Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
File: G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft (raw, json)
Hash identifier: OI8FWmKCW0dnFDtJWqtIXzAJj67ILc2XsiSpEfq/ahA=
Subject key identifier: E9:42:DD:4C:56:A5:4D:F7:DC:E8:A7:A5:DA:15:45:FA:BA:2D:A4:21
Authority key identifier: 1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
Certificate issuer: /CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Certificate serial: 01977308DF6ABB5372A0C02BFCAFE956D7DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
Manifest number: 1524
Signing time: Sun 15 Jun 2025 10:00:50 +0000
Manifest this update: Sun 15 Jun 2025 10:00:50 +0000
Manifest next update: Mon 16 Jun 2025 10:00:50 +0000
Files and hashes: 1: G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl (hash: XLyvxcepUw0HfK9Gf90FyLTarKmZGRxMJUTGyYKn8e0=)
2: h-vjilG4zsTOTFr8jyiuNr7YOYQ.roa (hash: J1qho6qvh9PzDmhMh26kyKPFY1m2ydeARTE83gY+gJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 16 Jun 2025 10:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:73:08:df:6a:bb:53:72:a0:c0:2b:fc:af:e9:56:d7:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bebd33d4cd45465efa50faa824fb812c4173a27
Validity
Not Before: Jun 15 10:00:50 2025 GMT
Not After : Jun 16 10:00:50 2025 GMT
Subject: CN=e942dd4c56a54df7dce8a7a5da1545faba2da421
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:90:e7:d1:88:92:8a:75:e2:76:1b:e1:d7:71:
67:8d:37:0b:fe:ba:99:fb:c5:6d:c1:22:40:6a:20:
4e:f6:ee:dc:da:e2:5d:5e:f4:8c:1d:e9:bf:ba:10:
d1:0e:7d:25:09:fa:6b:eb:0f:91:24:c8:1e:a4:af:
4e:ed:63:8c:14:7f:7c:22:88:90:2a:f2:8f:e1:96:
70:07:93:ea:02:20:b1:f5:c7:3d:4d:9d:16:a0:d0:
d4:d6:47:d5:ab:3e:70:6e:24:3c:ae:3d:56:6a:45:
b3:b4:f7:5c:ed:81:98:05:2e:60:9e:fa:af:ed:b8:
c3:27:d9:1e:6a:0b:45:38:aa:30:b0:41:15:99:42:
37:02:a4:1d:1d:91:49:dd:a1:a5:ca:10:1e:2b:12:
02:5a:40:34:c8:28:32:32:5f:56:d9:ba:9f:60:0f:
38:10:e8:4c:4a:22:56:12:c8:06:f1:18:f0:6e:68:
35:da:b6:cd:05:61:e1:f0:f9:95:9a:42:c6:39:1f:
4d:8e:fc:9d:e1:9e:37:65:6b:f0:15:95:af:24:4f:
6f:31:ef:27:6e:80:98:a5:0d:0b:9a:1c:26:aa:4c:
e8:01:9e:cd:66:3d:83:14:9e:39:d8:1a:5e:d5:54:
2d:d0:d8:8b:32:32:1c:ac:dd:2d:21:c7:93:87:02:
d1:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:42:DD:4C:56:A5:4D:F7:DC:E8:A7:A5:DA:15:45:FA:BA:2D:A4:21
X509v3 Authority Key Identifier:
keyid:1B:EB:D3:3D:4C:D4:54:65:EF:A5:0F:AA:82:4F:B8:12:C4:17:3A:27
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G-vTPUzUVGXvpQ-qgk-4EsQXOic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/1e7b02-889b-4a53-a509-8ab5eb558473/1/G-vTPUzUVGXvpQ-qgk-4EsQXOic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:61:5d:fe:5e:be:51:00:68:47:6e:3f:a5:bc:65:d2:e7:4f:
12:2f:94:47:73:0e:05:ef:73:2f:f1:34:28:69:82:00:61:28:
49:96:13:45:ac:9a:de:15:17:da:23:f2:b6:4a:5f:01:f6:f3:
65:1a:11:d6:2e:f8:46:e5:34:cf:ac:4d:07:b4:cd:d9:ed:ff:
7b:d9:80:e3:cd:a9:17:71:ae:6e:2d:b8:1f:55:3b:16:3f:23:
07:f5:c1:56:89:a5:11:d0:20:3b:07:76:a5:53:87:2e:e6:7e:
67:aa:00:d8:3a:e0:53:6d:f0:e0:c4:61:cb:48:41:a4:58:27:
33:af:9a:92:a0:45:7d:bc:92:05:bf:68:2c:16:04:17:ff:00:
b1:32:3f:9f:41:4b:04:4e:fe:69:38:63:d8:cc:b7:32:58:a9:
bf:7d:1c:ce:e6:c8:84:bd:d7:79:3f:4e:06:20:73:4f:60:0d:
b4:60:70:4c:88:b9:65:9a:d3:15:81:03:2c:85:ec:61:63:40:
bc:35:3d:01:1e:d9:e1:f7:08:5b:21:81:49:94:7c:c8:53:d0:
e4:10:8d:3c:ea:69:7a:cf:c7:89:2f:aa:4d:bb:78:4f:e6:a8:
15:00:24:1d:0d:c0:05:9f:68:eb:34:a6:13:60:c4:27:7d:79:
37:e7:1f:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 17:24:51 2025 by rpki-client