
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
File: 1GbRcMgQujTELpIOhNQmKEWXf4U.mft (raw, json)
Hash identifier: wjqfE4+YqV3f145oaFEzfbg0QApcavjKduQ3BiEBtjo=
Subject key identifier: C2:2A:AD:01:81:D2:81:89:E0:D6:F0:7D:53:36:54:C4:9C:A0:7F:C7
Authority key identifier: D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
Certificate issuer: /CN=d466d170c810ba34c42e920e84d4262845977f85
Certificate serial: 019753B4D5B74A728F7B1EC8062616FF57CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
Manifest number: 0495
Signing time: Mon 09 Jun 2025 08:00:49 +0000
Manifest this update: Mon 09 Jun 2025 08:00:49 +0000
Manifest next update: Tue 10 Jun 2025 08:00:49 +0000
Files and hashes: 1: 1GbRcMgQujTELpIOhNQmKEWXf4U.crl (hash: /szPw9/v9b41+lEduwAuDCxWLtx25KqxWAKPIHkGIwk=)
2: r0qME3D6vnHPgW7FfIJR7qyiR6U.roa (hash: +N7ZuBvhriEjaq14DPYwTSmD1pr2ezeFoDJODymMVSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 06:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:b4:d5:b7:4a:72:8f:7b:1e:c8:06:26:16:ff:57:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d466d170c810ba34c42e920e84d4262845977f85
Validity
Not Before: Jun 9 08:00:49 2025 GMT
Not After : Jun 10 08:00:49 2025 GMT
Subject: CN=c22aad0181d28189e0d6f07d533654c49ca07fc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:98:cc:7b:2c:46:d3:b5:2b:4f:04:40:bb:9b:
e9:f0:e7:97:1e:ec:dd:0f:24:d6:e4:2b:6c:7a:95:
83:23:0b:d0:41:71:fa:57:27:b2:75:86:88:ba:2d:
e7:ee:ea:cd:c2:96:00:43:0e:15:6d:1a:b4:90:39:
ef:9e:22:e9:90:31:42:b1:82:a9:20:28:8f:79:98:
2f:09:e2:dd:62:d8:2f:56:70:ed:c2:65:2c:68:92:
12:d0:04:a1:6e:b4:43:34:ce:6c:04:de:e5:22:5b:
fe:f5:4a:4f:3e:d1:69:22:b3:04:1f:4d:d1:46:35:
f9:46:ec:84:1d:08:35:31:13:2d:c6:fa:cf:4b:fa:
28:ba:f3:ed:1f:7d:28:9c:18:4e:e6:90:18:ad:05:
93:76:53:42:d4:e3:fb:2c:84:44:26:28:b8:7b:5d:
ed:7f:ff:c6:7d:c9:c1:4b:4a:e4:58:ac:26:fa:33:
0a:3a:72:4c:f7:68:b5:fc:55:0b:91:b4:9a:63:58:
67:e7:81:36:00:de:bb:5d:6a:f0:70:cd:f4:9e:d6:
a0:4c:c4:4c:96:2d:58:77:c2:77:2e:6b:27:db:03:
f3:65:1a:64:cb:6c:8a:fa:1c:a8:e1:5c:30:87:81:
e1:02:85:ca:2a:ba:f8:a3:30:58:65:52:d2:57:86:
d2:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:2A:AD:01:81:D2:81:89:E0:D6:F0:7D:53:36:54:C4:9C:A0:7F:C7
X509v3 Authority Key Identifier:
keyid:D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:49:42:40:dd:3f:a5:29:3b:4a:6c:32:0f:e4:8a:f6:ca:b2:
68:4d:01:32:e0:ad:53:18:ad:29:e4:e0:99:37:3a:59:bb:d0:
da:44:9f:6f:81:46:9b:a8:52:de:ee:a3:63:af:6f:70:a5:3f:
2b:88:0a:fc:dc:26:72:b9:5e:18:e7:ea:c6:a7:4b:12:a3:35:
cd:5c:7c:0c:41:75:83:06:4e:d0:5b:fb:a6:69:bc:ac:7b:37:
cc:1f:1c:be:db:7f:a1:00:08:83:fc:c4:3a:18:f6:3c:9c:ac:
32:e2:0f:7d:52:a0:08:2d:dc:f7:ae:43:67:31:bd:7d:3c:2b:
2d:70:82:8c:64:7e:cc:0b:c6:5f:14:20:67:e1:76:be:9a:33:
54:cd:32:2a:0c:9c:85:36:67:56:37:0a:97:3c:55:53:c8:ad:
f9:6e:ab:15:fa:f7:53:59:49:54:ab:81:96:19:f1:ad:2f:9d:
10:21:09:20:4c:89:d9:a2:21:be:c0:09:2b:bb:f5:9e:3e:11:
9b:15:85:35:34:af:19:f3:65:13:92:af:f3:8e:ac:bb:1e:73:
2d:c3:57:e0:a0:48:a0:e2:8d:d3:9f:b4:b1:d4:19:e8:9b:5d:
cf:1c:85:b8:d5:ab:18:93:fc:cd:a0:72:dd:21:e2:51:be:8b:
43:4f:7d:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 13:34:28 2025 by rpki-client