Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
File: vhji2fUJydO0VREqoojTNhhYAaA.mft (raw, json)
Hash identifier: 9UFJ3aK9AC+5InJLJIa/RRjpDgnhZCnc1SfejEm9Hfw=
Subject key identifier: A4:AA:50:22:83:10:4F:F3:20:14:FD:DA:4F:A9:C4:E4:22:01:80:8A
Authority key identifier: BE:18:E2:D9:F5:09:C9:D3:B4:55:11:2A:A2:88:D3:36:18:58:01:A0
Certificate issuer: /CN=be18e2d9f509c9d3b455112aa288d336185801a0
Certificate serial: 0196D77747344B19B562AD2B7818D9B1E5EF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
Manifest number: 0F24
Signing time: Fri 16 May 2025 05:00:40 +0000
Manifest this update: Fri 16 May 2025 05:00:40 +0000
Manifest next update: Sat 17 May 2025 05:00:40 +0000
Files and hashes: 1: K7bdbq2NQi5Og3pBR0VNiKqzF3o.roa (hash: Y5TCg/QVPxm4ctwH0Vu0TBEdMj0uZUrfAJN0ICvLjOc=)
2: vhji2fUJydO0VREqoojTNhhYAaA.crl (hash: JJqz0F4LDiAX6OY6kMR5NvLT8+whCz4NkRZfm+277Uo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 05:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d7:77:47:34:4b:19:b5:62:ad:2b:78:18:d9:b1:e5:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=be18e2d9f509c9d3b455112aa288d336185801a0
Validity
Not Before: May 16 05:00:40 2025 GMT
Not After : May 17 05:00:40 2025 GMT
Subject: CN=a4aa502283104ff32014fdda4fa9c4e42201808a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:bc:89:49:46:ef:ac:54:c0:6b:c0:e9:23:c3:
67:f0:94:66:dc:13:6a:6e:8b:0e:2c:9d:0f:0f:5b:
76:24:5c:1f:3c:2c:6b:d4:fa:00:23:a5:f0:6f:2f:
8f:38:f1:6b:51:bc:76:8c:7e:12:c5:b4:62:0f:54:
db:62:04:33:3b:08:e8:8b:8e:78:3d:e3:9b:37:52:
57:a8:4b:f9:20:8a:fc:8a:fc:db:c4:5c:9c:23:25:
c7:ae:b5:9c:85:34:79:4c:c7:e7:5d:e3:be:d4:b8:
a4:5e:a5:40:20:2e:60:75:ca:fd:67:20:ea:36:a2:
27:86:36:54:2c:3e:7e:e2:11:79:6f:6d:94:94:6d:
78:31:e7:33:b3:4b:1a:91:5b:76:ce:91:0b:dc:34:
bb:10:fd:a3:22:dc:0a:2e:e6:73:bc:e5:4c:45:27:
0c:55:a8:8a:f6:b2:5a:b8:6c:ee:9b:ac:d8:49:e2:
2d:44:88:4d:a5:ba:6c:b4:8c:aa:42:a1:c8:ef:53:
26:1d:1d:19:d2:25:b1:7c:d9:d9:a8:b6:36:26:fd:
7b:d1:70:16:e6:58:95:67:4e:01:ee:f6:49:37:a4:
2c:5e:ef:cc:d3:67:a3:72:d2:1a:b6:30:b3:8a:ba:
40:a7:29:c8:44:ba:cb:54:64:b7:b4:c2:6c:f6:bf:
ad:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:AA:50:22:83:10:4F:F3:20:14:FD:DA:4F:A9:C4:E4:22:01:80:8A
X509v3 Authority Key Identifier:
keyid:BE:18:E2:D9:F5:09:C9:D3:B4:55:11:2A:A2:88:D3:36:18:58:01:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vhji2fUJydO0VREqoojTNhhYAaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6645d5-d193-4a63-85e6-2ca0e5c104fd/1/vhji2fUJydO0VREqoojTNhhYAaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:d3:33:7d:9d:bb:cc:53:5a:04:bb:c2:54:e9:8d:e8:9a:02:
47:61:ef:9a:b5:1e:8d:2e:6d:0c:f9:0c:73:99:2c:3a:82:f5:
1f:e4:7a:47:a4:27:87:bc:90:24:83:e2:81:1e:35:8f:fa:2b:
52:52:4a:a9:79:4e:d1:44:2b:44:12:a9:59:85:8c:29:df:e3:
b6:4a:99:17:16:0d:86:f8:be:f2:a5:3b:82:87:ce:42:d9:8a:
68:f8:73:c6:ac:8a:07:4f:84:4a:f5:0b:4c:b8:6f:17:9a:19:
a7:a6:72:45:66:86:f4:60:f0:7c:11:ff:1d:7a:54:34:16:9f:
1d:46:58:12:33:fc:ca:48:55:18:a5:60:37:c7:82:a1:6e:67:
4e:96:41:09:49:e1:ba:0d:d1:2b:e5:fb:2e:4b:67:ea:23:5d:
b1:f7:b6:2a:01:52:01:96:65:5a:88:b8:30:e5:16:8e:85:75:
0b:de:25:e6:aa:6d:07:f7:2d:62:d8:36:1c:17:b8:2d:e8:52:
17:67:2b:8f:26:75:73:78:47:5a:9f:5b:a1:7d:40:43:a4:10:
9a:ac:7f:5a:03:00:21:ef:a9:75:b7:89:8c:20:39:9e:e5:a4:
0d:c6:ae:b9:fa:e9:a8:3f:7d:06:df:0c:c4:47:2c:3a:db:9a:
89:c3:c0:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 12:16:45 2025 by rpki-client