Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
File: 1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft (raw, json)
Hash identifier: 4XSNfAC+b8hcUiTFv1HOLZqQpSFlgLZRAGnCH66qi+s=
Subject key identifier: 5A:86:46:3F:BD:D1:FC:8E:7D:7D:07:E7:37:F8:9E:84:F2:68:5E:9A
Authority key identifier: D4:69:86:7D:1D:69:3E:79:A6:A5:EE:90:14:E4:13:F0:39:EB:50:D8
Certificate issuer: /CN=d469867d1d693e79a6a5ee9014e413f039eb50d8
Certificate serial: 0197D1052906F1CCA6F782F50976EB13E8C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
Manifest number: 0FF3
Signing time: Thu 03 Jul 2025 16:01:05 +0000
Manifest this update: Thu 03 Jul 2025 16:01:05 +0000
Manifest next update: Fri 04 Jul 2025 16:01:05 +0000
Files and hashes: 1: 1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl (hash: CDFhr6n37dYpWmc7PeHtDEZaNBKREaJvtip8YiJYag8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 04 Jul 2025 16:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:d1:05:29:06:f1:cc:a6:f7:82:f5:09:76:eb:13:e8:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d469867d1d693e79a6a5ee9014e413f039eb50d8
Validity
Not Before: Jul 3 16:01:05 2025 GMT
Not After : Jul 4 16:01:05 2025 GMT
Subject: CN=5a86463fbdd1fc8e7d7d07e737f89e84f2685e9a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:c9:9f:c9:45:bb:9a:64:90:7a:bb:e3:5d:89:
86:4f:ac:4a:f0:19:37:d6:d8:71:7e:17:da:d8:ae:
a1:1f:98:86:c4:21:8b:a7:9d:31:ff:6d:29:d6:a7:
bd:5e:b7:5f:a7:c2:e7:22:59:9e:a1:61:dc:ba:06:
44:0a:1a:bc:4d:9c:e7:cf:73:1e:7a:62:5f:0c:61:
ac:fb:0b:f6:24:53:cb:7b:75:e9:e1:f0:ef:96:9a:
68:c7:7e:6d:1e:79:37:01:04:23:25:2a:db:bc:5a:
cf:81:aa:59:be:bc:f2:eb:69:ec:13:e7:2f:22:63:
97:4e:82:27:c8:87:06:6d:38:54:9c:b8:35:3f:5a:
49:8c:85:e6:73:2b:1e:ed:bd:0d:01:99:8b:b7:40:
df:b5:17:58:42:bb:ec:92:e4:8a:b0:47:16:7b:51:
9e:7e:ff:77:a8:b3:d8:3b:5e:77:27:bd:bf:3f:fa:
f6:65:1b:67:9b:1c:b3:78:e5:19:cc:3d:48:33:5e:
1c:01:8b:17:e8:d8:98:ca:12:de:b5:70:5e:14:98:
18:39:53:1c:8d:1d:ea:bb:69:9e:94:aa:4b:b0:b8:
be:b1:9c:db:7c:4e:69:d1:d4:9e:00:e5:37:8e:d3:
c9:23:3c:b1:f9:f6:1a:77:c4:ec:ec:78:bb:60:cf:
e8:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:86:46:3F:BD:D1:FC:8E:7D:7D:07:E7:37:F8:9E:84:F2:68:5E:9A
X509v3 Authority Key Identifier:
keyid:D4:69:86:7D:1D:69:3E:79:A6:A5:EE:90:14:E4:13:F0:39:EB:50:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:04:8e:44:d5:03:7f:08:14:8b:c6:af:83:de:64:24:b6:19:
e3:29:54:a7:5f:57:47:f3:37:1d:18:eb:6e:64:a0:ff:6a:b5:
7d:e4:d8:c0:d8:b5:57:b9:29:f5:08:52:d2:11:36:93:41:7c:
6b:fe:76:bd:84:de:67:7b:45:2f:45:88:b9:b6:33:97:ad:b5:
d7:df:f3:d9:a6:c5:b7:1d:90:bf:03:8a:b0:c3:57:d4:ab:a7:
94:02:ae:25:7a:b9:c8:05:8f:30:ea:09:d4:f7:98:9f:89:a8:
55:c9:43:c9:96:06:83:7c:4b:af:37:2b:cd:37:77:6b:d4:7b:
39:b1:bb:d0:08:60:11:0a:7e:c3:98:a4:3e:10:72:85:10:69:
6a:7c:fd:e4:a3:24:7b:de:b0:b4:3c:a8:df:2f:71:ab:65:4f:
ff:61:93:5d:b5:e2:88:8c:21:e0:b1:2c:2f:fe:e0:81:65:04:
35:f7:12:d4:93:27:4d:b7:3a:4c:ad:94:0b:c1:cf:cb:c4:a1:
26:f8:35:94:9e:d3:31:8f:0f:5f:de:89:2e:eb:a8:ee:b2:98:
2c:12:ff:20:66:37:20:b3:78:82:82:83:ca:40:96:01:0d:85:
4a:3a:bb:91:20:a9:99:85:8e:a0:4b:ee:ae:b2:23:63:74:9f:
48:d2:4f:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jul 4 02:17:07 2025 by rpki-client