Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
File: gEH-6hI_ywfocqjLS92at7jaL88.mft (raw, json)
Hash identifier: //JNDcZeE/dUqgraca8Qg/Bt9jE1zHicAA5GvZ0jIhI=
Subject key identifier: F8:45:6E:AE:57:49:79:5B:77:0C:87:2A:22:86:EF:E4:6D:F5:39:BD
Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
Certificate issuer: /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Certificate serial: 01975A925B403E877683F80B5D6ADF936751
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
Manifest number: 099C
Signing time: Tue 10 Jun 2025 16:00:30 +0000
Manifest this update: Tue 10 Jun 2025 16:00:30 +0000
Manifest next update: Wed 11 Jun 2025 16:00:30 +0000
Files and hashes: 1: 5QlNV7-3Q34zZfQ5XbNLc8wKA40.roa (hash: T1GmpANOUDoxZLUDnHoNMN2ENMK9C/xESzMwTNL0s2Y=)
2: gEH-6hI_ywfocqjLS92at7jaL88.crl (hash: Sl/u9m9HvYQYSwFNP6OtkSmg+Nfmf7/QJAE0TnBEiLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 11 Jun 2025 14:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:5a:92:5b:40:3e:87:76:83:f8:0b:5d:6a:df:93:67:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Validity
Not Before: Jun 10 16:00:30 2025 GMT
Not After : Jun 11 16:00:30 2025 GMT
Subject: CN=f8456eae5749795b770c872a2286efe46df539bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:df:0e:41:e9:86:e2:fb:f1:03:c7:75:06:82:
b1:12:c1:3c:90:ad:9d:a8:73:4f:85:dc:de:9c:cf:
8b:99:fa:76:ad:c0:fd:e6:04:69:77:c3:a8:f9:5b:
2b:e3:4b:c4:94:0f:72:30:e5:25:43:c3:3c:c4:bc:
29:06:09:3c:de:ba:ba:0e:7f:23:0c:9b:33:b6:31:
7c:c7:0a:19:ee:83:c3:db:2f:d8:ec:3e:e0:a1:2e:
ea:b4:b7:49:8d:46:7d:2c:c6:7e:fb:23:f9:99:2a:
75:52:00:e9:c7:2d:84:8a:f1:66:54:6d:d5:7e:05:
de:63:ee:c8:fc:eb:df:98:2b:93:41:ab:5b:3c:83:
bf:0b:41:65:52:4d:91:3f:e1:03:b9:7a:e0:40:8f:
98:68:c7:99:c6:bb:b8:98:f3:e3:29:f4:c1:d1:f3:
0d:1c:43:e4:19:36:38:a3:b7:1c:50:88:1f:6d:ec:
8a:6a:22:76:7c:5b:3c:79:5f:bd:bc:2a:f7:27:22:
ed:47:f7:eb:bf:54:d9:9a:5f:c7:3e:75:c2:95:e0:
37:31:2f:44:e1:e2:53:dc:6c:f6:bc:53:99:15:2c:
25:40:21:ae:29:30:d6:4f:16:da:2b:53:ee:11:64:
52:ce:07:98:c3:f6:67:ef:9f:57:9b:7f:a9:a9:17:
1c:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:45:6E:AE:57:49:79:5B:77:0C:87:2A:22:86:EF:E4:6D:F5:39:BD
X509v3 Authority Key Identifier:
keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:46:8d:ff:5d:3b:ac:df:71:46:a8:f5:e4:ce:d8:e4:d9:78:
36:aa:88:4c:84:8c:fa:f3:8d:0f:36:60:e9:19:0e:df:fb:8c:
64:08:16:af:70:9b:f6:d6:f8:1b:34:1c:71:33:5e:10:72:9d:
00:9a:4b:bb:c7:ae:53:11:01:bd:8a:e5:14:92:6f:75:3d:e3:
d0:00:05:98:74:1f:66:87:52:e6:e7:ff:07:81:0c:6e:83:40:
69:81:f6:95:fc:13:37:96:5a:fe:dc:8f:7c:f2:81:27:20:a7:
dd:0f:dd:dd:d0:07:39:96:7f:76:54:5d:cb:7e:53:5a:c7:2d:
c3:0f:59:dc:59:35:88:0a:10:f8:79:ec:3d:af:88:ed:9b:c7:
c1:e3:e1:d4:0c:bc:da:bd:98:8a:6b:fc:86:14:22:d1:6e:15:
53:48:6b:1f:e6:4f:f2:14:65:5c:d4:d7:f5:6c:22:3e:57:64:
30:5a:48:c7:88:09:b0:19:43:0b:7f:6f:27:21:36:d3:82:cd:
e0:66:2f:91:4c:8d:f9:a4:f4:7b:74:11:9b:15:bf:c6:1f:45:
ef:e8:4e:4c:df:31:ee:d2:b3:d9:7b:8c:b4:41:7c:b6:d7:ba:
08:14:bb:c3:d6:b4:ce:8e:52:ec:02:8e:99:65:ff:54:91:6d:
28:72:af:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 10 20:57:57 2025 by rpki-client