Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
File: GyceKuYih3VSuJ28R016EwWEpI4.mft (raw, json)
Hash identifier: mi1sHVher0rAYRWOUAGulPMY6AsuCgyOxknR6/Uy5+g=
Subject key identifier: 52:D3:D3:B6:15:4E:1F:B0:89:45:A8:63:30:10:E0:88:EE:C0:36:73
Authority key identifier: 1B:27:1E:2A:E6:22:87:75:52:B8:9D:BC:47:4D:7A:13:05:84:A4:8E
Certificate issuer: /CN=1b271e2ae622877552b89dbc474d7a130584a48e
Certificate serial: 01974967F6FA113887C49B3A4BB6FD7F4AF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
Manifest number: 0989
Signing time: Sat 07 Jun 2025 08:00:39 +0000
Manifest this update: Sat 07 Jun 2025 08:00:39 +0000
Manifest next update: Sun 08 Jun 2025 08:00:39 +0000
Files and hashes: 1: GyceKuYih3VSuJ28R016EwWEpI4.crl (hash: 8wgfVcIwWzKQflNr4kyIxbPzPA6X8x5IGRi/hYfd5uE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.crl
rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 08:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:67:f6:fa:11:38:87:c4:9b:3a:4b:b6:fd:7f:4a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b271e2ae622877552b89dbc474d7a130584a48e
Validity
Not Before: Jun 7 08:00:39 2025 GMT
Not After : Jun 8 08:00:39 2025 GMT
Subject: CN=52d3d3b6154e1fb08945a8633010e088eec03673
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:22:85:3c:5c:46:c5:66:af:ec:c9:22:53:ed:
df:81:65:19:95:d2:7c:37:9e:92:dc:e7:f6:ab:0c:
21:46:75:64:4a:87:7e:8f:96:69:a4:08:0b:88:c4:
a8:95:9a:fa:81:94:63:13:5f:32:32:be:80:cc:a9:
00:a8:26:1e:3f:7d:87:80:87:9c:95:09:44:5f:96:
49:d6:e2:a0:21:6c:01:8a:31:57:28:9a:ca:78:6a:
5b:72:69:07:df:04:29:ca:b3:91:da:46:43:4a:ac:
c3:5e:e9:5b:31:e7:fc:22:d2:cb:8c:5b:70:e5:dd:
e9:ea:60:2d:7d:8d:1b:2d:54:30:28:f9:b3:66:57:
cb:ed:2b:d7:63:96:99:92:3a:82:45:e7:28:b9:14:
d2:91:33:c0:c8:90:c8:5d:0e:b7:b1:c2:38:d2:d0:
0a:df:d9:c4:f9:62:6c:bf:7f:31:0d:60:25:0d:d1:
20:3a:73:b5:0f:ee:4a:ae:43:8e:a6:1b:28:5b:aa:
21:1d:5f:1a:34:08:f8:3b:0d:8a:a1:af:25:a0:65:
8b:b5:41:a6:a6:03:ff:ef:3e:e1:f1:d4:dc:2a:dd:
97:91:b6:d7:ee:1d:3b:5b:fa:3e:60:56:fa:16:c3:
05:d3:1c:d3:23:63:ce:68:36:15:c2:23:88:19:28:
98:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:D3:D3:B6:15:4E:1F:B0:89:45:A8:63:30:10:E0:88:EE:C0:36:73
X509v3 Authority Key Identifier:
keyid:1B:27:1E:2A:E6:22:87:75:52:B8:9D:BC:47:4D:7A:13:05:84:A4:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GyceKuYih3VSuJ28R016EwWEpI4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/02/20d6a8-c4e2-47e3-90df-1c8ed36d2566/1/GyceKuYih3VSuJ28R016EwWEpI4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:21:3e:30:e4:45:88:08:9c:54:49:5e:18:25:dc:98:19:77:
