Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.mft
File: G2hlYSYZg3PQeIa_Srj7BrkAZ4A.mft (raw, json)
Hash identifier: 11psqHfomE0MaihuAGAj90r88rFtuy2j6v9f2N/6/9c=
Subject key identifier: 71:08:20:B0:73:0D:35:FD:32:51:1B:91:BA:23:3C:6C:81:09:68:D1
Authority key identifier: 1B:68:65:61:26:19:83:73:D0:78:86:BF:4A:B8:FB:06:B9:00:67:80
Certificate issuer: /CN=1b68656126198373d07886bf4ab8fb06b9006780
Certificate serial: 01984B5407904BAC8BC2B56FCCA9FBB2D7DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.mft
Manifest number: 1604
Signing time: Sun 27 Jul 2025 10:00:54 +0000
Manifest this update: Sun 27 Jul 2025 10:00:54 +0000
Manifest next update: Mon 28 Jul 2025 10:00:54 +0000
Files and hashes: 1: FseoG8adiLo0RLAf1UjvghOTljU.roa (hash: KjYrZHqJ+HstyQr/uUASJXDHhJKgj2NLAuGOtjEwvqg=)
2: G2hlYSYZg3PQeIa_Srj7BrkAZ4A.crl (hash: B+FtbwfOlnpVlW92TVb5M8/j1HQIKRUiDhqegnv8vh0=)
3: HZwokTuDHsI8h-fzTOEC6oBOUUI.roa (hash: WM7QJ6OQyLcuKoO0U9leXRvAuei8nXuZdEOZY6w3qXc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Jul 2025 05:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:4b:54:07:90:4b:ac:8b:c2:b5:6f:cc:a9:fb:b2:d7:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b68656126198373d07886bf4ab8fb06b9006780
Validity
Not Before: Jul 27 10:00:54 2025 GMT
Not After : Jul 28 10:00:54 2025 GMT
Subject: CN=710820b0730d35fd32511b91ba233c6c810968d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b3:e9:b4:6d:c1:4c:de:c2:d6:70:fe:7e:bc:
f3:64:a2:98:0b:3e:b1:ed:c9:07:91:46:37:a5:c1:
b2:64:d3:92:94:fc:4c:be:3f:fb:9e:e7:e7:b5:df:
0b:b9:3c:26:07:20:69:f0:b9:ec:75:a3:46:25:7c:
9b:d2:42:68:6a:bb:d0:ac:c7:81:e6:96:9b:76:75:
21:36:a6:7b:90:d7:d6:e8:94:57:73:e8:8f:5c:f5:
9b:01:db:3f:fb:bc:dc:2b:7c:a3:9c:4e:b9:75:db:
4f:21:46:12:01:8e:d2:e3:49:4b:27:45:95:99:53:
9f:41:64:e8:d8:ab:e7:a2:0c:18:84:63:8f:17:30:
db:3b:d4:47:17:19:bf:0f:a3:ed:f4:17:58:b4:38:
32:dd:de:9b:46:a9:8f:15:dc:f0:ea:a0:8f:ec:bc:
2e:5a:3a:c1:a3:4e:93:59:c2:06:a0:86:17:71:39:
7b:5d:55:2d:94:0e:1b:00:2a:72:19:15:1c:de:24:
c1:d6:d2:05:13:ef:ff:a4:b0:5d:6a:4b:fb:11:68:
d8:b2:e2:96:a5:8c:6a:0d:ce:dc:42:28:20:38:4f:
f6:dc:6c:9f:65:b5:6d:3d:f8:3f:15:61:46:7e:6c:
18:a8:02:5a:b3:b6:f6:b3:31:5d:7d:d7:48:60:18:
54:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:08:20:B0:73:0D:35:FD:32:51:1B:91:BA:23:3C:6C:81:09:68:D1
X509v3 Authority Key Identifier:
keyid:1B:68:65:61:26:19:83:73:D0:78:86:BF:4A:B8:FB:06:B9:00:67:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/53100f-1bb3-4219-9c82-2398704ab50c/1/G2hlYSYZg3PQeIa_Srj7BrkAZ4A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:5a:8d:91:b0:e8:4c:7b:94:23:df:be:50:3b:28:bb:40:c6:
35:7f:fb:39:13:cd:58:62:16:b7:0a:31:3e:9c:10:4a:4a:f5:
8d:62:19:4f:1f:b1:33:b8:aa:e6:60:96:a8:5f:c6:a0:38:54:
a9:b4:cb:6c:77:bb:08:8e:fd:4c:f5:05:71:3d:7c:98:e5:0a:
9b:2b:c9:16:c6:2f:d5:13:13:c9:78:d6:1d:f5:db:ad:6e:0e:
d2:b6:78:20:58:06:1c:79:8e:ff:67:e4:2b:f8:86:1c:b4:e1:
51:8f:da:ea:43:be:34:7a:f8:2f:6b:a3:08:69:d1:02:c3:c6:
16:c4:8c:d0:c3:1c:66:22:a4:a4:d8:c0:c9:4f:1e:bf:a4:ff:
a1:7f:21:8e:a6:96:e6:4e:10:18:e9:5e:db:bf:de:ed:b3:f3:
32:9d:da:95:d7:f3:08:9a:41:ae:0b:ac:8a:8d:73:3f:84:25:
8a:bf:d2:f0:14:c0:8c:5d:e1:5c:fe:85:6f:42:4c:ca:9b:76:
bb:7d:5c:22:02:43:34:dc:e8:b4:0e:17:58:f5:61:34:d6:e1:
e6:bc:ba:df:34:b6:c7:54:01:8c:f4:c6:45:82:33:a3:37:b0:
95:55:de:4e:b0:d5:3f:6a:d2:90:f1:f9:76:0b:1f:98:e3:95:
01:38:b2:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jul 27 12:24:31 2025 by rpki-client