Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
File: gEH-6hI_ywfocqjLS92at7jaL88.mft (raw, json)
Hash identifier: AdbjAgTJtha8SiYB6ofFo32BrOgtrQzogUwFnwb7Aa0=
Subject key identifier: DE:2F:15:02:AD:D7:06:DB:68:DE:5A:15:4B:AE:04:1D:6C:24:B2:4C
Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
Certificate issuer: /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Certificate serial: 0197624BE6BDFFF9884F8F8D10AEBD6A3CC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
Manifest number: 09A0
Signing time: Thu 12 Jun 2025 04:00:30 +0000
Manifest this update: Thu 12 Jun 2025 04:00:30 +0000
Manifest next update: Fri 13 Jun 2025 04:00:30 +0000
Files and hashes: 1: 5QlNV7-3Q34zZfQ5XbNLc8wKA40.roa (hash: T1GmpANOUDoxZLUDnHoNMN2ENMK9C/xESzMwTNL0s2Y=)
2: gEH-6hI_ywfocqjLS92at7jaL88.crl (hash: h4UFyvD6plJ92/+9tkliCe8QxI8aUnb90JdMdlli3Sw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 00:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:62:4b:e6:bd:ff:f9:88:4f:8f:8d:10:ae:bd:6a:3c:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Validity
Not Before: Jun 12 04:00:30 2025 GMT
Not After : Jun 13 04:00:30 2025 GMT
Subject: CN=de2f1502add706db68de5a154bae041d6c24b24c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d8:aa:35:fd:a1:f9:a1:13:33:2f:8a:95:ff:
91:fe:22:64:f0:1c:f1:5a:e6:8c:a0:35:93:9f:a5:
e1:27:da:49:10:22:ab:c9:a4:bf:d2:cf:67:07:0b:
8d:72:12:4b:a4:d9:59:68:39:d7:a4:6c:0b:98:9b:
f6:a8:b8:21:a3:f5:ee:f8:09:f1:fe:7e:3d:0c:ec:
b0:4e:3b:5c:26:f3:29:50:66:e1:43:63:b2:0e:c1:
11:6b:16:f6:33:81:f9:91:9c:94:84:a5:24:6e:40:
fa:50:6c:a8:20:5e:42:30:07:30:3f:df:a7:d9:15:
64:f4:aa:a1:60:f2:38:c3:1f:a6:68:54:89:75:ba:
a2:36:db:6f:4d:80:34:29:52:f5:6e:1d:7d:3c:5a:
c6:70:ab:fc:2b:e5:d9:df:44:7f:1e:e6:10:05:1e:
88:31:f7:d4:02:0c:d4:29:78:27:ca:59:f8:da:f2:
3a:80:b9:d0:1f:e6:66:3d:ce:78:c6:a4:0b:df:54:
7c:be:24:c1:8a:3b:48:bd:c2:47:6e:0a:85:a7:78:
4f:1d:b7:89:ee:a2:ab:ae:e4:4c:2b:77:f2:ac:a8:
e9:c9:8f:fa:8f:b7:43:03:ca:2f:ca:62:cb:0f:d8:
49:5e:63:2d:55:b9:86:ca:83:64:24:f2:8b:01:4c:
48:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:2F:15:02:AD:D7:06:DB:68:DE:5A:15:4B:AE:04:1D:6C:24:B2:4C
X509v3 Authority Key Identifier:
keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:75:3c:b0:6a:be:ed:f5:75:52:9e:05:63:01:91:d6:78:8f:
69:f2:35:3b:04:48:24:9b:74:32:eb:00:6b:39:68:a1:ce:d6:
51:0a:95:09:3d:27:8d:cd:58:b0:9c:0d:fe:56:55:36:fd:14:
b7:8e:9e:bf:07:d0:3e:05:e7:ae:de:65:d3:0a:98:50:fc:ea:
70:a8:1c:4d:8f:94:29:a8:ef:03:7b:51:b1:0c:cb:b1:63:6c:
83:9e:35:24:f0:d6:b9:75:b8:0b:d9:f9:ed:13:23:8e:41:ea:
50:40:47:81:ee:cf:49:39:ad:b9:e1:4d:15:c6:8b:09:2a:76:
11:ca:0e:0c:33:a7:0a:3c:b5:d6:bf:21:57:d5:9e:b9:1a:8b:
33:8c:02:72:e7:95:7d:40:ed:44:d9:f3:2a:c3:ec:1f:a7:1e:
1d:8b:b8:bf:92:07:ed:e7:2f:f2:31:ac:a6:9e:e6:9d:a6:34:
71:2d:e0:09:64:eb:be:b4:f5:e6:d4:10:58:cc:b6:80:d8:ea:
14:32:b0:4b:79:4f:b3:04:c8:a1:f6:f6:ee:50:5d:79:93:06:
3d:04:f7:ba:1d:21:36:6d:f9:af:7c:59:78:42:35:22:88:78:
3d:31:83:29:ba:a2:91:8e:bf:37:89:42:ec:38:f2:82:0b:c8:
07:79:61:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 10:08:14 2025 by rpki-client