Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
File: VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft (raw, json)
Hash identifier: jh/xcKUaU2R+3+DYIilrMF2hPg9KsBB3ZDj7NfBTbic=
Subject key identifier: 00:E0:8E:C7:65:1D:B7:4E:6A:08:F3:BF:82:FD:9C:19:FA:AD:63:F5
Authority key identifier: 54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
Certificate issuer: /CN=54ce2445a2e8874318bf249b73a654c990919ee0
Certificate serial: 0196BF6F712515FC847CFFB578791C9ED374
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
Manifest number: 0CC8
Signing time: Sun 11 May 2025 13:01:13 +0000
Manifest this update: Sun 11 May 2025 13:01:13 +0000
Manifest next update: Mon 12 May 2025 13:01:13 +0000
Files and hashes: 1: VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl (hash: U6ODtL9XiJGCrFDGwsjPg+iJN1f6oulkqn+cwDfjlTI=)
2: qCD8L1dMgJ9yzf77qP7Yswj5ta4.roa (hash: oyvr0Mb88tpow7HpmKv7H5W0zqdzX3mbbm1lwxbPABw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 12 May 2025 13:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bf:6f:71:25:15:fc:84:7c:ff:b5:78:79:1c:9e:d3:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=54ce2445a2e8874318bf249b73a654c990919ee0
Validity
Not Before: May 11 13:01:13 2025 GMT
Not After : May 12 13:01:13 2025 GMT
Subject: CN=00e08ec7651db74e6a08f3bf82fd9c19faad63f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fc:53:d7:01:1f:72:be:3d:6a:af:0f:f3:16:a4:
3f:5b:5c:8f:19:4a:16:00:7b:f4:05:cd:97:36:d2:
63:e3:6d:83:d7:04:16:20:dc:70:de:98:4f:cc:3f:
dd:75:f8:f6:d1:3c:58:c0:23:67:b3:a4:dc:97:c4:
94:41:42:b4:f4:66:ac:f5:d4:bf:a7:b0:e9:20:74:
cb:6b:76:75:92:81:ad:3c:cb:d6:e8:ff:f1:79:7b:
a7:ff:5f:ae:87:68:6e:3b:f5:4e:9c:ce:dd:67:ba:
df:9a:fa:c6:20:11:0c:7f:f4:0b:05:c6:eb:85:c0:
ea:03:7c:e0:c8:d8:6c:31:9b:d9:0e:0c:0d:36:dd:
28:72:9d:74:5a:e2:54:d8:2c:1e:d6:24:5d:f3:38:
11:a5:ea:e3:c7:98:97:9a:20:0f:24:3d:ec:18:c0:
c8:c6:29:d1:45:63:4a:63:63:5e:e7:3a:b1:de:39:
bc:53:43:7b:39:a9:17:7f:4a:f4:3e:30:08:64:e5:
51:8f:7e:19:8d:1f:4a:6d:96:ab:60:98:33:65:fd:
39:6a:58:5e:76:cd:30:76:97:3a:89:70:78:01:91:
b8:6b:b0:85:bd:24:df:b0:01:89:9f:bb:dd:9b:95:
61:69:38:10:5d:c7:02:df:8e:c3:2e:eb:d1:8c:32:
bc:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:E0:8E:C7:65:1D:B7:4E:6A:08:F3:BF:82:FD:9C:19:FA:AD:63:F5
X509v3 Authority Key Identifier:
keyid:54:CE:24:45:A2:E8:87:43:18:BF:24:9B:73:A6:54:C9:90:91:9E:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VM4kRaLoh0MYvySbc6ZUyZCRnuA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d2/bd7780-eb53-4c1d-acce-cfe7e3f9f92d/1/VM4kRaLoh0MYvySbc6ZUyZCRnuA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:68:06:55:17:02:13:3b:3c:6a:5e:23:9d:d1:65:f0:b1:b0:
