Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
File: 1GbRcMgQujTELpIOhNQmKEWXf4U.mft (raw, json)
Hash identifier: RM1sB3Bjjbi84q4Y7IFbAQf2fk0oFggal6zoaJ6pDXY=
Subject key identifier: 19:F5:BD:0F:44:36:24:91:15:DA:90:BB:4E:49:EF:C3:35:8D:F9:69
Authority key identifier: D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
Certificate issuer: /CN=d466d170c810ba34c42e920e84d4262845977f85
Certificate serial: 0199233140E0EDC9DACFBDFE16EBB72E14E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
Manifest number: 0585
Signing time: Sun 07 Sep 2025 08:00:54 +0000
Manifest this update: Sun 07 Sep 2025 08:00:54 +0000
Manifest next update: Mon 08 Sep 2025 08:00:54 +0000
Files and hashes: 1: 1GbRcMgQujTELpIOhNQmKEWXf4U.crl (hash: NI47ewT5laMYQS9cUxkLgrW8ZJMlgsCIrYv2WJJT7oQ=)
2: r0qME3D6vnHPgW7FfIJR7qyiR6U.roa (hash: +N7ZuBvhriEjaq14DPYwTSmD1pr2ezeFoDJODymMVSw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:40:e0:ed:c9:da:cf:bd:fe:16:eb:b7:2e:14:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d466d170c810ba34c42e920e84d4262845977f85
Validity
Not Before: Sep 7 08:00:54 2025 GMT
Not After : Sep 8 08:00:54 2025 GMT
Subject: CN=19f5bd0f4436249115da90bb4e49efc3358df969
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:e8:ab:b1:ba:b6:13:a7:6c:52:57:b2:a6:fe:
cb:b3:0e:45:fe:c8:4d:b0:e3:2f:79:87:88:89:29:
11:66:95:59:15:68:a5:ea:4d:af:9a:33:21:ce:a8:
17:80:93:9b:03:16:17:bb:54:69:e9:41:aa:3b:cd:
75:d4:fc:38:48:0b:26:89:4f:dd:f9:9a:77:53:22:
1d:4f:4d:41:d4:29:73:92:33:dd:9e:ae:ec:ae:97:
db:da:69:da:db:76:30:83:37:23:aa:a9:bd:a5:de:
7d:ab:24:a5:21:71:a7:01:2c:bf:91:7b:0d:30:b4:
7c:fd:32:9d:b6:a5:21:56:d1:17:32:3f:17:d1:98:
e7:69:3e:2a:00:ad:17:7d:05:ba:9b:ae:74:fc:46:
9c:4b:80:1f:b9:c9:0e:d5:c7:11:33:fc:15:ec:cf:
c9:26:6f:bd:2b:23:8e:33:39:00:20:68:ca:60:ae:
90:19:64:c8:29:d3:9d:a9:7d:92:13:26:14:0d:df:
6c:68:ea:79:a1:bc:f9:8d:72:ee:a2:eb:65:07:c4:
8d:a1:49:10:4a:82:37:63:99:d8:09:f0:b9:9a:f9:
10:1b:9c:c3:2b:ad:8d:1d:ec:0c:d6:bd:2b:5b:26:
af:7f:c4:f3:5d:c9:1c:3e:60:1f:82:69:d3:f2:96:
ab:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
19:F5:BD:0F:44:36:24:91:15:DA:90:BB:4E:49:EF:C3:35:8D:F9:69
X509v3 Authority Key Identifier:
keyid:D4:66:D1:70:C8:10:BA:34:C4:2E:92:0E:84:D4:26:28:45:97:7F:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GbRcMgQujTELpIOhNQmKEWXf4U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3c/2306f6-6cc0-4982-a523-16842bdad925/1/1GbRcMgQujTELpIOhNQmKEWXf4U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:14:28:ec:e0:70:c5:df:7a:ad:67:6f:7b:f7:e8:ee:96:1e:
df:38:b7:6b:93:89:e9:02:20:a6:50:0a:f1:b3:8e:81:2e:15:
4a:ae:c1:b1:fe:f7:0e:5b:8b:d8:b4:74:ac:8f:b3:ec:73:ea:
43:ce:12:7a:cf:c6:38:47:58:ab:eb:80:df:83:46:50:ce:fa:
28:51:97:5e:8d:73:00:16:f8:ff:5f:20:ad:1b:78:a3:ff:7d:
af:0e:ea:5b:d2:70:68:3e:cc:5c:b7:46:69:fc:ea:9d:5f:7c:
19:2e:88:1d:34:30:a2:d6:d1:d5:7e:1c:fb:7a:e5:54:f8:41:
fa:e5:0d:c7:4f:0d:c0:07:75:e3:fd:ca:c9:26:79:29:5f:b0:
b1:0d:f7:98:13:71:6b:99:e1:59:5b:94:5e:24:77:3c:90:00:
73:82:20:c1:0f:a4:a1:07:92:9f:38:c8:6b:09:b2:ab:11:bc:
95:7f:f0:c9:9b:9b:39:8f:6e:96:61:be:da:d4:8f:0a:94:1f:
11:52:f2:bd:e7:ce:3e:ad:85:97:14:a6:3f:8a:f3:28:39:9b:
f1:52:7b:96:50:66:4c:a4:8c:98:7e:d0:f8:7c:35:f5:f6:71:
b6:95:98:23:3c:e3:1f:37:06:75:30:36:84:dd:7a:61:43:b5:
54:5f:b5:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:10:59 2025 by rpki-client