Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
File: vSUqdclhrTOP2RFH1GHdiz0gz1E.mft (raw, json)
Hash identifier: SFv5j/hfpXc2KduTA9jrmBQ7sy9YnPmDSeNrn3ClAJU=
Subject key identifier: 97:60:EE:82:31:FE:29:62:8E:81:C4:C8:BF:5B:54:75:FA:00:37:7A
Authority key identifier: BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
Certificate issuer: /CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Certificate serial: 0197D887D71CF94638EBE86DAE1B4CA64B6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
Manifest number: 15CC
Signing time: Sat 05 Jul 2025 03:01:10 +0000
Manifest this update: Sat 05 Jul 2025 03:01:10 +0000
Manifest next update: Sun 06 Jul 2025 03:01:10 +0000
Files and hashes: 1: ODbufxXXrhTdMdFySYsUtuuXSjA.roa (hash: p2sZcd16HOFuL2f2wS89qEK/jKaiZ38X3u4IhgHLvKw=)
2: fj83OICA2dXkb7sofXdOoGdjzq4.roa (hash: pOA5XIvHm6EKh1V95/EfmbQrXTJ90+bGbqMr2BZtsSk=)
3: pDkCQjQVPegQOP278WmolhHSrkw.roa (hash: VPjogK0/dxD5LybI2fhbuslUMxpJB7AerXcZh/G3cj4=)
4: vSUqdclhrTOP2RFH1GHdiz0gz1E.crl (hash: 2927ktW779rUX2Xaz+o9aeghLp2XMiqU4+FzFe5GJVM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 06 Jul 2025 02:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d8:87:d7:1c:f9:46:38:eb:e8:6d:ae:1b:4c:a6:4b:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd252a75c961ad338fd91147d461dd8b3d20cf51
Validity
Not Before: Jul 5 03:01:10 2025 GMT
Not After : Jul 6 03:01:10 2025 GMT
Subject: CN=9760ee8231fe29628e81c4c8bf5b5475fa00377a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:59:c8:7f:83:b7:fe:e4:0b:a9:1e:8b:78:b1:
b6:34:44:a2:d9:5a:26:ef:bd:bd:6f:bd:14:96:fa:
c5:a4:48:a4:6c:43:b7:39:68:a8:29:6a:5a:0e:83:
bd:df:11:bc:e9:76:68:4c:6c:fe:95:42:00:d8:ac:
d4:b7:5e:9f:68:4c:9e:d2:23:2c:f4:7e:9f:f9:37:
a3:e1:2e:e1:2c:c0:fc:5b:39:e1:33:7d:4a:24:e6:
e9:a0:b9:72:17:47:99:94:9e:42:ab:03:f1:c7:87:
f7:6b:fe:ec:93:48:0a:28:2b:94:91:67:84:ba:63:
a9:c5:f8:36:3c:9d:dc:e6:36:94:ee:bc:08:ce:c5:
fd:59:bd:ea:92:8c:11:82:bf:a5:eb:27:b6:4b:af:
9d:d9:be:b2:e2:70:69:af:eb:e7:5b:78:9f:10:b3:
69:43:ca:19:8c:7f:2e:7c:e1:0c:46:1c:84:32:1f:
1a:d3:46:61:75:29:83:55:5d:6d:21:68:5b:4c:51:
d8:2e:f7:63:c0:c3:83:d4:93:6d:1f:b7:1d:0a:c7:
c0:34:c3:1a:1f:2a:7b:fd:17:d2:1c:5e:54:c3:c1:
be:3f:80:5b:09:5f:45:17:35:e3:54:e5:45:9b:4c:
ec:2f:d4:f5:97:00:fb:3b:31:d1:bd:12:c5:d4:f8:
44:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:60:EE:82:31:FE:29:62:8E:81:C4:C8:BF:5B:54:75:FA:00:37:7A
X509v3 Authority Key Identifier:
keyid:BD:25:2A:75:C9:61:AD:33:8F:D9:11:47:D4:61:DD:8B:3D:20:CF:51
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSUqdclhrTOP2RFH1GHdiz0gz1E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/81/d1c70e-226a-4781-b662-741ab92997d0/1/vSUqdclhrTOP2RFH1GHdiz0gz1E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:55:dc:b9:b4:fa:2c:43:52:26:84:b9:a0:8f:61:57:d0:8e:
52:66:bc:1f:3d:95:d9:02:4b:f4:d5:20:0d:cf:ef:01:95:d4:
96:dd:c3:98:75:6f:32:bb:b3:4f:f8:db:f4:99:ca:83:14:a3:
61:2d:49:99:1e:2b:0d:29:d1:24:c8:0f:a7:23:26:9f:88:62:
36:5b:cd:70:d6:fe:4b:66:0b:dc:aa:f0:a6:4f:1c:9d:17:55:
e7:89:57:bb:19:fb:b7:c3:76:9e:a5:ad:a7:c3:d7:a4:ae:76:
37:36:20:e5:d5:9b:46:93:b0:62:a8:c7:90:00:ad:33:9d:1d:
ff:7b:35:72:ec:2e:4a:e9:34:c2:44:74:ef:17:a9:18:43:02:
8d:5d:93:19:28:29:7f:e9:a8:97:60:b5:da:1d:ae:10:c9:dc:
ab:09:34:5f:66:6e:39:1e:9e:73:04:7f:72:88:95:fa:61:2d:
fe:90:5f:e4:b7:0c:29:07:dd:63:9b:24:dc:c1:7f:fd:01:39:
15:1b:56:ca:30:28:7c:a9:ed:04:d1:dd:79:ab:cf:9f:da:f8:
90:89:fd:32:92:07:19:df:bb:de:bb:74:e0:75:64:45:31:b5:
a9:68:85:bb:86:d4:35:32:d6:68:0f:0a:5f:c5:1a:65:25:48:
5c:ad:9e:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 5 11:10:21 2025 by rpki-client