Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
File: vYUnKkCAkE914jWkevC0EmbipgM.mft (raw, json)
Hash identifier: W9pINk/goX3ShsE6KeZCicMZJTRIbr0jvvjzoDRI1ek=
Subject key identifier: 40:78:08:43:87:4F:77:8B:7A:DD:F7:2F:6D:8F:25:BB:F1:42:B0:48
Authority key identifier: BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
Certificate issuer: /CN=bd85272a4080904f75e235a47af0b41266e2a603
Certificate serial: 0196A42E6BCE7EC1932BFF71DFC38E37C9E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
Manifest number: 0851
Signing time: Tue 06 May 2025 06:00:27 +0000
Manifest this update: Tue 06 May 2025 06:00:27 +0000
Manifest next update: Wed 07 May 2025 06:00:27 +0000
Files and hashes: 1: qUq_q62qYu3qxVOMe_F0xihpmUw.roa (hash: SovqRJc4ePvthgrrsQXCalBtYnWMU+TdM7o0xgmwIiE=)
2: vYUnKkCAkE914jWkevC0EmbipgM.crl (hash: DbteDVm9B7eX44XORR4s5q0N81bUIKovlUnM33SCDdk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 07 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:a4:2e:6b:ce:7e:c1:93:2b:ff:71:df:c3:8e:37:c9:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd85272a4080904f75e235a47af0b41266e2a603
Validity
Not Before: May 6 06:00:27 2025 GMT
Not After : May 7 06:00:27 2025 GMT
Subject: CN=40780843874f778b7addf72f6d8f25bbf142b048
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d7:e3:f0:84:60:4c:76:36:91:6f:b0:01:24:
d9:fa:15:7a:8c:b6:ad:a9:21:be:fd:66:92:02:d4:
3d:01:64:fa:d8:e8:12:33:0d:cb:12:41:1b:38:58:
c6:ed:7b:9e:33:ac:f6:96:81:02:c3:c8:1a:73:25:
e7:d9:89:32:b1:a5:b4:51:8f:9a:5a:23:12:3c:d3:
68:dc:5e:8f:a1:f8:f5:d2:f0:18:6b:9c:bd:07:3b:
58:b3:5b:e2:aa:c1:b9:5e:5a:e8:89:72:04:99:7a:
72:5f:7f:54:b7:45:60:76:2d:b2:a4:8f:db:3a:ff:
b6:ca:24:6c:71:ed:73:0b:e3:48:43:98:00:14:c8:
4e:9b:44:84:37:ef:6e:f1:24:d9:2d:ad:7d:26:85:
93:bd:c2:42:4e:53:ac:15:6d:50:3f:91:e4:09:6c:
26:59:57:c9:7e:f0:4a:aa:9f:f1:14:80:52:a6:b4:
5f:9b:e7:10:f0:c3:42:2f:4e:66:42:1a:b6:94:6e:
ce:04:74:e1:9f:2e:f9:c4:92:d0:44:23:ac:c4:75:
ca:3c:f9:5c:ad:10:f4:f1:71:f0:cb:1d:8d:b0:fd:
62:84:8c:dc:ea:90:63:b5:32:79:68:4b:f0:8a:51:
51:88:a3:f7:b8:b3:93:d9:52:d0:94:65:93:ea:10:
1a:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:78:08:43:87:4F:77:8B:7A:DD:F7:2F:6D:8F:25:BB:F1:42:B0:48
X509v3 Authority Key Identifier:
keyid:BD:85:27:2A:40:80:90:4F:75:E2:35:A4:7A:F0:B4:12:66:E2:A6:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vYUnKkCAkE914jWkevC0EmbipgM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a4/282cb0-91be-422a-95d3-24f20f9675ec/1/vYUnKkCAkE914jWkevC0EmbipgM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:34:a7:f5:03:af:f2:b2:47:06:01:de:7a:8b:6e:76:e5:46:
a4:a5:96:67:1d:1b:e8:05:c0:49:81:4b:55:4c:ea:eb:8e:2b:
db:9a:47:01:bf:a5:16:8e:a0:2d:ec:9d:07:04:23:85:00:66:
be:81:2b:c4:03:28:07:b4:46:6a:a6:0f:0c:c9:9e:a7:09:01:
54:8e:f9:a4:97:95:56:05:4f:9d:e0:01:09:96:a8:a3:21:1e:
4e:c1:6b:59:b1:9a:0c:39:70:9f:4f:01:e0:f0:1e:ee:38:34:
df:3a:cb:86:e5:25:0d:ff:87:f9:d5:83:17:64:d2:32:56:84:
77:62:88:b3:16:72:9e:90:a9:3d:8f:46:2b:a1:d1:33:00:55:
ce:ed:21:69:50:4e:ef:00:9d:f7:28:c7:04:9a:3b:75:7f:b3:
66:a9:c0:04:91:95:15:fc:30:2e:6e:63:78:52:99:5a:0c:0a:
69:51:6f:67:dd:8c:ae:7f:3b:1a:e4:5c:46:22:30:51:03:74:
9d:a6:52:28:e2:c3:fd:0b:43:b7:35:5e:b2:e5:62:f9:e3:46:
72:a6:da:3e:07:d0:f8:74:c3:67:8c:c3:89:67:48:be:fa:7d:
8d:4f:e5:f1:0e:bc:89:2a:6c:0e:38:0e:02:16:e6:e7:f4:b4:
37:4f:0d:ab
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 6 13:23:20 2025 by rpki-client