier: BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
Certificate issuer: /CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Certificate serial: 0196C1944C8BDE5E0E5D8723C2E840C04C14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
Manifest number: 153B
Signing time: Sun 11 May 2025 23:00:43 +0000
Manifest this update: Sun 11 May 2025 23:00:43 +0000
Manifest next update: Mon 12 May 2025 23:00:43 +0000
Files and hashes: 1: fj83OICA2dXkb7sofXdOoGdjzq4.roa (hash: pOA5XIvHm6EKh1V95/EfmbQrXTJ90+bGbqMr2BZtsSk=)
2: pDkCQjQVPegQOP278WmolhHSrkw.roa (hash: VPjogK0/dxD5LybI2fhbuslUMxpJB7AerXcZh/G3cj4=)
3: vSUqdclhrTOP2RFH1GHdiz0gz1E.crl (hash: vq0YLupqP3oW5ZkmhwcCRI4b8Wbpgtb7P5M1UTp48Q8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 23:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:94:4c:8b:de:5e:0e:5d:87:23:c2:e8:40:c0:4c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Validity
Not Before: May 11 23:00:43 2025 GMT
Not After : May 12 23:00:43 2025 GMT
Subject: CN=e8e78810b1e4bcd2b4ea4b9711a4dc11844ea9dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:aa:c1:de:c1:53:8c:d7:7a:93:22:8c:ee:fe:
f2:69:a5:86:58:8b:ee:5c:0a:31:5d:26:94:18:fa:
d2:19:c9:61:5b:30:07:6f:76:d7:68:9d:c7:6b:31:
84:21:4a:b7:2e:03:0a:b0:99:4a:5c:2a:ba:b4:26:
3e:17:ef:c1:b0:f6:f3:c9:7a:a3:35:55:2a:bd:35:
26:12:8f:f3:76:fe:25:ed:ff:b5:18:0b:92:57:aa:
29:d4:78:c6:64:8a:08:42:8b:45:b4:25:df:26:d3:
ed:7d:d8:1d:d8:54:db:72:32:80:23:6e:43:0d:50:
a0:d3:2b:48:bd:d0:67:e8:aa:b9:6d:53:38:c8:ec:
3a:3f:16:62:35:1c:f0:de:9a:1c:25:8e:4b:92:82:
19:c8:e5:c8:e4:53:b3:54:f8:01:6c:a9:b4:55:c2:
b0:91:68:58:94:ca:98:29:70:31:20:65:22:67:96:
2e:de:4f:d7:91:28:fd:1c:d6:be:e9:88:69:b7:bd:
51:b1:1a:db:1a:0c:bd:8e:7b:e2:d5:9c:69:22:d3:
22:2d:e9:22:4f:e6:cd:47:3d:e5:13:a5:01:f9:7a:
c3:6e:ba:b0:45:17:4b:7d:46:4a:b4:ae:77:32:09:
9b:19:0d:59:4c:bd:4e:97:b5:cc:e6:29:d2:19:72:
c9:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:E7:88:10:B1:E4:BC:D2:B4:EA:4B:97:11:A4:DC:11:84:4E:A9:DC
X509v3 Authority Key Identifier:
keyid:BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:7a:06:4b:72:ae:bc:75:bd:1e:e8:54:97:d4:e0:ef:bc:1b:
a1:bb:d4:c4:d7:c8:5e:ba:bf:38:40:52:83:b9:d3:4f:fa:20:
33:4d:c5:5e:4b:c2:ae:af:4b:3f:e1:8c:63:db:fb:db:89:d3:
71:0c:79:42:ee:2d:33:f4:27:5b:8d:db:b5:25:e4:4b:96:f5:
bd:d5:00:b5:1e:f1:f6:1f:c2:5d:c0:5d:c1:fe:be:06:2b:d3:
6c:67:0e:b8:7f:3b:0e:30:b1:05:c4:5d:1b:9d:e9:ef:d7:9f:
96:c3:dc:c4:9c:cc:82:78:57:b5:14:2a:e9:54:f8:ef:bd:56:
77:a6:7c:5b:61:16:33:95:7d:ce:06:cf:9b:a0:53:42:b0:15:
33:92:92:64:6b:8d:24:19:20:f2:c5:98:96:2c:d3:e0:ea:97:
aa:04:57:2f:32:07:ec:07:c9:17:ff:a5:75:a9:d8:95:b8:95:
70:3b:0f:a1:af:6d:dc:91:33:05:b7:d0:a7:4a:81:21:cc:08:
6b:c9:96:6f:6e:79:b4:8d:7d:45:ac:d5:7d:8d:50:3a:8f:0a:
fe:43:98:9f:56:f2:ef:e9:b4:0a:3b:51:35:e4:ce:67:df:3e:
e2:6d:55:7a:86:36:9c:9a:c8:bb:db:8b:04:25:99:93:03:f6:
87:ac:f3:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 07:23:55 2025 by rpki-client