dd:be:6c:b7:d3:5e:38:d6:4b:6b:1d:b4:22:8e:b7:7c:7f:5f:
06:f7:93:77:66:d9:4c:d1:1c:16:69:0b:84:8d:52:21:9f:5c:
38:6a:8d:bb:78:70:c8:18:ed:fb:61:6f:5e:49:87:2f:5a:84:
66:04:dc:c7:03:10:df:74:79:0b:f8:3b:df:ab:20:10:d8:f5:
c1:3b:a3:79:b8:50:d7:c8:63:c4:48:61:f0:1a:e2:0c:30:ac:
e3:be:d8:97:27:3d:fb:ce:1a:2b:3a:a4:e9:e7:3a:a2:a6:20:
7c:63:ee:af:cd:8e:18:f2:c0:6d:56:a8:c9:86:3e:83:4d:40:
a4:0f:62:83:de:d1:b8:58:87:68:10:68:b4:ad:4e:0c:57:58:
ca:87:c1:79:31:da:9e:73:1d:e2:07:12:43:91:ee:0f:37:35:
80:e0:9a:37:b2:f4:d2:7e:e6:2c:fe:8c:c0:53:eb:03:4c:d9:
b1:f9:35:d3:34:62:ec:13:2d:ff:1b:7f:fb:9d:88:27:c7:b1:
db:c2:7d:83:08:01:eb:69:da:c5:0c:60:9d:be:27:43:c8:73:
98:f9:be:8b:4f:59:b9:ab:b0:8e:81:39:af:0b:33:d8:f9:22:
7d:c5:fe:95
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdJZ/b6ETiHxJs6S7b9f0r4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMjcxZTJhZTYyMjg3NzU1MmI4OWRiYzQ3NGQ3YTEzMDU4
NGE0OGUwHhcNMjUwNjA3MDgwMDM5WhcNMjUwNjA4MDgwMDM5WjAzMTEwLwYDVQQD
Eyg1MmQzZDNiNjE1NGUxZmIwODk0NWE4NjMzMDEwZTA4OGVlYzAzNjczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAySKFPFxGxWav7MkiU+3fgWUZldJ8
N56S3Of2qwwhRnVkSod+j5ZppAgLiMSolZr6gZRjE18yMr6AzKkAqCYeP32HgIec
lQlEX5ZJ1uKgIWwBijFXKJrKeGpbcmkH3wQpyrOR2kZDSqzDXulbMef8ItLLjFtw
5d3p6mAtfY0bLVQwKPmzZlfL7SvXY5aZkjqCRecouRTSkTPAyJDIXQ63scI40tAK
39nE+WJsv38xDWAlDdEgOnO1D+5KrkOOphsoW6ohHV8aNAj4Ow2Koa8loGWLtUGm
pgP/7z7h8dTcKt2XkbbX7h07W/o+YFb6FsMF0xzTI2POaDYVwiOIGSiYoQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFLT07YVTh+wiUWoYzAQ4IjuwDZzMB8GA1UdIwQY
MBaAFBsnHirmIod1UridvEdNehMFhKSOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3ljZUt1WWloM1ZTdUoyOFIwMTZFd1dFcEk0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi8yMGQ2YTgtYzRlMi00N2UzLTkwZGYt
MWM4ZWQzNmQyNTY2LzEvR3ljZUt1WWloM1ZTdUoyOFIwMTZFd1dFcEk0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMi8yMGQ2YTgtYzRlMi00N2UzLTkwZGYtMWM4ZWQzNmQyNTY2
LzEvR3ljZUt1WWloM1ZTdUoyOFIwMTZFd1dFcEk0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAliE+MORF
iAicVEleGCXcmBl33b5st9NeONZLax20Io63fH9fBveTd2bZTNEcFmkLhI1SIZ9c
OGqNu3hwyBjt+2FvXkmHL1qEZgTcxwMQ33R5C/g736sgENj1wTujebhQ18hjxEhh
8BriDDCs477Ylyc9+84aKzqk6ec6oqYgfGPur82OGPLAbVaoyYY+g01ApA9ig97R
uFiHaBBotK1ODFdYyofBeTHannMd4gcSQ5HuDzc1gOCaN7L00n7mLP6MwFPrA0zZ
sfk10zRi7BMt/xt/+52IJ8ex28J9gwgB62naxQxgnb4nQ8hzmPm+i09ZuauwjoE5
rwsz2PkifcX+lQ==
-----END CERTIFICATE-----
Generated at Sat Jun 7 18:43:30 2025 by rpki-client