Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft
File: VGgc0JnIW-caIjUMsT8EglwB-PA.mft (raw, json)
Hash identifier: wlv/6f/BTHm5tP49ZkngANde7kbsP2Ch5C2GWeFHFG4=
Subject key identifier: 77:FB:A8:A5:31:7E:A1:93:DD:8F:60:DD:82:8C:1A:E1:8D:BF:20:78
Authority key identifier: 54:68:1C:D0:99:C8:5B:E7:1A:22:35:0C:B1:3F:04:82:5C:01:F8:F0
Certificate issuer: /CN=54681cd099c85be71a22350cb13f04825c01f8f0
Certificate serial: 0196BF6F3447AE417122BDCC9F687AD0CD40
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft
Manifest number: 0B8D
Signing time: Sun 11 May 2025 13:00:58 +0000
Manifest this update: Sun 11 May 2025 13:00:58 +0000
Manifest next update: Mon 12 May 2025 13:00:58 +0000
Files and hashes: 1: VGgc0JnIW-caIjUMsT8EglwB-PA.crl (hash: IO5QdxXoa1hVt7X4LMP1i0nr74DYB0z8DJAtJCyTVrM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 13:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6f:34:47:ae:41:71:22:bd:cc:9f:68:7a:d0:cd:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54681cd099c85be71a22350cb13f04825c01f8f0
Validity
Not Before: May 11 13:00:58 2025 GMT
Not After : May 12 13:00:58 2025 GMT
Subject: CN=77fba8a5317ea193dd8f60dd828c1ae18dbf2078
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:1b:92:91:f0:7c:b6:ca:cf:38:ab:14:7f:2a:
dc:bf:23:3f:e8:25:d1:1d:27:61:20:48:2d:d9:cd:
1e:c8:57:00:63:e8:2e:1b:df:4d:a0:1b:2e:91:00:
c4:3e:87:3d:e8:bd:0b:87:95:71:e1:02:cf:22:e4:
0d:b5:fd:df:61:a2:5d:9b:96:6f:a8:90:87:1f:a5:
e2:5a:db:18:e6:bc:7c:56:5a:ba:1a:98:cf:bc:22:
05:91:47:c0:ed:0b:01:cf:45:b6:89:d0:12:46:24:
df:d9:31:fd:2b:65:eb:9d:0b:f0:f5:aa:66:65:0c:
73:9a:59:ea:e9:fc:12:88:cd:41:17:cc:95:0f:11:
1c:22:93:e1:f6:b7:c6:d3:47:07:92:e3:c3:21:7d:
58:db:82:03:ff:9e:ea:aa:2c:74:0d:20:e9:3d:5a:
d8:e3:f4:50:d2:82:00:12:19:7a:6e:99:54:6d:cb:
31:2e:99:4c:57:49:a3:0d:5a:1c:f1:3e:59:5f:f5:
91:42:1b:dc:d8:10:98:1e:40:2d:da:54:4f:cc:7f:
7f:4b:9e:f6:36:b1:6c:e9:ab:24:3f:ee:eb:a4:80:
20:9d:dc:ba:74:9e:28:a3:85:73:13:3b:b0:f1:0c:
2c:36:1d:25:09:14:a1:e9:65:8b:27:51:d4:50:f3:
e4:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:FB:A8:A5:31:7E:A1:93:DD:8F:60:DD:82:8C:1A:E1:8D:BF:20:78
X509v3 Authority Key Identifier:
keyid:54:68:1C:D0:99:C8:5B:E7:1A:22:35:0C:B1:3F:04:82:5C:01:F8:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VGgc0JnIW-caIjUMsT8EglwB-PA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/085013-dd3d-4ca7-ba79-c88283f8f117/1/VGgc0JnIW-caIjUMsT8EglwB-PA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
61:f6:65:24:1d:45:c8:aa:b5:03:f4:f7:9b:da:ac:2b:1c:0d:
03:91:09:4b:27:57:12:9d:b8:72:12:37:d1:71:a6:35:b6:01:
41:4a:6b:47:7b:5c:8e:58:30:28:8a:ac:40:14:c6:ee:c7:f3:
fb:f8:ad:4d:be:1f:e2:1f:0c:37:a8:de:5e:e5:00:dc:5b:a7:
f8:fd:fc:a8:f1:30:c4:a1:f5:6c:4c:71:58:17:8d:20:70:a1:
95:d1:a9:94:42:f3:41:7c:96:55:db:7e:d6:e9:47:a9:d0:25:
72:72:87:9d:63:04:8c:2d:a8:26:30:06:e1:6e:cb:53:3c:77:
c5:f0:bf:28:9d:c2:5d:cd:1a:5a:8c:87:d3:08:7a:ea:f4:60:
92:f8:7d:32:64:64:22:16:e5:be:e8:ba:7d:e5:da:81:37:7f:
10:e3:5c:d1:7c:b1:35:ce:02:c7:eb:9e:fd:97:df:93:d0:b8:
40:16:9d:59:20:14:68:da:bf:73:3b:17:df:20:3a:70:1f:f2:
b5:b7:79:73:e4:ec:08:b9:c2:7f:41:3e:a5:af:d1:0f:5b:18:
ac:41:3b:e0:67:7f:e3:8d:2d:e7:85:f9:a7:6c:ee:b1:4b:c6:
81:ee:d3:16:9e:06:a1:fb:06:ed:fc:ad:c6:2a:04:eb:dd:c1:
3b:fa:64:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 11 22:28:16 2025 by rpki-client