Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
File: Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft (raw, json)
Hash identifier: jGO2EmZICoLoqXfHnHm668dd8n0zOKuoY8hvWVW2Oyc=
Subject key identifier: 89:6C:67:31:CB:51:20:7A:75:BE:ED:4A:D7:25:36:42:14:65:A7:68
Authority key identifier: 1A:88:F4:29:ED:C8:6A:A8:7B:B3:A1:77:17:CE:A7:1C:70:87:3A:F2
Certificate issuer: /CN=1a88f429edc86aa87bb3a17717cea71c70873af2
Certificate serial: 019763958C5FA73272C53D1234E2561E52E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
Manifest number: 11DC
Signing time: Thu 12 Jun 2025 10:00:34 +0000
Manifest this update: Thu 12 Jun 2025 10:00:34 +0000
Manifest next update: Fri 13 Jun 2025 10:00:34 +0000
Files and hashes: 1: Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl (hash: bbo2SFIi55xSWPJjmcSZQz5FXzfZ3D76TrAzHahXa4o=)
2: UujBfWNQbvUkl0lkMK4V-9QiUlw.roa (hash: FohKwxny7khcmiCsTnlSJI6D8Cw6gmfD+vVquMBYGNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Jun 2025 10:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:63:95:8c:5f:a7:32:72:c5:3d:12:34:e2:56:1e:52:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a88f429edc86aa87bb3a17717cea71c70873af2
Validity
Not Before: Jun 12 10:00:34 2025 GMT
Not After : Jun 13 10:00:34 2025 GMT
Subject: CN=896c6731cb51207a75beed4ad72536421465a768
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a8:03:bd:f5:e9:7e:fe:19:b4:2f:5d:5f:0b:
14:55:40:d9:43:70:12:1c:66:80:b1:af:ef:45:d6:
3f:c2:71:91:b9:fe:39:17:81:7f:9d:31:63:c2:5c:
b5:67:fc:e2:3b:76:55:3d:93:5d:82:b9:3b:d6:76:
78:7e:da:94:40:a2:23:27:65:eb:8a:b6:4c:cd:a4:
ee:26:94:81:7f:16:ad:d0:af:f0:61:1b:30:f9:42:
77:d7:a3:ec:ff:99:33:0e:8f:7a:82:7b:8d:9e:50:
8f:88:f3:2e:1e:87:dd:1b:44:22:61:ba:9d:66:e1:
67:30:63:bc:39:07:0b:e8:4e:4a:4c:4e:e2:4d:5e:
e6:de:34:67:1b:b7:26:9f:f4:df:27:b8:5e:9d:4d:
e7:06:0a:5a:60:3c:87:b7:dd:34:d8:92:aa:0f:b4:
4e:17:4a:0c:b9:dd:d8:f1:7e:60:5e:e3:2b:ac:b2:
01:37:ce:d1:b2:95:f8:cf:4e:bc:d7:e0:4e:66:5b:
4f:4f:93:54:c6:8d:95:e5:f4:d8:db:7e:e6:08:9c:
76:01:de:2f:85:fe:ec:e3:18:30:e1:3c:3d:51:25:
11:b1:9f:e6:48:0f:58:51:76:7e:13:11:1c:96:f9:
87:7c:da:62:0b:bd:cc:2c:f7:6a:22:fc:20:ff:57:
bf:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:6C:67:31:CB:51:20:7A:75:BE:ED:4A:D7:25:36:42:14:65:A7:68
X509v3 Authority Key Identifier:
keyid:1A:88:F4:29:ED:C8:6A:A8:7B:B3:A1:77:17:CE:A7:1C:70:87:3A:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:d6:ad:1e:38:43:66:66:78:0f:fa:67:2b:6e:74:33:3e:2e:
48:4c:e2:f8:5b:3f:5f:82:e9:b4:5c:91:9d:03:4f:d3:c1:bb:
9d:60:d1:b9:46:f1:63:73:d6:b7:81:6e:64:b1:3a:88:e2:50:
42:64:0f:83:2b:e2:56:6d:02:7f:20:b1:ca:f1:71:4a:73:93:
97:07:16:03:47:4b:88:78:3f:3c:43:87:ca:fc:89:4a:1d:7d:
d5:e3:69:3a:65:ca:82:14:a3:5d:18:7e:b2:4e:a7:ac:73:a1:
e2:82:52:2f:98:e9:40:4f:37:2e:38:1c:3e:20:5a:e0:83:98:
41:7e:cc:5c:21:fd:61:7e:cf:a1:41:8d:7e:9b:17:2a:c8:f9:
46:7d:63:42:21:97:98:5b:46:c8:67:b3:8e:9f:5e:b5:f5:12:
4f:18:09:17:57:d9:8e:df:26:e4:27:64:21:4a:f6:03:d8:c7:
77:f3:84:b8:40:80:46:7c:4a:ed:e7:3b:5c:3d:59:99:04:2f:
06:69:76:6b:bb:8f:2e:5d:20:7b:6c:d6:3d:f6:7e:24:3f:ce:
02:b0:77:3c:77:1f:2f:a1:b1:da:ce:c7:62:fb:c8:a3:7f:23:
3e:04:85:86:f0:61:62:1f:2d:be:45:7c:25:74:4b:8b:b6:d5:
59:f6:9e:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 12 17:55:46 2025 by rpki-client