
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json)
Hash identifier: 6K+R5R3+YDUP2oYSPOKdDHI8bZppkGmVWmwlfALsvnU=
Subject key identifier: D7:51:38:9B:EB:0C:AE:7D:2B:17:DD:9E:4F:AA:01:86:4E:32:C7:31
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial: 01976395AF8B7D4183BAAA0F084EA93DDD22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
Manifest number: 151C
Signing time: Thu 12 Jun 2025 10:00:43 +0000
Manifest this update: Thu 12 Jun 2025 10:00:43 +0000
Manifest next update: Fri 13 Jun 2025 10:00:43 +0000
Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: 43HNmw13NO7VSr1yE2UMnohvGXElU0GVaarHRTkLKSc=)
2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:95:af:8b:7d:41:83:ba:aa:0f:08:4e:a9:3d:dd:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Validity
Not Before: Jun 12 10:00:43 2025 GMT
Not After : Jun 13 10:00:43 2025 GMT
Subject: CN=d751389beb0cae7d2b17dd9e4faa01864e32c731
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9b:fb:9c:28:8d:8d:64:9a:ba:c6:ca:ca:42:
57:eb:26:43:d7:8e:d8:9f:e9:3f:4f:e6:ee:ae:07:
fd:a1:9c:af:44:32:03:48:42:8e:f6:e8:ba:13:7f:
d9:db:28:85:c2:16:65:fb:4e:34:57:7c:ad:d1:d2:
ea:b5:b9:87:c6:31:1b:a3:c3:87:6d:03:3d:d9:b4:
cd:92:a3:3a:96:bc:bb:2b:56:88:36:21:38:34:13:
60:d8:6a:37:be:e4:55:23:33:67:1e:e1:61:e6:3d:
7d:79:17:69:31:b3:52:aa:87:c6:cf:a5:b1:3d:1d:
22:f6:63:48:38:b6:b2:31:7b:ff:ca:72:ba:e9:b5:
e1:fe:6f:c4:40:79:87:ce:5d:9b:ea:01:03:3c:ed:
9b:51:31:45:86:e6:33:69:d3:93:d3:01:21:b6:da:
3d:0a:96:f7:ed:db:65:00:0f:6f:f8:d1:c4:93:68:
ad:56:f0:93:2e:7c:3c:a8:a7:0f:fc:aa:75:c6:85:
2b:3e:13:17:a2:d1:c4:17:4f:bc:fe:ab:ba:f5:07:
03:18:3e:4b:d4:08:aa:1f:0d:68:74:33:65:75:6c:
48:51:8f:08:80:2b:68:22:06:7e:30:e8:f1:14:ee:
1f:75:27:45:e3:9a:40:2f:7e:69:a9:11:8e:ef:c1:
92:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:51:38:9B:EB:0C:AE:7D:2B:17:DD:9E:4F:AA:01:86:4E:32:C7:31
X509v3 Authority Key Identifier:
keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:f0:e4:f4:01:f0:77:2a:62:12:c6:c3:4a:66:ac:af:cf:2d:
b6:64:75:b5:d5:63:b8:d6:54:ab:21:c5:e6:db:8b:b1:f5:b6:
e8:0e:39:32:c5:86:9b:4c:87:22:2b:4c:02:a4:6f:14:0f:af:
dd:52:1d:36:d5:f6:d1:c5:81:ae:7a:46:ea:ce:97:72:93:99:
a7:af:d8:45:ca:9c:d3:6f:bd:8f:99:7d:eb:51:c3:43:e4:ad:
58:82:9f:3e:c4:7b:2a:20:26:52:be:0c:95:5a:bf:d7:d6:66:
03:66:6e:c7:56:b0:15:c4:67:1c:00:73:0b:dc:1a:be:a2:96:
ab:67:12:c6:ef:fb:45:2e:45:ea:dd:a0:96:7a:73:c8:ef:2e:
4b:d3:fd:06:75:fb:15:35:36:04:60:bd:60:a1:d9:10:c9:5c:
3b:c2:37:82:84:a0:36:19:4c:b9:96:d8:39:55:10:1c:1b:b2:
59:d4:d5:45:d8:a5:51:fb:44:1f:42:14:42:7f:47:33:56:94:
01:47:06:82:cb:fe:9d:ac:cc:c4:80:62:3f:47:6e:56:7f:9b:
d9:9e:d2:79:8e:2e:14:b6:83:8d:37:e6:6b:05:75:8d:62:6a:
c5:7f:75:b6:a2:b0:2f:6c:49:58:26:bf:ae:da:01:be:84:d2:
a4:7c:a5:47
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 14:43:03 2025 by rpki-client