Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
File: G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft (raw, json)
Hash identifier: WbRb+t9NmXk//vCj9ttLxtgPsx6bU22qkiJizqK0gec=
Subject key identifier: 97:81:92:F5:6A:D4:B2:01:47:5B:70:35:D4:74:12:E8:98:6C:76:ED
Authority key identifier: 1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
Certificate issuer: /CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Certificate serial: 0196591552B60C13101A66ED472DFD45D7BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
Manifest number: A6
Signing time: Mon 21 Apr 2025 16:01:31 +0000
Manifest this update: Mon 21 Apr 2025 16:01:31 +0000
Manifest next update: Tue 22 Apr 2025 16:01:31 +0000
Files and hashes: 1: G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl (hash: 5sJoHW2BBnF3A5zWdpXqRyZmUNPxlMTjODrXr9ndNXw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 16:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:15:52:b6:0c:13:10:1a:66:ed:47:2d:fd:45:d7:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Validity
Not Before: Apr 21 16:01:31 2025 GMT
Not After : Apr 22 16:01:31 2025 GMT
Subject: CN=978192f56ad4b201475b7035d47412e8986c76ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:20:8c:5c:0b:22:52:90:b2:f2:ec:17:e1:8c:
5a:f6:37:31:0b:ff:eb:15:1e:34:8e:50:6f:d0:66:
b6:24:51:2c:cb:32:c9:23:2d:1e:75:a8:bf:9d:5d:
e8:19:53:77:42:a7:61:9a:9d:d4:9c:43:0a:1c:ff:
f1:95:b6:30:92:ce:86:75:73:a3:6e:43:84:5a:ac:
33:f5:fa:fa:fc:6a:74:82:c7:de:df:e6:eb:2c:d4:
66:3b:a1:e3:94:eb:46:f2:1e:4d:e3:e6:8b:23:37:
2e:12:8f:92:12:cd:31:c2:4f:96:37:e4:0a:42:d8:
a8:17:2a:4d:71:1c:55:50:13:86:21:f7:50:d7:9d:
e7:cc:af:aa:5c:aa:0a:83:30:f5:56:27:67:8e:1b:
bc:bc:9c:bf:50:b6:7a:65:14:d6:b5:e3:2b:2a:a8:
fb:69:5e:ff:48:f6:0e:41:30:3c:62:e2:92:4f:de:
9b:d7:c0:cb:a6:cb:3d:e5:11:43:70:f5:87:1a:ad:
90:c3:59:82:21:8d:de:53:80:7d:2e:cf:a8:ac:c7:
d9:38:6d:58:35:b5:8e:62:a9:ed:19:82:b8:83:09:
bf:ea:02:b0:46:af:62:ba:d9:0c:dd:7f:e3:ff:bb:
f5:53:29:05:d8:97:31:3c:fe:12:2c:31:aa:ac:8b:
3b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:81:92:F5:6A:D4:B2:01:47:5B:70:35:D4:74:12:E8:98:6C:76:ED
X509v3 Authority Key Identifier:
keyid:1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:e4:08:69:aa:a6:66:53:30:c4:0d:f6:e2:46:7d:c3:40:27:
fd:5c:ba:3a:c1:46:72:09:78:7b:0c:01:ba:a4:55:02:95:97:
