Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
File: VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft (raw, json)
Hash identifier: JDHJ+zrE1Z3/BsQtsFoHPr7Y4yo66Zw2YOSl8s1bhUU=
Subject key identifier: BB:4C:13:3B:BB:AF:27:6F:DF:56:C7:FC:56:13:5A:F8:D8:8C:FC:E0
Authority key identifier: 54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
Certificate issuer: /CN=54ce2445a2e8874318bf249b73a654c990919ee0
Certificate serial: 0197B6A05DEF486DA79C1735948150284E9B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
Manifest number: 0D48
Signing time: Sat 28 Jun 2025 13:00:52 +0000
Manifest this update: Sat 28 Jun 2025 13:00:52 +0000
Manifest next update: Sun 29 Jun 2025 13:00:52 +0000
Files and hashes: 1: VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl (hash: Bbg2n/s+zEfpNqvw+WqRyPBrL8Bdv9R4lCgjHOBtkgo=)
2: qCD8L1dMgJ9yzf77qP7Yswj5ta4.roa (hash: oyvr0Mb88tpow7HpmKv7H5W0zqdzX3mbbm1lwxbPABw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:5d:ef:48:6d:a7:9c:17:35:94:81:50:28:4e:9b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ce2445a2e8874318bf249b73a654c990919ee0
Validity
Not Before: Jun 28 13:00:52 2025 GMT
Not After : Jun 29 13:00:52 2025 GMT
Subject: CN=bb4c133bbbaf276fdf56c7fc56135af8d88cfce0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:7e:e4:70:3b:6e:24:2a:58:fd:48:a6:b5:87:
ae:be:dc:51:44:52:36:c2:0b:e9:89:d4:1b:23:e9:
ff:74:08:02:25:93:80:63:bd:ff:6f:e1:7a:03:29:
07:b9:de:cf:9e:02:d3:5e:50:80:41:ec:be:56:a7:
d9:8d:f0:24:65:e1:fb:69:7d:b1:2b:57:c1:56:5e:
dd:79:1b:0e:ad:b4:3e:db:7d:8e:84:3c:72:ab:a0:
09:5c:2c:2b:6e:42:e2:b6:ea:36:c6:c6:09:8a:c4:
40:f0:23:d8:0e:37:65:52:0d:66:8f:a3:33:95:3f:
b4:35:1f:99:6c:71:dc:73:a4:1d:a5:54:6f:35:1b:
35:f4:2f:0a:d1:99:4e:66:d1:5c:a4:7e:e0:44:1e:
75:cb:1e:26:fe:c1:12:1d:32:11:b3:b3:10:ee:14:
69:f8:5f:df:a3:da:61:d1:2c:cd:4c:84:9a:c3:7f:
55:3c:54:b8:2d:84:24:34:1b:f7:65:7f:76:70:5d:
b1:36:28:81:92:2f:48:22:32:83:e9:86:71:2e:c9:
32:88:23:5d:b2:75:be:e4:98:a4:9b:26:64:29:20:
26:0a:eb:df:d4:20:ad:17:f8:2b:96:66:f0:29:a0:
39:49:e0:c2:aa:05:97:a9:d7:48:52:15:3a:5a:d6:
5d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:4C:13:3B:BB:AF:27:6F:DF:56:C7:FC:56:13:5A:F8:D8:8C:FC:E0
X509v3 Authority Key Identifier:
keyid:54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:53:de:c7:8b:71:c9:c5:19:3c:6e:50:8f:74:ac:ff:04:4c:
6a:dd:6a:10:a0:c2:fd:d7:95:84:8e:a1:c6:75:6b:c4:c6:fa:
d8:c7:b3:91:44:93:07:41:04:6e:ec:e7:d1:e8:1b:55:1c:65:
de:22:a0:2a:0b:79:aa:dd:d8:bf:bc:9f:6d:d3:54:6b:f2:a8:
27:2f:c5:52:2f:01:68:a9:8c:73:bc:5f:6d:a0:e4:38:0a:9b:
c5:be:bd:c1:6f:46:a2:b1:25:dd:d6:71:6c:ff:d1:f2:a8:2f:
22:e4:0c:ec:b5:0b:a5:87:73:fe:86:fd:84:0e:49:10:7b:f9:
1d:37:16:09:05:41:3e:8f:4b:5d:02:87:3f:b7:38:70:33:af:
5c:08:13:22:8f:f4:a0:7c:d7:70:d2:63:46:73:9e:10:0a:de:
f4:a8:9e:56:0b:eb:78:2d:f1:9a:f8:78:3e:c9:f4:eb:fd:05:
11:c5:07:6d:89:62:91:e8:b0:74:40:fd:bd:22:99:9a:41:91:
65:f3:16:58:6c:86:42:16:c7:c5:02:96:1e:10:5b:b5:fe:b3:
51:20:96:91:15:d9:d0:6e:f3:2a:f1:a5:74:89:3a:ca:15:97:
b3:29:b2:01:2e:65:6e:7f:2d:39:8f:c0:30:1b:95:e7:60:28:
db:1a:db:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:50:44 2025 by rpki-client