Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
File: gSBe85sNP11y-h2XHUGR4Lomhr8.mft (raw, json)
Hash identifier: RudLD5cP99p1N847/X+7pfPSWNMAjV1zjpZzYM+nTT8=
Subject key identifier: B2:78:51:A0:F0:16:36:6A:3F:EB:DE:FC:AC:07:5B:84:B1:CA:A0:76
Authority key identifier: 81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
Certificate issuer: /CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Certificate serial: 019845BFA0D63695A9D651EDFD90F6D82D08
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
Manifest number: 0CE5
Signing time: Sat 26 Jul 2025 08:00:43 +0000
Manifest this update: Sat 26 Jul 2025 08:00:43 +0000
Manifest next update: Sun 27 Jul 2025 08:00:43 +0000
Files and hashes: 1: gSBe85sNP11y-h2XHUGR4Lomhr8.crl (hash: 4sK/5b2eZdYQJTzUt57F27pQy8/DkQe+EtLJO2nK6Vc=)
2: tejhqyIYcfJnZD52AowM2BpZATQ.roa (hash: oI2/9MVukstCSiurn/ztv7Ci6tJsVocDaOvri7bb8FY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 06:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:45:bf:a0:d6:36:95:a9:d6:51:ed:fd:90:f6:d8:2d:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Validity
Not Before: Jul 26 08:00:43 2025 GMT
Not After : Jul 27 08:00:43 2025 GMT
Subject: CN=b27851a0f016366a3febdefcac075b84b1caa076
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:c2:64:c6:d8:36:6d:56:65:ca:35:04:7f:88:
ef:ad:29:39:fb:0f:4c:f8:69:e0:d1:0e:a0:79:1c:
0f:bb:dd:1f:90:23:e8:ed:2f:93:26:df:22:81:08:
f0:1e:3d:74:e7:c3:e8:6a:bb:25:b6:dd:36:84:84:
88:a9:b5:57:f5:2a:75:b5:e7:b7:12:88:9d:b3:43:
58:82:1b:bd:24:fd:ac:02:69:2c:01:b1:20:15:34:
c3:80:4a:5b:eb:40:c5:a8:1d:b5:d9:68:ad:01:9f:
04:d3:b6:2c:16:2a:66:5f:96:ef:78:3a:56:6c:84:
84:77:4d:6e:1f:06:71:33:34:8a:8d:44:a6:d2:f3:
2f:78:07:5b:79:41:96:9c:dd:77:66:e7:fa:22:9b:
19:1e:16:a7:b1:db:7e:13:f6:dc:39:9e:b4:7d:0a:
a8:b4:9a:43:8b:a2:53:6d:b0:5f:9a:4b:38:8d:5e:
4d:ca:30:99:c0:d8:f1:ac:f4:90:14:57:4c:45:4d:
7f:a5:d2:d3:6b:3a:af:1c:a9:f5:27:f1:77:3c:38:
b3:80:d1:b0:f3:2c:9b:ec:7d:51:c6:c8:e5:21:5d:
ba:46:fc:6a:22:6c:dd:16:0f:0d:61:6d:94:3d:32:
51:5b:33:b2:49:97:b3:10:82:f4:ae:01:65:53:57:
91:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:78:51:A0:F0:16:36:6A:3F:EB:DE:FC:AC:07:5B:84:B1:CA:A0:76
X509v3 Authority Key Identifier:
keyid:81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:aa:7b:fb:01:32:f5:40:dd:8d:fa:c0:8d:26:74:34:a1:8d:
3a:7c:4a:2f:23:9c:cc:36:b4:f3:53:ee:d6:6d:47:3a:35:1b:
8a:26:67:e0:21:8d:4f:47:10:f4:31:e4:b2:4b:5d:10:a7:15:
95:0f:1e:43:80:1b:fb:d8:0d:f3:ab:f0:8e:ac:14:ae:5f:3d:
d2:06:60:1a:6b:35:59:79:d3:f2:df:ca:d2:fa:58:0b:d8:00:
fa:43:b4:6f:de:8c:d9:59:70:f9:b3:35:f1:90:a2:88:41:10:
c4:4c:cd:f6:2b:40:4e:b7:ac:39:1f:fb:93:09:fb:07:93:ba:
73:15:95:e6:a1:a2:b4:25:75:33:90:9d:9c:31:d8:2f:e7:a7:
32:80:e4:62:95:0f:bc:b9:fa:6a:61:20:d0:52:f5:91:94:f4:
d1:de:55:98:39:39:27:86:5b:94:e5:e9:a0:d8:a6:4b:95:1f:
32:51:df:d9:df:10:3b:2a:a0:c9:fa:81:e8:82:d8:3d:18:ec:
e7:c6:1c:d2:ae:29:b8:41:94:ae:31:bd:67:67:c3:c3:5e:ad:
3d:7b:ac:37:35:64:c8:e9:ce:48:94:af:26:f5:10:d8:5d:b8:
26:54:df:b9:31:6d:58:ab:79:a2:67:e1:0b:f1:7d:99:6a:1b:
8c:44:da:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 14:29:45 2025 by rpki-client