Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft
File: ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft (raw, json)
Hash identifier: vISfsHVaClUK8MJdrCuPUWFx54ISa94BfqTQBg85Bk4=
Subject key identifier: 26:CD:68:59:25:F1:F6:3F:03:DF:E6:27:86:62:81:7F:38:31:9B:7F
Authority key identifier: 81:EE:E1:7F:DB:CB:09:DB:BC:EE:F6:63:C6:15:7B:5F:E3:08:1F:F4
Certificate issuer: /CN=81eee17fdbcb09dbbceef663c6157b5fe3081ff4
Certificate serial: 01974FD80D048F11F714EBAB45EDB196A50F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ge7hf9vLCdu87vZjxhV7X-MIH_Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft
Manifest number: 1581
Signing time: Sun 08 Jun 2025 14:00:48 +0000
Manifest this update: Sun 08 Jun 2025 14:00:48 +0000
Manifest next update: Mon 09 Jun 2025 14:00:48 +0000
Files and hashes: 1: F4qvGIYkJR23AR8i3U55htWfFrA.roa (hash: sLcl2GBXiso+t+Z5Jf9zcobxR79ID28gM2VuGSdiFAw=)
2: ge7hf9vLCdu87vZjxhV7X-MIH_Q.crl (hash: /vtz2RR3fSlNDS+1qOawzFQ/YlmNgzeGp+h/i28WWrA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/ge7hf9vLCdu87vZjxhV7X-MIH_Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 14:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d8:0d:04:8f:11:f7:14:eb:ab:45:ed:b1:96:a5:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81eee17fdbcb09dbbceef663c6157b5fe3081ff4
Validity
Not Before: Jun 8 14:00:48 2025 GMT
Not After : Jun 9 14:00:48 2025 GMT
Subject: CN=26cd685925f1f63f03dfe6278662817f38319b7f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:07:7c:85:15:cd:92:6a:71:ed:36:e8:0a:ab:
f7:98:b9:2e:21:bf:c2:4a:93:cb:ce:81:5c:e4:aa:
6b:bb:13:ff:ae:d2:74:32:de:39:81:0a:a8:03:af:
88:a8:87:e7:8e:05:31:41:0d:5a:2f:16:91:0a:f1:
64:6d:b4:fd:f1:56:d3:7c:bb:f2:d4:f7:dd:ed:32:
fa:cb:1b:04:e7:46:60:64:4e:e2:d2:2f:40:75:db:
eb:03:35:df:c4:7a:aa:a5:29:00:56:cf:91:ac:6c:
32:bc:73:8c:ba:29:3b:bc:5f:13:2b:e1:2b:89:fb:
70:7c:a4:af:fa:e7:3d:df:22:ec:85:04:93:28:47:
d4:39:d2:d5:ab:62:cb:cb:23:09:dc:c2:5a:d1:56:
c5:be:78:a3:71:eb:a8:03:79:e3:11:ca:2e:1f:6e:
9e:e3:2f:30:f9:f5:d0:53:60:2c:7b:db:d9:39:f5:
1b:2d:ff:c1:ea:50:fd:7f:0a:43:36:ec:1c:2f:dd:
30:ee:c4:eb:5c:39:db:e5:83:54:6e:38:14:73:97:
96:f9:b7:8f:b0:21:cf:75:88:8c:68:1a:dc:98:be:
49:99:70:cc:36:5e:87:9a:69:bd:71:76:8e:a7:6e:
6d:eb:2a:f4:2e:b1:2a:5f:4f:0f:90:2e:df:8c:55:
83:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:CD:68:59:25:F1:F6:3F:03:DF:E6:27:86:62:81:7F:38:31:9B:7F
X509v3 Authority Key Identifier:
keyid:81:EE:E1:7F:DB:CB:09:DB:BC:EE:F6:63:C6:15:7B:5F:E3:08:1F:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ge7hf9vLCdu87vZjxhV7X-MIH_Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/32/650a6b-4826-4c1e-a972-48ad14ba7498/1/ge7hf9vLCdu87vZjxhV7X-MIH_Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:41:2b:f8:db:88:db:af:df:1c:fa:25:fa:f3:62:72:2a:b2:
66:d7:f5:3d:7f:f4:dd:94:dc:59:25:55:6b:92:09:44:96:9e:
77:d8:a2:a2:20:56:ec:71:b5:4b:32:a2:5d:36:21:f7:c8:c1:
32:7f:39:c7:8f:03:76:4a:46:79:cf:c6:29:a3:b9:6d:d4:79:
29:f2:92:0c:61:a7:6c:dc:a7:20:f9:37:7a:f0:da:c4:71:a2:
2d:ee:32:bf:9e:02:b5:c7:00:50:e0:8b:c9:cb:3b:ff:45:b0:
96:2f:f1:9a:5a:f5:ac:9d:12:d9:ae:b6:7a:f1:8d:0b:2a:cd:
5e:71:2f:aa:37:9b:f8:a3:79:50:c4:c3:90:16:41:21:62:80:
be:e9:d5:ab:19:dc:4c:b0:5d:44:d4:7c:fe:a9:e2:de:b2:b9:
84:1d:8a:ea:5e:b1:69:18:16:2d:c3:6e:81:bc:47:ef:c0:9b:
c7:b4:73:48:5e:8e:4d:28:08:19:c9:46:b8:41:0b:c3:39:ce:
42:23:41:48:08:c7:0a:3a:0d:25:3e:f9:9e:7d:b2:56:05:b0:
bd:c3:18:18:2b:d2:35:31:46:69:73:bb:7e:04:7f:81:6d:19:
ac:33:d5:e4:b4:f8:91:f6:da:18:0a:05:b2:d2:50:67:12:c6:
54:fd:e1:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:25:42 2025 by rpki-client