dc:02:04:65:62:bf:ff:35:fc:ff:07:cb:69:7c:b6:9f:1b:dd:
c8:74:03:f3:20:ce:85:b5:d1:05:0a:1c:42:cb:5b:da:ea:e3:
59:96:7d:bd:36:07:75:c5:d8:9a:84:3a:df:2b:f5:ae:d3:0a:
22:77:bf:1a:04:ec:d4:e2:f2:18:93:e2:29:8a:50:2a:a2:0b:
93:2b:f8:aa:56:f1:e6:ef:48:8a:60:1a:cd:b3:d6:54:06:45:
cb:e8:af:a4:4a:05:90:5f:cc:8b:57:ee:d6:0c:4d:49:1e:85:
f3:6c:d2:fa:6d:e1:d1:dd:82:d2:e0:01:b9:92:20:97:c0:18:
6b:37:46:d2:97:19:2e:44:ea:1a:f4:bd:c1:10:cb:ee:df:b8:
8c:1e:7a:e3:ca:75:77:bf:bd:86:b5:32:44:74:7e:e6:d8:95:
87:f9:f3:83:01:73:a8:ca:f8:d9:86:69:35:a3:ad:e3:58:f4:
fd:5b:73:11:f4:b3:2f:e4:a7:24:34:f8:7d:dc:e9:84:cd:21:
0f:51:8c:80:93:d6:04:f2:ff:57:45:e9:86:5d:1d:c6:3b:b2:
7b:05:eb:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZZFVK2DBMQGmbtRy39Rde9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiNjkzMDFmYThkNzg4ZTAyZjdlYjJmYTg4MDIxMDkwNzQy
MDZjZmUwHhcNMjUwNDIxMTYwMTMxWhcNMjUwNDIyMTYwMTMxWjAzMTEwLwYDVQQD
Eyg5NzgxOTJmNTZhZDRiMjAxNDc1YjcwMzVkNDc0MTJlODk4NmM3NmVkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3yCMXAsiUpCy8uwX4Yxa9jcxC//r
FR40jlBv0Ga2JFEsyzLJIy0edai/nV3oGVN3Qqdhmp3UnEMKHP/xlbYwks6GdXOj
bkOEWqwz9fr6/Gp0gsfe3+brLNRmO6HjlOtG8h5N4+aLIzcuEo+SEs0xwk+WN+QK
QtioFypNcRxVUBOGIfdQ153nzK+qXKoKgzD1Vidnjhu8vJy/ULZ6ZRTWteMrKqj7
aV7/SPYOQTA8YuKST96b18DLpss95RFDcPWHGq2Qw1mCIY3eU4B9Ls+orMfZOG1Y
NbWOYqntGYK4gwm/6gKwRq9iutkM3X/j/7v1UykF2JcxPP4SLDGqrIs70wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJeBkvVq1LIBR1twNdR0EuiYbHbtMB8GA1UdIwQY
MBaAFBtpMB+o14jgL36y+ogCEJB0IGz+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvRzJrd0g2alhpT0F2ZnJMNmlBSVFrSFFnYlA0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MS81ZDcyOGEtOTNkYS00ODBiLWE3MzUt
NDE2YzI4Nzk4ZmUyLzEvRzJrd0g2alhpT0F2ZnJMNmlBSVFrSFFnYlA0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81MS81ZDcyOGEtOTNkYS00ODBiLWE3MzUtNDE2YzI4Nzk4ZmUy
LzEvRzJrd0g2alhpT0F2ZnJMNmlBSVFrSFFnYlA0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUuQIaaqm
ZlMwxA324kZ9w0An/Vy6OsFGcgl4ewwBuqRVApWX3AIEZWK//zX8/wfLaXy2nxvd
yHQD8yDOhbXRBQocQstb2urjWZZ9vTYHdcXYmoQ63yv1rtMKIne/GgTs1OLyGJPi
KYpQKqILkyv4qlbx5u9IimAazbPWVAZFy+ivpEoFkF/Mi1fu1gxNSR6F82zS+m3h
0d2C0uABuZIgl8AYazdG0pcZLkTqGvS9wRDL7t+4jB5648p1d7+9hrUyRHR+5tiV
h/nzgwFzqMr42YZpNaOt41j0/VtzEfSzL+SnJDT4fdzphM0hD1GMgJPWBPL/V0Xp
hl0dxjuyewXrig==
-----END CERTIFICATE-----
Generated at Tue Apr 22 01:26:47 2025 by rpki-client