Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.mft
File: GXXTHyIv7CWL1HYY_flMURzl4G4.mft (raw, json)
Hash identifier: i6Q87f82sw49eULOwU1WC+Z5JHV2Ahu6arLgAAYXeic=
Subject key identifier: E7:7A:03:04:02:7A:88:1C:B8:63:C6:BE:E1:71:ED:5D:B5:4B:DB:77
Authority key identifier: 19:75:D3:1F:22:2F:EC:25:8B:D4:76:18:FD:F9:4C:51:1C:E5:E0:6E
Certificate issuer: /CN=1975d31f222fec258bd47618fdf94c511ce5e06e
Certificate serial: 0198477724B5B61B1EB681D3418CEA3A1825
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GXXTHyIv7CWL1HYY_flMURzl4G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.mft
Manifest number: 0D43
Signing time: Sat 26 Jul 2025 16:00:47 +0000
Manifest this update: Sat 26 Jul 2025 16:00:47 +0000
Manifest next update: Sun 27 Jul 2025 16:00:47 +0000
Files and hashes: 1: GXXTHyIv7CWL1HYY_flMURzl4G4.crl (hash: U2/dgfbxsJRUDyadR03o4y/VORSCszWmptgx5AoHKEY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.mft
rsync://rpki.ripe.net/repository/DEFAULT/GXXTHyIv7CWL1HYY_flMURzl4G4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 27 Jul 2025 11:00:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:47:77:24:b5:b6:1b:1e:b6:81:d3:41:8c:ea:3a:18:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1975d31f222fec258bd47618fdf94c511ce5e06e
Validity
Not Before: Jul 26 16:00:47 2025 GMT
Not After : Jul 27 16:00:47 2025 GMT
Subject: CN=e77a0304027a881cb863c6bee171ed5db54bdb77
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:cb:04:d7:f5:ee:b5:72:11:fb:aa:04:1e:84:
b9:2b:c7:79:2e:77:0c:f2:b9:4d:ed:17:23:48:ca:
20:43:7d:fa:5b:4f:de:fe:e8:92:11:a3:2c:a5:84:
41:be:e8:7b:ff:70:47:15:9c:86:35:01:06:7d:59:
f1:34:a4:aa:65:fe:cd:36:1e:32:cc:79:f8:a7:4d:
8e:99:0a:38:b2:86:9b:59:8b:8d:ef:83:33:bd:65:
b2:06:ac:02:f9:58:fd:98:21:84:dd:f4:a7:7d:bc:
63:16:e7:ad:d3:dd:37:03:c8:cd:4a:24:f3:eb:8f:
5f:6a:f6:3e:14:65:f0:d9:12:68:e7:45:11:58:d5:
6d:86:ac:d0:3a:b3:9f:f9:ee:ac:bd:c5:71:2f:21:
28:7f:a0:c1:56:37:bf:4c:4d:f3:4d:cd:54:f8:8f:
7c:25:ea:da:2a:de:67:50:98:1f:9a:4f:66:68:88:
06:47:3b:ca:13:c0:e4:fe:c5:c4:f9:83:d7:90:8b:
e4:83:96:b1:c1:83:38:54:2b:c6:81:7f:ce:72:0c:
c8:da:d0:4b:2a:52:ab:1e:c0:e9:01:57:eb:e6:61:
2c:72:55:bc:e4:da:d3:ed:7d:4a:75:4a:03:4b:d0:
67:dc:ec:a1:39:65:81:31:47:9e:66:c8:c2:38:67:
bf:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:7A:03:04:02:7A:88:1C:B8:63:C6:BE:E1:71:ED:5D:B5:4B:DB:77
X509v3 Authority Key Identifier:
keyid:19:75:D3:1F:22:2F:EC:25:8B:D4:76:18:FD:F9:4C:51:1C:E5:E0:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GXXTHyIv7CWL1HYY_flMURzl4G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:68:dc:1c:d4:32:cd:0c:42:a2:44:04:3a:81:aa:4b:22:bc:
4e:2d:23:db:11:19:65:5f:7a:17:21:c5:97:af:8c:25:71:61:
f7:3c:ff:58:00:b7:b5:8e:69:28:9c:bf:67:1f:bc:2f:b2:7c:
a3:a1:74:dc:93:90:be:72:85:2e:72:6f:78:78:ba:57:6e:5b:
22:f2:79:2c:07:47:9a:21:30:bf:41:8f:40:d2:28:69:bb:ab:
e5:be:c6:bb:7a:b2:71:c6:22:f9:86:bf:30:13:9a:ad:bb:3a:
17:28:af:22:b0:3c:64:bc:cd:4a:3e:af:4b:65:b8:64:d5:13:
e9:b2:c3:18:b2:94:f3:6b:fb:ee:5f:f0:9b:10:c5:55:75:94:
d4:c8:04:3d:99:be:dc:f3:67:6c:e1:53:c6:ce:84:54:89:2c:
53:e7:bb:b3:45:e5:d4:15:89:d2:e0:a4:1f:29:ba:2d:34:31:
4d:71:28:7d:22:9a:67:f4:5e:a1:e5:13:da:ff:e1:3a:f0:90:
30:f6:c4:c4:85:3c:5e:16:f4:5f:2e:32:2b:66:72:c0:0c:14:
da:f1:eb:a1:3b:90:b9:95:70:d1:ca:fc:96:da:24:55:9d:ef:
66:e7:7a:f7:47:83:4d:e6:22:dd:08:3a:24:7b:45:d7:8c:61:
f8:fb:a6:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jul 26 20:54:31 2025 by rpki-client