Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
File: 1GbRcMgQujTELpIOhNQmKEWXf4U.mft (raw, json)
Hash identifier: etcekyVE6xOtYrjjiCJWM8rDwljUDpxwOlEyKQ7aOns=
Subject key identifier: 47:7B:34:EA:0B:29:A8:E1:D3:BB:8F:BF:D5:3A:6C:1D:70:8A:1A:3B
Authority key identifier: D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
Certificate issuer: /CN=d466d170c810ba34c42e920e84d4262845977f85
Certificate serial: 019768F2F6866E8EB52DBDD7B5915E98AB0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
Manifest number: 04A0
Signing time: Fri 13 Jun 2025 11:00:42 +0000
Manifest this update: Fri 13 Jun 2025 11:00:42 +0000
Manifest next update: Sat 14 Jun 2025 11:00:42 +0000
Files and hashes: 1: 1GbRcMgQujTELpIOhNQmKEWXf4U.crl (hash: D58fLyYNCKdFVcPP9NaVuqo6MIE6C78tUt6v9phkcWE=)
2: r0qME3D6vnHPgW7FfIJR7qyiR6U.roa (hash: +N7ZuBvhriEjaq14DPYwTSmD1pr2ezeFoDJODymMVSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:68:f2:f6:86:6e:8e:b5:2d:bd:d7:b5:91:5e:98:ab:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d466d170c810ba34c42e920e84d4262845977f85
Validity
Not Before: Jun 13 11:00:42 2025 GMT
Not After : Jun 14 11:00:42 2025 GMT
Subject: CN=477b34ea0b29a8e1d3bb8fbfd53a6c1d708a1a3b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:9b:cc:39:0a:16:7e:a5:6b:39:9a:68:5a:c6:
dd:a0:fd:a4:9d:2e:6c:14:f7:94:aa:ed:5c:90:d8:
55:eb:41:18:88:a9:37:bd:a2:8f:0b:42:5a:3f:08:
93:fa:88:ff:aa:9a:7b:48:11:e7:8f:5f:d4:f5:e2:
c9:a8:f0:06:80:6c:ba:ab:2a:8c:f8:81:9f:85:9e:
08:66:0e:4f:e6:c4:ae:12:30:bf:3f:6d:b1:42:75:
84:42:07:55:5a:69:07:57:f6:1c:5b:e5:df:8a:10:
e5:dc:81:19:6c:15:81:db:f4:0b:d4:51:30:f2:67:
27:dd:d0:6d:56:b5:57:2a:90:d7:e2:b0:b8:7b:b8:
ec:26:0b:a1:63:75:5a:e3:d9:bb:fc:21:4c:12:73:
02:b4:e5:c3:4d:2b:22:9b:c8:e0:e9:0b:2a:a7:1d:
76:7a:8a:ec:5a:61:7f:4f:72:56:24:15:1b:d4:10:
8b:dd:54:8e:18:48:49:de:49:e1:df:51:26:16:3c:
a0:42:17:02:06:86:14:db:c5:a7:c7:f7:4a:e3:db:
a4:95:d8:96:1f:5f:95:36:06:af:6b:4a:66:4e:56:
93:a9:af:47:72:96:0e:e4:ef:dd:2c:c7:10:8c:cf:
8a:f3:56:4b:45:5f:cb:2d:5f:3c:12:ab:ef:9f:8a:
d8:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:7B:34:EA:0B:29:A8:E1:D3:BB:8F:BF:D5:3A:6C:1D:70:8A:1A:3B
X509v3 Authority Key Identifier:
keyid:D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:1d:b5:3f:00:35:cf:fc:b6:09:df:b0:2f:e8:fe:22:4c:0e:
08:39:b1:0a:57:f1:df:61:fc:e9:76:68:e5:85:87:e6:0a:e2:
f1:20:1d:8a:7f:52:fc:6c:bc:f3:d3:cf:46:5d:2a:39:6e:82:
67:fe:20:3d:16:31:fc:75:16:3d:28:a8:3e:68:22:08:51:85:
19:73:3a:ca:3e:fc:df:14:69:fb:19:62:c1:5d:8c:18:8f:24:
b9:66:f9:7d:ce:5c:26:6d:a9:16:70:bb:eb:59:05:46:4a:34:
e6:44:42:73:b0:60:74:a1:c2:b2:4a:b6:30:ec:bd:41:bc:26:
83:f3:3d:a3:2d:f8:ca:bc:b9:55:ca:84:52:35:ed:e7:a6:24:
43:d8:ce:fd:ea:9b:c9:6e:bd:c0:59:73:d5:22:65:b3:15:3d:
ac:40:84:77:c5:f3:15:77:57:f9:9f:4b:4d:6e:a2:13:2f:6c:
41:23:1a:9f:db:fd:9a:d5:49:f4:ad:bf:5a:82:db:ff:47:2b:
d8:ce:86:ac:ea:61:9f:0b:1d:2f:72:5b:d1:51:09:17:2a:c1:
8e:44:15:bc:11:36:de:4c:03:a6:dd:e3:d0:70:be:17:8f:1b:
5c:20:eb:0a:73:03:90:78:54:4e:66:e4:75:39:5d:e1:70:b4:
c6:03:cc:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZdo8vaGbo61Lb3XtZFemKsKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ0NjZkMTcwYzgxMGJhMzRjNDJlOTIwZTg0ZDQyNjI4NDU5
NzdmODUwHhcNMjUwNjEzMTEwMDQyWhcNMjUwNjE0MTEwMDQyWjAzMTEwLwYDVQQD
Eyg0NzdiMzRlYTBiMjlhOGUxZDNiYjhmYmZkNTNhNmMxZDcwOGExYTNiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZvMOQoWfqVrOZpoWsbdoP2knS5s
FPeUqu1ckNhV60EYiKk3vaKPC0JaPwiT+oj/qpp7SBHnj1/U9eLJqPAGgGy6qyqM
+IGfhZ4IZg5P5sSuEjC/P22xQnWEQgdVWmkHV/YcW+XfihDl3IEZbBWB2/QL1FEw
8mcn3dBtVrVXKpDX4rC4e7jsJguhY3Va49m7/CFMEnMCtOXDTSsim8jg6Qsqpx12
eorsWmF/T3JWJBUb1BCL3VSOGEhJ3knh31EmFjygQhcCBoYU28Wnx/dK49ukldiW
H1+VNgava0pmTlaTqa9HcpYO5O/dLMcQjM+K81ZLRV/LLV88Eqvvn4rY9QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEd7NOoLKajh07uPv9U6bB1wiho7MB8GA1UdIwQY
MBaAFNRm0XDIELo0xC6SDoTUJihFl3+FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMUdiUmNNZ1F1alRFTHBJT2hOUW1LRVdYZjRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYy8yMzA2ZjYtNmNjMC00OTgyLWE1MjMt
MTY4NDJiZGFkOTI1LzEvMUdiUmNNZ1F1alRFTHBJT2hOUW1LRVdYZjRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zYy8yMzA2ZjYtNmNjMC00OTgyLWE1MjMtMTY4NDJiZGFkOTI1
LzEvMUdiUmNNZ1F1alRFTHBJT2hOUW1LRVdYZjRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaB21PwA1
z/y2Cd+wL+j+IkwOCDmxClfx32H86XZo5YWH5gri8SAdin9S/Gy889PPRl0qOW6C
Z/4gPRYx/HUWPSioPmgiCFGFGXM6yj783xRp+xliwV2MGI8kuWb5fc5cJm2pFnC7
61kFRko05kRCc7BgdKHCskq2MOy9Qbwmg/M9oy34yry5VcqEUjXt56YkQ9jO/eqb
yW69wFlz1SJlsxU9rECEd8XzFXdX+Z9LTW6iEy9sQSMan9v9mtVJ9K2/WoLb/0cr
2M6GrOphnwsdL3Jb0VEJFyrBjkQVvBE23kwDpt3j0HC+F48bXCDrCnMDkHhUTmbk
dTld4XC0xgPMww==
-----END CERTIFICATE-----
Generated at Fri Jun 13 17:39:34 2025 by rpki-client