Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.mft
File: vfSGpExRBdeBNXKUVhzMPROk1nE.mft (raw, json)
Hash identifier: QaD5i73p5O7gpKvuZzqmrfIPThB+kSPzExozGkx9jsw=
Subject key identifier: 85:51:23:1B:1B:C6:AA:E1:4E:2F:A0:A4:41:54:7B:7C:CF:E8:C0:19
Authority key identifier: BD:F4:86:A4:4C:51:05:D7:81:35:72:94:56:1C:CC:3D:13:A4:D6:71
Certificate issuer: /CN=bdf486a44c5105d781357294561ccc3d13a4d671
Certificate serial: 0196C3B9C913AAAC73E0295AAAF3CC9B8F3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vfSGpExRBdeBNXKUVhzMPROk1nE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.mft
Manifest number: 07A7
Signing time: Mon 12 May 2025 09:00:54 +0000
Manifest this update: Mon 12 May 2025 09:00:54 +0000
Manifest next update: Tue 13 May 2025 09:00:54 +0000
Files and hashes: 1: vfSGpExRBdeBNXKUVhzMPROk1nE.crl (hash: sFfnnc19gkvRmd9Dc3sxolGyeu/kKYQ+JYi8c72rnoY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.crl
rsync://rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.mft
rsync://rpki.ripe.net/repository/DEFAULT/vfSGpExRBdeBNXKUVhzMPROk1nE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 09:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c3:b9:c9:13:aa:ac:73:e0:29:5a:aa:f3:cc:9b:8f:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bdf486a44c5105d781357294561ccc3d13a4d671
Validity
Not Before: May 12 09:00:54 2025 GMT
Not After : May 13 09:00:54 2025 GMT
Subject: CN=8551231b1bc6aae14e2fa0a441547b7ccfe8c019
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:c6:ff:e3:35:dd:8c:4e:87:c7:63:1a:6a:bc:
c4:7e:cb:91:87:e0:30:03:fc:3e:98:78:3b:ef:af:
7e:91:4c:1e:d5:88:26:67:75:ff:22:fa:3b:24:08:
a3:69:15:df:56:b0:2b:b6:d9:07:61:0d:b9:d8:f6:
b5:92:af:07:1e:0c:b0:01:67:e1:56:f1:fc:b1:81:
f2:32:08:b0:96:aa:d1:6a:5c:9c:af:80:97:d5:1a:
2c:ef:53:90:73:c4:25:7f:be:7a:15:87:33:39:22:
8f:f2:ca:ca:07:9b:d2:c4:0e:73:db:6c:37:7c:f6:
6e:ef:cb:73:01:30:c8:df:7b:53:8f:3f:15:d8:b5:
40:8b:e1:ed:c8:0a:e0:a0:76:37:eb:ce:80:96:be:
53:f5:70:0a:83:8c:b4:b5:94:be:1e:3e:20:5a:20:
fa:4c:67:8a:88:3e:62:0f:ae:e1:03:e6:86:f5:03:
e5:22:8d:d7:e5:0b:c3:0d:3b:64:f7:a4:c6:5f:3f:
32:c1:da:bd:f5:82:b1:ad:63:69:d3:b8:97:87:d6:
60:f0:53:91:04:05:5f:3d:1e:cd:fa:08:e5:4e:39:
b3:cc:74:a3:9a:90:bb:00:d3:ef:6d:56:82:a1:14:
66:1f:b3:69:d7:fc:60:d8:c3:f5:86:f4:69:b5:99:
55:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:51:23:1B:1B:C6:AA:E1:4E:2F:A0:A4:41:54:7B:7C:CF:E8:C0:19
X509v3 Authority Key Identifier:
keyid:BD:F4:86:A4:4C:51:05:D7:81:35:72:94:56:1C:CC:3D:13:A4:D6:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vfSGpExRBdeBNXKUVhzMPROk1nE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/b8b278-f9bd-40e1-803a-f691f64758ac/1/vfSGpExRBdeBNXKUVhzMPROk1nE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:11:a0:64:ec:a4:3a:03:aa:1c:d4:a5:ce:25:1a:3e:0d:d9:
74:ec:3f:cd:72:53:d5:c6:1c:71:49:97:21:20:51:ec:9a:e3:
35:7f:00:d8:38:25:0d:b6:de:37:1f:27:1c:f2:87:fd:f8:d5:
20:72:c9:c7:f3:42:34:ac:dd:4c:7a:7b:a0:63:72:25:f3:4e:
45:fe:f8:f4:2a:e1:b9:bc:76:c7:4c:64:8f:0b:0e:67:60:fa:
ad:58:4f:79:71:b3:c6:cb:a3:47:a6:b9:51:d9:8d:dc:d7:ac:
44:f2:ed:87:e0:7e:8e:76:e2:92:bf:50:ab:b5:78:5a:ca:ac:
c1:ed:f1:c6:b5:9d:1a:7e:25:bc:5c:80:1f:9a:f7:27:a5:c0:
49:c5:cc:6e:f4:37:19:0c:d4:bc:ce:18:8d:a5:a3:7a:de:1d:
32:34:55:6a:81:58:71:a7:90:f0:6c:ba:ca:46:ee:d0:9d:5e:
a3:77:f9:6e:1b:98:9c:8d:9f:9f:1a:22:6d:9a:04:4e:19:4d:
91:3f:69:6d:2d:97:29:42:39:a4:10:01:4f:d1:18:97:d5:21:
35:8c:4b:66:75:be:f3:9d:82:db:f7:ed:58:c3:81:7f:b8:7b:
4f:33:4e:b3:02:f3:83:d9:e4:59:6c:0f:82:81:2b:2a:0d:e4:
5a:53:32:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 15:46:49 2025 by rpki-client