Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
File: gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft (raw, json)
Hash identifier: MX4YollwImNZOK2ai7+jpG62NheLlN2SKiXN/2kpIyk=
Subject key identifier: 67:4F:95:BA:F2:0A:43:A8:16:78:4A:CC:E7:4B:C8:42:0B:75:AD:07
Authority key identifier: 83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
Certificate issuer: /CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Certificate serial: 01976B17FBA75800404BFDFCB65E13CB40D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
Manifest number: 0EF0
Signing time: Fri 13 Jun 2025 21:00:22 +0000
Manifest this update: Fri 13 Jun 2025 21:00:22 +0000
Manifest next update: Sat 14 Jun 2025 21:00:22 +0000
Files and hashes: 1: bNgvelwVPVFr3h5RMUdr0LrSObg.roa (hash: 8+lwoJWYw+/prpcpMbrRUmfEGjzLktOqFPr4MMdHS+M=)
2: gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl (hash: YYKiT3i8tQrD26y3cSGcBcq6lbFFZlTkz1GMTCOjhjs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6b:17:fb:a7:58:00:40:4b:fd:fc:b6:5e:13:cb:40:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Validity
Not Before: Jun 13 21:00:22 2025 GMT
Not After : Jun 14 21:00:22 2025 GMT
Subject: CN=674f95baf20a43a816784acce74bc8420b75ad07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ac:4d:75:51:87:82:ab:91:4e:0a:ae:2b:f1:
2b:83:27:53:30:bc:a3:95:d8:2d:79:ad:8b:2f:80:
fa:e3:13:79:d5:9c:0d:30:fd:08:7a:29:d9:7a:e0:
da:aa:9a:57:96:f8:12:7e:50:55:13:6d:76:d6:a0:
a1:a9:50:b8:42:3d:6f:3d:31:c0:42:0c:f9:59:b3:
53:1f:bb:8b:65:0c:f6:97:b6:c1:28:70:4f:bb:ef:
74:2b:6d:2f:67:98:a8:f8:09:0d:b0:78:8b:9f:12:
45:45:d0:bb:b5:6c:5c:77:8e:07:a3:b3:e4:04:40:
6b:46:83:dd:37:18:dc:72:ec:6b:77:0b:21:6e:70:
db:a6:b3:50:f4:2a:fc:fb:7e:22:1c:45:b3:f1:e0:
e1:07:5e:1d:3a:5d:36:0b:f5:da:29:9e:4b:49:95:
a7:8a:57:c3:eb:6d:18:60:e7:90:8a:b3:bb:e4:78:
19:d7:52:fe:a2:be:de:a7:7c:f3:b5:bc:37:19:b1:
2e:5f:e2:e8:73:08:d8:94:b0:c9:d0:cc:4e:01:b9:
12:10:66:3b:d1:94:82:9e:9d:bc:bc:e0:e4:49:c5:
cc:78:64:6d:8d:76:f2:f1:ee:bb:e9:83:1f:b4:43:
b8:33:da:2a:47:5c:2b:3b:a0:a0:be:b2:10:fb:b6:
c1:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:4F:95:BA:F2:0A:43:A8:16:78:4A:CC:E7:4B:C8:42:0B:75:AD:07
X509v3 Authority Key Identifier:
keyid:83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:7e:d0:7d:1c:b2:be:bd:28:bb:9d:cc:27:36:5f:ab:17:32:
be:69:43:58:c2:bb:c5:21:78:83:d3:bc:8e:34:80:0c:0d:7a:
68:df:ca:db:d0:2e:dc:cd:21:3c:48:a8:ab:4d:13:fb:e9:0b:
2c:f8:3a:a8:88:f5:8a:b8:27:eb:79:ee:75:66:ed:85:e5:63:
a1:14:01:2f:e6:92:c0:db:68:74:58:36:12:a7:39:13:70:cb:
55:ae:73:20:f9:21:0a:60:83:ba:ba:b0:a9:04:e5:de:59:ff:
47:e1:96:22:ee:9a:32:86:b1:f0:eb:33:17:0e:2c:a8:76:12:
62:86:87:4a:1d:08:f3:4f:80:65:ed:f7:24:de:a8:4a:9a:a6:
dd:42:61:5c:f2:9b:59:20:da:1d:4a:d8:1b:5d:36:ee:cc:4d:
8b:fa:ef:cc:ff:75:51:fb:33:9f:13:0a:d7:64:83:59:a2:c3:
6f:50:e8:94:08:a3:73:a4:c5:0f:59:5f:59:91:c0:fc:14:0c:
f9:1d:1e:31:f0:74:9c:fd:40:b2:99:56:67:f7:fe:2b:7f:32:
ca:ed:96:2f:ac:05:dd:77:05:18:4c:4b:eb:b9:5c:68:12:5e:
a9:91:80:40:c8:22:4e:0e:7b:84:fe:c2:d4:4e:54:ac:b6:e3:
76:9f:83:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 23:30:30 2025 by rpki-client