Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
File: G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft (raw, json)
Hash identifier: kz0qF9pKBLs1aE1FASwe0RPyDE+GVVQvgBhzHwce4mY=
Subject key identifier: 3A:08:70:8B:14:0C:E5:11:02:9B:DE:8D:9B:20:6C:A2:BF:D1:6B:86
Authority key identifier: 1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
Certificate issuer: /CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Certificate serial: 01976961A2E629F8B4019B17ECD2FCB00623
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
Manifest number: 0133
Signing time: Fri 13 Jun 2025 13:01:35 +0000
Manifest this update: Fri 13 Jun 2025 13:01:35 +0000
Manifest next update: Sat 14 Jun 2025 13:01:35 +0000
Files and hashes: 1: G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl (hash: FjVx+Zv62VPDSPbEj4oXrAKy1qyXcvaHTSLJoO73XmM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 07:00:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:61:a2:e6:29:f8:b4:01:9b:17:ec:d2:fc:b0:06:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Validity
Not Before: Jun 13 13:01:35 2025 GMT
Not After : Jun 14 13:01:35 2025 GMT
Subject: CN=3a08708b140ce511029bde8d9b206ca2bfd16b86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:7f:3f:a5:da:d2:8c:7f:76:2e:aa:b6:ab:eb:
cd:76:4b:08:59:e0:8f:22:d2:0a:05:fd:34:d1:e8:
49:b2:e3:eb:35:89:cb:95:c6:a3:5b:ef:9c:bb:b3:
b5:3c:10:aa:8d:68:fd:3e:4d:a9:49:c7:b6:ea:dd:
aa:f7:20:8d:7f:7b:f5:70:21:0b:40:83:a5:f7:77:
05:bf:7f:55:1d:60:ec:24:6a:e3:53:8a:a2:c8:0f:
ae:a1:51:c6:cb:45:22:e9:0e:48:23:be:2e:26:13:
bb:7e:76:93:4c:43:84:d7:75:70:63:12:bb:ac:fa:
47:96:10:b1:52:30:7f:38:95:da:eb:7e:f0:16:10:
50:3d:0a:b9:bc:0f:ea:ad:db:80:e8:1e:01:93:f1:
4d:ef:f3:ac:ff:0e:10:de:8b:1b:4a:6e:2e:c8:08:
91:b1:f3:c6:93:b1:92:14:3d:65:ae:2d:9d:de:5d:
b9:37:43:ec:68:d1:21:38:48:41:51:86:0c:19:5f:
9c:ba:ba:ce:d8:68:ad:4c:34:7f:5b:2a:30:2d:dd:
15:c8:9d:72:97:b4:21:13:cc:3c:a1:cd:a3:59:fa:
fd:2c:8d:2b:e6:6b:1e:25:cc:07:c3:a4:23:74:f4:
b7:3f:28:0d:5d:b1:50:a3:a8:28:cd:81:2d:1e:34:
36:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:08:70:8B:14:0C:E5:11:02:9B:DE:8D:9B:20:6C:A2:BF:D1:6B:86
X509v3 Authority Key Identifier:
keyid:1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:be:9f:f1:9f:13:3e:00:4e:e4:da:f5:63:d9:d6:8b:24:1e:
79:51:7d:97:4c:e6:0e:2d:59:95:f8:5b:1e:b9:7f:a1:91:87:
e9:71:f4:38:da:98:cf:a6:44:72:db:77:67:bf:d0:cf:39:63:
6c:62:14:74:29:8c:a2:97:83:4d:95:35:16:1c:7d:3e:e6:03:
1c:95:fa:7f:c7:b8:73:40:40:b6:13:77:ca:1f:34:1c:5b:dd:
5f:e2:2f:f7:e7:5c:39:f5:80:28:a2:42:98:27:26:60:53:c1:
ba:11:61:67:23:83:93:1f:ba:b2:b9:33:d3:b1:3f:bc:65:ae:
b5:c4:05:66:68:1b:e6:ee:db:d7:e1:b0:57:5e:42:69:ff:7e:
3f:3a:c4:59:f2:3f:0f:0c:74:05:ba:4d:29:40:f5:63:32:8e:
1f:3d:83:92:8c:16:cb:7e:60:2b:ad:4c:3b:65:55:e1:7f:f8:
20:cf:20:98:46:e2:b2:0a:cb:44:9c:0c:65:38:c8:85:2a:52:
ad:cc:44:22:2c:68:ae:0c:eb:be:a1:d4:d7:7f:be:50:87:ee:
7e:84:bb:19:f7:5e:23:dd:30:e6:eb:09:e2:da:dc:b4:ec:07:
01:c7:38:88:56:7e:57:e5:18:c9:af:a5:9e:08:78:88:b1:0e:
c9:e7:e2:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 14:48:47 2025 by rpki-client