Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
File: gmAVLt1HazFwhARFKVhhW2Xdywo.mft (raw, json)
Hash identifier: PpuuBx65l+k6lppftdae6xz2nM1UglsFw0kooKk/d0A=
Subject key identifier: CF:11:9F:F1:D3:1A:ED:05:D7:3A:B7:45:F4:60:D4:47:DD:5A:81:1F
Authority key identifier: 82:60:15:2E:DD:47:6B:31:70:84:04:45:29:58:61:5B:65:DD:CB:0A
Certificate issuer: /CN=8260152edd476b31708404452958615b65ddcb0a
Certificate serial: 01974EFC386B1CF41D256754F19BF8CBFAC0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
Manifest number: 157E
Signing time: Sun 08 Jun 2025 10:00:41 +0000
Manifest this update: Sun 08 Jun 2025 10:00:41 +0000
Manifest next update: Mon 09 Jun 2025 10:00:41 +0000
Files and hashes: 1: ABnX77DVikk7gn2fQ6SCyXZp5CY.roa (hash: tGweD2UyMDN3jg0C7H8c7WDDk9iUdxSAoQTdTpfDf5g=)
2: gmAVLt1HazFwhARFKVhhW2Xdywo.crl (hash: ShmAJfSwXfrA7sgmExjOxQqtJ6gjVyRgqsioRS8gp+4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 10:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4e:fc:38:6b:1c:f4:1d:25:67:54:f1:9b:f8:cb:fa:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8260152edd476b31708404452958615b65ddcb0a
Validity
Not Before: Jun 8 10:00:41 2025 GMT
Not After : Jun 9 10:00:41 2025 GMT
Subject: CN=cf119ff1d31aed05d73ab745f460d447dd5a811f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:c7:8e:4b:42:29:02:d1:da:ea:2b:af:18:60:
2e:3e:7e:37:9a:fd:ca:b6:97:f3:23:7d:15:58:ea:
e2:2d:7a:57:ce:a8:98:e0:53:86:0c:4d:0e:ee:33:
de:f5:a9:37:ef:b2:e1:23:11:10:44:65:e4:42:a6:
dd:31:b1:b6:b6:71:9d:b3:bd:49:bc:df:c8:37:00:
6a:28:36:24:22:df:17:8b:a6:ca:d5:63:0f:ee:eb:
ce:e1:08:6b:e4:00:9e:b4:a6:08:ba:ec:b6:54:4b:
f2:1e:86:48:63:c9:5e:03:6b:1c:eb:6c:c0:f1:ba:
b6:eb:d2:d3:db:d3:d0:5a:26:4e:cb:cc:8c:2d:93:
ee:1a:c5:10:fa:18:74:67:04:f1:57:ad:3e:87:f0:
15:2f:99:d0:c8:96:f9:a7:22:6e:e5:6e:b2:89:5c:
05:b3:c1:1b:95:f8:c0:91:cb:5d:64:ad:3f:31:ee:
83:ca:0c:7f:a6:78:82:78:7a:f6:80:73:37:4b:51:
a7:cf:05:f5:00:89:7c:00:23:b6:0b:6b:ee:bb:95:
7b:a5:54:0e:79:51:3b:15:e5:ed:16:28:ca:e0:36:
6a:cd:f0:8a:62:97:d7:b7:e0:43:fd:89:42:27:6a:
00:79:a2:1f:c5:c9:e2:c9:69:87:48:ba:a8:a5:dd:
ff:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:11:9F:F1:D3:1A:ED:05:D7:3A:B7:45:F4:60:D4:47:DD:5A:81:1F
X509v3 Authority Key Identifier:
keyid:82:60:15:2E:DD:47:6B:31:70:84:04:45:29:58:61:5B:65:DD:CB:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:88:e4:7b:a9:87:96:42:4e:b6:e1:c4:b6:f9:d6:a7:86:87:
02:79:9e:ba:f2:d4:6d:29:e9:02:fa:13:31:98:ec:0a:e3:f2:
ae:4b:e9:7b:d3:c4:90:a8:21:22:f9:92:6c:b9:1d:76:7c:3c:
d3:1b:9c:8a:d6:90:16:78:10:d6:1e:f2:fd:73:ba:37:15:89:
0a:2f:79:db:24:65:83:bb:d9:30:06:d5:40:59:07:01:c7:c7:
29:96:6e:26:f8:b6:a8:f2:23:40:62:2e:d9:c9:ce:2a:34:fe:
8b:49:e1:60:4e:09:03:de:ce:ca:92:00:1d:ef:49:72:fc:3e:
a0:49:c1:09:74:f2:c5:73:05:1d:d9:80:09:40:40:f6:d1:80:
e6:aa:7e:fd:b7:15:5b:d3:c2:4b:78:11:34:00:12:c6:b4:58:
a6:f9:df:3a:e9:a4:57:76:50:71:73:68:83:ad:cd:16:3b:9a:
c8:d8:24:cf:3e:37:8b:18:03:04:fa:fa:a6:43:26:d9:b8:5f:
eb:14:a5:99:ca:70:0e:d8:25:eb:1a:b5:c1:13:85:5c:62:7b:
85:38:46:2b:aa:18:62:0a:f3:b1:38:c5:64:27:f3:45:89:a6:
74:33:b4:0b:7c:b4:47:d0:54:e1:eb:35:94:e2:59:5b:5f:8a:
be:8e:2b:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 15:35:21 2025 by rpki-client