22:3c:66:27:9b:bf:e5:b5:12:ae:ac:64:37:be:cc:a1:31:ea:
94:7c:99:9a:cc:d5:0c:b7:78:67:b6:de:48:60:56:57:37:f3:
e8:b9:d0:9b:33:07:d9:d0:33:b4:fe:46:24:c3:f9:6c:f1:d5:
49:06:0a:5c:5a:72:9b:e2:25:12:30:42:3d:27:89:aa:83:2e:
67:23:dc:92:4f:0d:6b:57:54:26:2d:f5:4b:cd:f5:ae:22:dc:
ab:62:33:13:5d:68:d8:d3:b2:81:f0:08:61:21:fb:eb:95:5f:
42:4a:27:ef:70:8d:d4:98:4e:6d:37:c1:41:f7:be:85:e9:04:
ef:54:6d:e5:4a:40:ab:05:3d:81:a6:ce:09:bf:ff:76:55:d9:
c4:88:17:29:40:d8:94:fb:07:ac:83:79:4d:3a:be:60:63:10:
47:de:60:43:e2:0d:68:0e:e1:4d:43:96:b5:48:fc:c5:d7:a4:
61:5e:b6:74:7e:a3:f6:5d:ae:21:b6:22:44:5d:89:64:fa:5e:
1f:db:a3:02:d3:98:76:92:7d:06:5f:9d:9c:d5:31:1a:79:f6:
69:cb:3a:2e:d8:89:f4:4c:5d:c0:96:08:51:76:03:98:0e:78:
d8:6a:2e:a8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa/b3ElFfyEfP+1eHkcntN0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDU0Y2UyNDQ1YTJlODg3NDMxOGJmMjQ5YjczYTY1NGM5OTA5
MTllZTAwHhcNMjUwNTExMTMwMTEzWhcNMjUwNTEyMTMwMTEzWjAzMTEwLwYDVQQD
EygwMGUwOGVjNzY1MWRiNzRlNmEwOGYzYmY4MmZkOWMxOWZhYWQ2M2Y1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/FPXAR9yvj1qrw/zFqQ/W1yPGUoW
AHv0Bc2XNtJj422D1wQWINxw3phPzD/ddfj20TxYwCNns6Tcl8SUQUK09Gas9dS/
p7DpIHTLa3Z1koGtPMvW6P/xeXun/1+uh2huO/VOnM7dZ7rfmvrGIBEMf/QLBcbr
hcDqA3zgyNhsMZvZDgwNNt0ocp10WuJU2Cwe1iRd8zgRperjx5iXmiAPJD3sGMDI
xinRRWNKY2Ne5zqx3jm8U0N7OakXf0r0PjAIZOVRj34ZjR9KbZarYJgzZf05alhe
ds0wdpc6iXB4AZG4a7CFvSTfsAGJn7vdm5VhaTgQXccC347DLuvRjDK8CQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFADgjsdlHbdOagjzv4L9nBn6rWP1MB8GA1UdIwQY
MBaAFFTOJEWi6IdDGL8km3OmVMmQkZ7gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvVk00a1JhTG9oME1ZdnlTYmM2WlV5WkNSbnVBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMi9iZDc3ODAtZWI1My00YzFkLWFjY2Ut
Y2ZlN2UzZjlmOTJkLzEvVk00a1JhTG9oME1ZdnlTYmM2WlV5WkNSbnVBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kMi9iZDc3ODAtZWI1My00YzFkLWFjY2UtY2ZlN2UzZjlmOTJk
LzEvVk00a1JhTG9oME1ZdnlTYmM2WlV5WkNSbnVBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOWgGVRcC
Ezs8al4jndFl8LGwIjxmJ5u/5bUSrqxkN77MoTHqlHyZmszVDLd4Z7beSGBWVzfz
6LnQmzMH2dAztP5GJMP5bPHVSQYKXFpym+IlEjBCPSeJqoMuZyPckk8Na1dUJi31
S831riLcq2IzE11o2NOygfAIYSH765VfQkon73CN1JhObTfBQfe+hekE71Rt5UpA
qwU9gabOCb//dlXZxIgXKUDYlPsHrIN5TTq+YGMQR95gQ+INaA7hTUOWtUj8xdek
YV62dH6j9l2uIbYiRF2JZPpeH9ujAtOYdpJ9Bl+dnNUxGnn2acs6LtiJ9ExdwJYI
UXYDmA542GouqA==
-----END CERTIFICATE-----
Generated at Sun May 11 23:27:33 2025 by rpki-client