Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json)
Hash identifier: 3OKATbcMZ3oVHFQ4GZN4PDWcMvsp6Yf3IlseXW+hG/8=
Subject key identifier: A0:D0:BF:2E:C9:B0:82:E9:53:34:B4:94:C6:B1:42:F8:A4:41:3F:D9
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial: 019759EE8FCC4213C6BAB044464DA4E4EF2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
Manifest number: 1517
Signing time: Tue 10 Jun 2025 13:01:35 +0000
Manifest this update: Tue 10 Jun 2025 13:01:35 +0000
Manifest next update: Wed 11 Jun 2025 13:01:35 +0000
Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: QZjaAOwzCqMrSlVMsRvEQWBUPEVk+bxlhkpA2H8cUuE=)
2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 13:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:59:ee:8f:cc:42:13:c6:ba:b0:44:46:4d:a4:e4:ef:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Validity
Not Before: Jun 10 13:01:35 2025 GMT
Not After : Jun 11 13:01:35 2025 GMT
Subject: CN=a0d0bf2ec9b082e95334b494c6b142f8a4413fd9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:7b:5e:ce:62:03:81:50:a5:47:6d:fb:ad:90:
10:77:eb:ed:ef:97:cd:4b:06:65:f8:86:50:1a:1a:
61:47:0d:94:28:87:67:48:8a:3d:45:7e:b6:9b:f4:
b9:2e:c4:5b:6c:bb:4f:79:b6:52:d3:78:85:90:72:
19:e5:c4:08:0c:23:f9:f6:37:c9:4e:64:13:39:a3:
ff:65:cc:71:e2:06:e4:d7:ec:ad:e7:f6:cd:12:0d:
c0:40:c3:20:29:e9:08:b6:4f:07:f9:7a:05:a7:83:
4a:a7:05:1a:da:08:32:d6:da:34:c4:aa:6d:04:d7:
74:22:4d:45:fc:52:12:bc:91:35:6c:b0:8a:22:3d:
9e:6b:df:d6:d8:6a:55:66:b1:e7:a3:fe:4f:c9:82:
6a:bf:18:36:b8:4c:47:a4:e5:ac:85:9d:9d:eb:86:
59:6d:75:91:95:d2:2b:2f:0a:cb:0e:d9:1d:a0:3e:
22:dc:cb:ef:30:db:37:2d:61:39:26:48:8f:76:78:
d7:8f:33:22:c4:9c:4a:1a:35:c7:79:6b:32:a1:3b:
83:5c:0f:c5:21:1a:00:82:15:a5:a5:ea:bc:ed:0a:
8e:c4:9c:d9:60:23:2c:21:10:1e:4a:8d:8c:9d:17:
6c:cb:2c:f4:e7:68:d3:d0:e5:17:af:bb:a1:63:9b:
5a:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:D0:BF:2E:C9:B0:82:E9:53:34:B4:94:C6:B1:42:F8:A4:41:3F:D9
X509v3 Authority Key Identifier:
keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b5:84:07:de:c9:96:be:f3:8e:2c:57:d8:72:71:9d:71:25:88:
15:07:fe:ec:58:ad:df:3b:11:1f:b3:90:9a:ce:06:4c:35:bc:
73:d7:e8:26:c2:0c:c1:68:e8:7c:d6:08:0b:4c:a4:17:2f:a3:
a7:28:72:06:ce:a8:63:04:42:07:8c:b8:a2:73:ff:ca:32:0e:
6c:e9:d5:b8:1d:d0:df:6a:98:83:87:6a:0e:5f:95:f0:a3:40:
f3:31:87:f0:7a:4b:e9:54:d9:5b:0b:8f:af:6f:d2:10:d8:8d:
da:e4:9c:72:78:88:3b:c0:82:fd:e1:bb:ae:a6:a9:1a:a3:8a:
42:7c:0b:78:3d:0f:8a:eb:39:3f:67:6d:62:1c:6b:da:bb:8d:
9f:ee:16:70:75:56:8d:ce:9b:0e:ce:30:6a:5c:69:e3:2a:4d:
a0:61:a8:b9:7f:e8:40:5b:83:0e:fd:c5:5c:2d:87:05:93:50:
8a:8d:16:a3:ce:06:d0:9c:a5:24:37:a8:aa:fc:6b:7a:0a:76:
8e:30:3d:da:dc:51:90:70:de:64:fd:24:2b:7a:cf:09:d9:5a:
c3:c5:0c:c3:e9:fa:c8:dd:ac:cd:76:83:e8:a1:8c:64:95:96:
c3:ab:dc:7d:59:3b:bd:96:7b:85:84:7f:93:91:cf:20:7e:30:
4b:31:79:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 19:37:40 2025 by rpki-client