Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
File: GtTMzv5VxeIjqbMgW5OKPRyehtU.mft (raw, json)
Hash identifier: FhqycPdDUpa6P6/CYtYEflyfsgDz47+alzBSJA6Eyws=
Subject key identifier: 6B:75:15:EF:DA:B8:83:62:2B:95:DA:49:D6:E0:9C:08:D2:CA:19:8C
Authority key identifier: 1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
Certificate issuer: /CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Certificate serial: 019849D37027F1C39AE53123D4CF33A6FC9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
Manifest number: 12E2
Signing time: Sun 27 Jul 2025 03:00:50 +0000
Manifest this update: Sun 27 Jul 2025 03:00:50 +0000
Manifest next update: Mon 28 Jul 2025 03:00:50 +0000
Files and hashes: 1: 7lJrTTIO2zooVSl7zZp_UO3NA2A.roa (hash: ob9QTWC/tQoW4XviSigFRT+IWVM+wZzBVH2/SY3oV7I=)
2: GtTMzv5VxeIjqbMgW5OKPRyehtU.crl (hash: RmE5eNbDym/6HEIYvVGcyLw7Gou5yom8xBwKDvJ0w9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 20:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:49:d3:70:27:f1:c3:9a:e5:31:23:d4:cf:33:a6:fc:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Validity
Not Before: Jul 27 03:00:50 2025 GMT
Not After : Jul 28 03:00:50 2025 GMT
Subject: CN=6b7515efdab883622b95da49d6e09c08d2ca198c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:89:8e:c2:b0:62:a8:1c:80:77:17:76:82:98:
c8:00:6c:e4:8b:b2:d2:b9:34:40:e1:cf:e4:ca:02:
08:e6:75:1a:16:f7:a1:84:da:08:73:bc:dc:f1:0e:
bb:f2:5a:b5:55:d6:c8:31:02:0a:a9:b8:db:de:a9:
60:b7:68:94:c8:2d:b3:d6:db:a4:f4:a6:cf:6f:d0:
b1:a0:0c:33:1f:83:db:ca:fa:83:70:0c:39:8b:a4:
ee:fb:92:56:e2:78:ba:7c:6e:b3:d1:60:ed:8b:76:
5e:3a:1a:ed:c5:0a:f5:15:0c:7f:2f:49:88:cc:22:
84:f0:7b:88:e7:1e:8e:35:a8:62:25:44:7a:c1:e2:
ca:e4:60:39:29:cb:b0:5a:e7:38:d6:be:96:12:22:
6f:23:bf:69:df:3b:55:e8:9e:e9:ac:93:dd:12:8a:
3f:40:c2:63:59:26:41:d7:67:f4:2a:22:ce:92:84:
c5:21:d3:9b:35:d4:52:0a:57:4e:44:ce:0b:e0:48:
30:ee:74:11:a9:8c:25:9c:e7:04:5f:af:64:80:b6:
d5:70:cc:8a:eb:89:fd:23:03:7d:38:ef:3c:b0:77:
4c:62:a6:0d:58:4b:d2:f0:bc:bf:e5:ab:16:2c:76:
fc:8c:1c:e4:e3:58:05:00:a9:b5:c4:a6:ed:24:61:
c0:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:75:15:EF:DA:B8:83:62:2B:95:DA:49:D6:E0:9C:08:D2:CA:19:8C
X509v3 Authority Key Identifier:
keyid:1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:f0:0e:c7:23:2b:8b:90:fa:9e:bf:8b:aa:c5:44:54:15:d3:
7a:c0:bf:65:55:c6:7a:38:57:76:c0:4e:44:47:a0:48:34:33:
99:73:ae:5e:9e:3c:6c:b3:8e:7e:11:4c:cf:53:9a:c7:ef:d2:
70:3e:3c:9d:90:9b:53:e2:e3:72:79:5d:b6:bb:6a:2e:8f:71:
cc:0c:95:99:4e:33:14:a2:54:5d:70:93:86:8a:fe:c2:45:41:
e3:2f:dd:cc:84:eb:45:d6:98:75:5b:33:0c:28:ef:5e:19:24:
a0:dd:46:5f:8e:9c:86:d7:1c:73:e1:04:81:ce:e4:b6:4e:e6:
bb:eb:75:93:3d:92:f2:79:4d:3c:44:c5:31:94:13:71:ec:28:
65:8d:ee:ff:66:11:ff:0e:69:9b:46:8e:78:82:97:f4:e6:f2:
90:db:24:31:0a:be:71:ba:c6:95:6a:dc:3d:11:cf:dd:6a:2d:
1f:df:05:dd:04:21:ed:bf:53:4f:7a:a7:67:fb:87:fd:f6:f5:
d1:02:fe:52:c9:88:fd:32:8c:48:fa:42:54:78:73:d5:96:7a:
55:7b:84:7b:97:40:2f:9a:34:7e:26:56:48:01:3f:58:1f:b5:
2a:f8:35:c4:90:9b:41:c5:93:37:6e:8e:6c:fe:a0:78:40:9e:
f4:75:83:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 05:39:32 2025 by rpki-client