Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
File: gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft (raw, json)
Hash identifier: EPU/Eu4vIVUcgS1/RKQzWjyH3/qbhxRYhgIRLXL8g08=
Subject key identifier: 23:94:AC:7F:A1:E6:60:9B:CE:9F:8A:82:61:35:1B:BA:26:33:9B:AD
Authority key identifier: 83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
Certificate issuer: /CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Certificate serial: 019757C87C82EFB2F374681C716A04A9478D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
Manifest number: 0EE6
Signing time: Tue 10 Jun 2025 03:00:46 +0000
Manifest this update: Tue 10 Jun 2025 03:00:46 +0000
Manifest next update: Wed 11 Jun 2025 03:00:46 +0000
Files and hashes: 1: bNgvelwVPVFr3h5RMUdr0LrSObg.roa (hash: 8+lwoJWYw+/prpcpMbrRUmfEGjzLktOqFPr4MMdHS+M=)
2: gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl (hash: tWK9rb4usoobJWIAfT2p4yquCIXxxCOVDAjhEagrqOs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:57:c8:7c:82:ef:b2:f3:74:68:1c:71:6a:04:a9:47:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Validity
Not Before: Jun 10 03:00:46 2025 GMT
Not After : Jun 11 03:00:46 2025 GMT
Subject: CN=2394ac7fa1e6609bce9f8a8261351bba26339bad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ec:2d:41:66:00:f1:98:c2:bd:5f:3b:ea:cc:
23:21:d4:ff:63:11:53:5d:92:bd:09:4c:7f:66:ef:
2c:49:62:53:d9:7a:31:6c:c2:ad:ab:f4:ae:ce:76:
32:8e:f7:19:b2:04:d5:b2:02:a0:68:41:97:db:ee:
59:1f:2f:90:48:29:2a:70:9b:47:a1:62:c6:3d:43:
14:5c:fd:fe:79:37:84:57:b4:45:39:4d:0c:c5:ca:
93:10:21:7a:b1:e4:99:f3:df:0f:b6:04:bc:2f:66:
81:d8:cd:fe:24:07:88:67:5a:92:79:41:fc:e3:98:
ce:50:49:ab:f8:cf:31:91:ac:09:c2:dc:8b:bf:b5:
b4:9b:d1:1e:51:42:8a:99:f6:c8:87:3b:7c:e0:86:
48:7c:e3:37:f6:dc:ac:82:34:5b:86:8e:72:cb:07:
0d:ef:cc:71:94:82:ee:0b:ba:b5:15:37:c5:6d:ee:
90:d0:ee:59:0e:27:b7:1c:84:d0:73:28:a3:1c:07:
9c:96:ed:04:65:43:74:4f:e2:e9:51:89:b2:f0:ef:
f4:d3:0f:8f:25:ec:f6:d9:74:ca:7b:47:aa:86:cc:
49:89:3b:fe:82:ea:d5:78:a2:70:5c:a1:fa:35:d3:
6e:4d:95:56:48:f0:b3:fe:64:40:f6:9c:55:d9:13:
8e:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:94:AC:7F:A1:E6:60:9B:CE:9F:8A:82:61:35:1B:BA:26:33:9B:AD
X509v3 Authority Key Identifier:
keyid:83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:ef:1e:70:8e:da:85:9c:34:75:20:ec:fe:3a:ab:09:09:8b:
0c:b6:15:e2:df:88:0a:0a:cc:e0:87:2a:f2:f1:4a:0a:0f:e0:
1d:6e:d6:b0:4f:f3:39:a7:c6:fe:20:db:a4:e1:93:8b:b6:06:
72:87:f3:66:27:c4:e5:ce:a9:56:18:e8:bd:4d:f8:75:a4:5c:
fb:bc:36:35:40:a9:32:40:a7:7b:fd:ee:73:cb:41:26:c1:77:
6a:61:a5:29:50:18:96:44:71:10:33:f1:20:53:f8:fc:94:97:
26:2d:23:dc:ed:95:a4:e9:f1:ed:73:24:26:22:8d:02:28:db:
51:a2:7c:8d:4d:c0:80:43:47:21:13:d5:c5:78:f7:50:8e:c3:
3f:ed:f0:72:c6:7a:be:56:ac:71:44:cf:12:77:54:f3:cd:48:
16:6e:86:2a:58:09:80:13:67:78:f6:56:fb:f9:4f:1e:d0:26:
42:cf:22:17:7c:05:c1:00:7a:bb:6d:08:6f:2b:a2:22:3a:17:
32:ab:78:3d:07:ea:c1:e0:eb:d7:36:bc:ca:38:0c:1d:b4:16:
c5:09:9b:a0:05:08:99:be:21:2b:35:fc:11:7b:81:6d:b9:78:
19:1a:6f:84:2d:11:40:81:39:e0:21:32:39:f0:f7:9a:07:a4:
52:06:e2:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 07:36:43 2025 by rpki-client