Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
File: GtTMzv5VxeIjqbMgW5OKPRyehtU.mft (raw, json)
Hash identifier: VBbldFrvz+kWrNNoJ5xAOondIGrK7mNDRnI8vvfqNAA=
Subject key identifier: CF:15:0A:1E:F5:3D:C7:67:95:76:47:8E:50:BE:77:BD:62:47:B0:33
Authority key identifier: 1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
Certificate issuer: /CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Certificate serial: 019750B414A33AF3699F2BC2AC837FD5D1BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
Manifest number: 1261
Signing time: Sun 08 Jun 2025 18:01:08 +0000
Manifest this update: Sun 08 Jun 2025 18:01:08 +0000
Manifest next update: Mon 09 Jun 2025 18:01:08 +0000
Files and hashes: 1: 7lJrTTIO2zooVSl7zZp_UO3NA2A.roa (hash: ob9QTWC/tQoW4XviSigFRT+IWVM+wZzBVH2/SY3oV7I=)
2: GtTMzv5VxeIjqbMgW5OKPRyehtU.crl (hash: cqgv+NUKI+eoTncycXBS7jTN4kLRrhQMrPh9BDQ/MZs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b4:14:a3:3a:f3:69:9f:2b:c2:ac:83:7f:d5:d1:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Validity
Not Before: Jun 8 18:01:08 2025 GMT
Not After : Jun 9 18:01:08 2025 GMT
Subject: CN=cf150a1ef53dc7679576478e50be77bd6247b033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:7a:29:c6:8a:cf:a1:c4:5a:7b:59:7c:6e:0e:
c3:0a:be:f7:53:20:32:e5:ed:86:f9:04:1c:aa:24:
b3:8b:8a:d7:db:e5:aa:62:91:a4:38:9f:52:5b:d8:
3c:ef:34:e0:cb:d2:a4:0d:13:b8:11:d3:04:50:26:
f9:54:45:44:d0:33:c0:82:ef:2f:46:48:89:5c:3b:
f4:de:1c:6f:6d:47:2c:01:22:88:af:64:75:38:33:
36:79:91:4a:95:b3:42:4c:82:4e:bb:e8:12:41:aa:
6a:e2:29:3c:f6:d4:e6:3c:bc:e1:77:1a:f6:ae:65:
9e:8d:f2:e1:06:75:e9:b0:ae:9d:f6:09:cd:23:58:
34:66:c5:a2:64:19:b7:93:df:49:6b:96:87:93:b2:
2d:fd:bf:0b:e6:3c:83:19:75:f0:23:e3:2e:c1:c4:
6a:dd:8f:6e:55:2e:9c:7c:bb:d9:87:5d:1d:fc:41:
48:7d:e0:a3:59:35:eb:9f:ad:e5:59:88:d5:86:c6:
f1:59:a5:67:ce:d2:74:0a:15:0c:4f:1e:99:c1:4c:
51:bb:4f:ae:9d:94:67:3b:55:fc:6a:fe:84:f8:48:
a7:56:7c:79:74:52:8d:12:ff:4c:a8:47:9f:9b:ec:
81:10:a2:f1:04:e6:ce:c2:57:45:26:90:c5:7a:4f:
05:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:15:0A:1E:F5:3D:C7:67:95:76:47:8E:50:BE:77:BD:62:47:B0:33
X509v3 Authority Key Identifier:
keyid:1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:d3:30:50:7b:17:99:69:07:6e:08:09:e9:e7:23:6a:6a:d4:
10:23:b2:17:32:85:bb:e2:ea:3a:6b:57:90:8a:e0:52:29:60:
c5:e0:0c:5f:0c:94:f7:ba:19:19:45:ab:54:b3:ad:b2:81:5e:
a3:da:bb:d2:a2:da:b8:d6:65:91:d7:3d:bb:a4:fa:ac:83:19:
94:94:55:63:46:42:3c:35:e8:94:42:81:13:78:ab:7f:60:36:
02:3b:5c:3d:7c:19:3f:0e:0c:a7:55:5d:2e:3b:81:e6:1b:23:
d7:af:56:01:d4:9b:80:ae:e5:f3:ae:3d:cc:32:dd:04:17:85:
f7:f7:8d:7f:96:a6:47:1e:9d:e8:d8:49:2f:69:cf:66:31:a0:
ad:6f:8a:4a:97:5f:b7:c8:81:63:1e:58:f4:13:0c:7f:a0:2f:
ae:19:93:98:29:b4:8a:0c:5a:dd:5f:05:a9:ba:da:66:91:57:
a8:2b:3f:bc:b6:e5:d1:b2:f0:e1:fd:12:1e:2b:93:dc:05:4f:
15:ce:e3:9e:cf:a5:d2:49:e9:fc:29:da:0f:ff:0f:37:d6:0b:
e5:97:ae:8e:f6:63:78:4a:c2:10:3d:1d:ea:cf:5c:c3:b8:2a:
3f:b1:4c:c0:53:d4:90:92:bb:2f:2e:78:6b:99:50:b7:e7:3f:
05:d0:2f:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 00:23:24 2025 by rpki-client