Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
File: VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft (raw, json)
Hash identifier: 7Rxfiasqi12OyJo5k/RdrWuBQDOo5e19tFYcEHzcZ6U=
Subject key identifier: 0E:CD:56:CB:50:A1:CC:E6:3C:AE:1E:4B:1E:02:36:CD:EF:B2:91:33
Authority key identifier: 54:0E:9A:C4:39:B8:F2:B2:7C:1A:26:7D:35:E0:19:5F:EC:85:94:4D
Certificate issuer: /CN=540e9ac439b8f2b27c1a267d35e0195fec85944d
Certificate serial: 0197B70ECC389F081009A29C4FEF168417EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
Manifest number: 0A2B
Signing time: Sat 28 Jun 2025 15:01:29 +0000
Manifest this update: Sat 28 Jun 2025 15:01:29 +0000
Manifest next update: Sun 29 Jun 2025 15:01:29 +0000
Files and hashes: 1: VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl (hash: /l3BgLLrNEGEVNv2gg4YtiQaMswCRKPw9ASwWboQtgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:cc:38:9f:08:10:09:a2:9c:4f:ef:16:84:17:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=540e9ac439b8f2b27c1a267d35e0195fec85944d
Validity
Not Before: Jun 28 15:01:29 2025 GMT
Not After : Jun 29 15:01:29 2025 GMT
Subject: CN=0ecd56cb50a1cce63cae1e4b1e0236cdefb29133
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0d:96:12:84:48:bf:cd:0e:02:ca:87:86:e3:
29:51:84:8f:a8:9a:44:26:9f:2d:76:03:87:48:04:
d5:0e:34:ab:1b:2e:65:21:72:22:ea:5d:bc:64:9d:
aa:89:ac:12:f6:77:b0:9e:84:52:1b:7d:7e:79:72:
f8:d9:8e:a8:7a:8c:88:40:c1:1d:c8:41:e7:4b:e3:
bb:55:42:ac:ef:b7:51:8c:6a:c8:aa:84:9a:52:45:
86:95:d5:c0:2b:f8:15:2e:c8:75:c7:2f:3f:dd:96:
75:2a:07:4b:2a:f7:04:7c:ae:f0:02:b7:23:67:ad:
8d:71:e9:7a:dc:bd:86:f6:4c:80:9e:05:f3:02:fe:
45:50:d8:cf:e7:fd:39:f8:bd:ea:25:f2:0e:2e:12:
52:03:04:57:73:31:d3:31:6b:3e:5a:8e:50:39:19:
73:c0:ea:80:07:c1:f8:05:af:bb:8d:76:bb:93:30:
a0:82:54:4a:36:98:62:c5:a0:65:9c:10:91:01:8d:
b0:7c:4a:94:2b:b1:05:b7:e3:27:df:4a:9b:fc:d7:
9f:f4:c0:ac:1a:46:29:c5:5c:18:41:c9:72:01:52:
da:12:fb:81:f9:e8:52:8c:53:a5:73:3d:13:bb:15:
53:a8:06:82:5b:79:73:19:31:9b:3f:29:32:b4:bb:
04:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:CD:56:CB:50:A1:CC:E6:3C:AE:1E:4B:1E:02:36:CD:EF:B2:91:33
X509v3 Authority Key Identifier:
keyid:54:0E:9A:C4:39:B8:F2:B2:7C:1A:26:7D:35:E0:19:5F:EC:85:94:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VA6axDm48rJ8GiZ9NeAZX-yFlE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/be/b98c4e-1fe9-42c8-bdbb-c96e937ac955/1/VA6axDm48rJ8GiZ9NeAZX-yFlE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:80:a2:96:c9:27:a1:59:0f:5e:d8:4e:03:79:cd:22:da:05:
06:e6:e9:56:8b:84:3c:85:c8:52:24:37:f6:c2:6c:49:14:f0:
8a:be:af:f3:46:39:e8:e6:b1:ad:b3:a1:70:c8:1a:fd:e3:e2:
cf:69:27:3f:bc:0d:8a:b5:93:5b:87:81:0e:53:7b:08:0e:70:
4a:40:ea:7f:0e:c5:9a:0a:11:0d:a5:f7:34:7e:de:b2:b6:49:
55:2b:77:fe:29:08:13:74:34:fc:ff:1f:f3:ec:23:2a:cc:23:
c2:e5:76:f2:db:ee:90:98:27:89:61:5e:58:48:52:f0:52:d0:
df:9a:ff:15:24:1d:57:bd:2d:4b:d7:66:33:98:ac:2d:f2:3e:
26:b3:3f:37:be:8c:82:56:0e:c2:b6:c0:f1:cf:f7:de:15:c8:
80:d5:c8:51:18:11:42:f6:cd:ee:aa:a3:d8:3d:02:8a:15:f6:
a5:32:12:ac:17:a5:2e:59:38:6c:52:18:80:4e:fd:ff:c0:12:
69:01:b6:74:4f:ad:fa:df:ec:8e:b7:c8:e8:8f:87:d6:21:12:
6a:0b:12:b4:9f:4f:12:31:39:8d:e1:3a:26:6d:b0:49:b1:55:
0f:08:fb:29:3e:06:2f:de:ea:98:87:08:37:62:71:39:22:d0:
21:92:34:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:21:29 2025 by rpki-client