Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json)
Hash identifier: try4O/Pcw2zxTmKvf/ki5AkWvrxpitgf/ODNAW9ow74=
Subject key identifier: 1B:1F:52:8E:23:43:AB:85:54:A9:20:0A:8E:7F:1F:44:37:BE:F1:6B
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial: 01976B4F429C3D0DA985D231C8A47920E959
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
Manifest number: 1520
Signing time: Fri 13 Jun 2025 22:00:45 +0000
Manifest this update: Fri 13 Jun 2025 22:00:45 +0000
Manifest next update: Sat 14 Jun 2025 22:00:45 +0000
Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: xOvNuXutuNyjBYdOEw29BHt4p4nV30wnbWxaNPxdzcQ=)
2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 22:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:4f:42:9c:3d:0d:a9:85:d2:31:c8:a4:79:20:e9:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Validity
Not Before: Jun 13 22:00:45 2025 GMT
Not After : Jun 14 22:00:45 2025 GMT
Subject: CN=1b1f528e2343ab8554a9200a8e7f1f4437bef16b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:76:d0:19:5d:ad:41:c5:6f:3d:44:6c:73:ca:
0b:34:03:67:d7:78:19:fd:47:79:12:5e:02:36:b4:
5a:fe:f4:c5:a2:56:27:d8:0a:3c:ce:1b:32:ab:13:
0a:09:40:b1:e2:1e:30:e0:8d:06:9b:d9:f0:af:32:
cd:61:6b:9f:91:18:b6:9a:90:31:4d:11:b7:cd:8a:
d6:04:ab:fd:67:3f:96:ea:0e:a9:bd:6e:91:98:e9:
cc:74:6e:db:ec:e8:09:14:94:06:7d:f8:12:4d:5c:
bd:b5:6f:ff:e8:e0:f9:b5:b5:34:9a:7d:b7:79:a4:
de:8d:8c:88:f4:0a:6a:51:67:e8:fc:bc:00:5c:aa:
62:8d:bc:e6:f2:ea:b1:33:c0:f1:c9:b5:f9:e5:48:
94:be:1b:56:6a:7c:50:29:fd:33:1e:70:de:17:30:
96:fc:23:80:99:a6:b7:45:e0:7b:54:b8:77:35:31:
4d:3c:3e:fc:94:50:c7:f3:2c:6f:96:46:97:f1:7b:
75:76:80:e8:f9:06:65:a7:b8:3b:40:59:0f:ee:70:
09:48:9a:47:9a:6a:f5:8a:df:f7:b6:57:28:68:33:
27:d0:60:6f:b0:40:a4:f0:98:b3:83:e4:71:46:93:
84:1d:88:50:63:6a:8b:11:47:4a:54:81:ba:e8:8b:
80:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:1F:52:8E:23:43:AB:85:54:A9:20:0A:8E:7F:1F:44:37:BE:F1:6B
X509v3 Authority Key Identifier:
keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:e1:78:2a:b5:1f:70:76:06:79:30:8b:90:85:6d:a9:fd:c9:
d6:8f:7f:cc:b5:3a:fa:f5:1c:02:d9:a6:51:8f:07:6a:ff:b8:
0d:f1:8b:3f:5a:8b:a8:82:30:54:39:fc:1f:4e:ee:1e:68:d4:
9e:63:1e:f8:7f:fe:9c:ca:99:61:38:aa:1f:8c:a5:ed:6f:ba:
f5:c9:5d:9a:b8:bb:0d:43:e1:ec:69:70:f0:cf:98:00:2d:36:
6c:e6:fe:86:cf:e7:de:ce:ee:e0:c0:c9:ea:1b:e6:c2:65:42:
0c:f0:09:a9:c7:59:9c:81:3f:24:0e:1a:3b:e5:53:14:9f:79:
2c:cb:3e:ad:e9:29:2d:e1:8a:0c:d5:7e:e5:e4:9d:76:15:ae:
d5:c3:76:da:1c:2a:73:1d:34:7c:90:f0:0a:37:ae:f4:1b:b7:
1a:35:01:e9:53:81:46:a6:fd:4b:fa:b4:01:e7:ce:f4:26:95:
1b:ae:75:d8:8b:eb:37:dd:1a:78:de:ca:ce:8c:1c:59:72:b0:
31:fe:bc:06:c6:46:e0:4a:bc:60:3c:e1:8e:ad:18:6a:a1:43:
97:2d:66:36:4a:07:7b:7d:70:cc:be:e6:7e:37:d9:c5:19:c2:
d3:66:cf:b7:5b:6e:61:43:81:dd:63:87:e0:8c:9a:cb:8f:9a:
48:d4:a0:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 05:19:55 2025 by rpki-client