Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
File: GOk3wQPbBG8iVT75lDj6KVkkDaU.mft (raw, json)
Hash identifier: DDrKwrXydxCMAD7FcMO9WampCwTR8X4OT6WLolJYM88=
Subject key identifier: 32:3A:5E:52:A1:36:70:5A:68:E3:0C:79:DF:21:09:FB:E4:96:C3:45
Authority key identifier: 18:E9:37:C1:03:DB:04:6F:22:55:3E:F9:94:38:FA:29:59:24:0D:A5
Certificate issuer: /CN=18e937c103db046f22553ef99438fa2959240da5
Certificate serial: 01974B1F31E70E3A244E8EB136232A645AA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
Manifest number: 157E
Signing time: Sat 07 Jun 2025 16:00:24 +0000
Manifest this update: Sat 07 Jun 2025 16:00:24 +0000
Manifest next update: Sun 08 Jun 2025 16:00:24 +0000
Files and hashes: 1: 2Hcj0ac-2VPUQm6MAjkwJIIrflI.roa (hash: qp66s4r7nxhRRHNo4vHow9LReUAp/h/x3jaDV1HCAjY=)
2: GOk3wQPbBG8iVT75lDj6KVkkDaU.crl (hash: wkMi3xfL+NhlCkZHsNynOTmAAfHSbAPCPsLYZxvKRSQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:1f:31:e7:0e:3a:24:4e:8e:b1:36:23:2a:64:5a:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18e937c103db046f22553ef99438fa2959240da5
Validity
Not Before: Jun 7 16:00:24 2025 GMT
Not After : Jun 8 16:00:24 2025 GMT
Subject: CN=323a5e52a136705a68e30c79df2109fbe496c345
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:b5:55:7f:16:48:e0:e3:79:10:23:bc:0a:fb:
ea:8a:08:41:5d:b0:7c:b5:5a:4c:be:cb:40:5e:4a:
c1:60:15:9c:ae:62:c7:f0:d6:a3:20:b3:de:fb:3b:
55:c9:8a:73:04:25:66:1a:87:fb:35:f4:d5:fb:59:
0f:78:30:ba:1e:cd:b6:28:4b:02:9d:ba:db:e3:26:
e3:7e:b1:6c:b5:09:fb:2e:c1:79:b8:5c:5a:27:23:
af:08:81:e8:13:d7:ce:ef:28:a6:79:45:2d:de:c7:
e3:97:4a:ed:3f:9a:92:90:e1:27:b2:a1:b4:26:9b:
07:d3:67:ed:e9:59:ea:4c:7f:ba:c8:22:e0:4e:2c:
55:2e:7b:2d:c7:58:0a:59:3c:04:c9:24:af:86:2b:
56:51:13:31:7e:ea:16:af:e3:e8:7b:7f:0b:8e:cb:
2b:80:d8:1d:f8:95:60:d6:d0:02:99:71:56:49:87:
49:9e:e4:e0:2a:b3:b8:b1:d2:c4:72:db:99:36:67:
22:30:b1:74:d9:c6:f8:1b:4b:65:1e:bf:d6:e5:bf:
8e:5a:1b:91:a0:e8:20:a5:0c:c7:e6:90:98:70:0f:
87:61:98:ed:83:e0:13:4d:5b:73:9f:b8:bc:e7:f3:
6e:e1:7c:c2:21:b0:2c:76:a1:70:c9:3d:ac:42:0d:
7c:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:3A:5E:52:A1:36:70:5A:68:E3:0C:79:DF:21:09:FB:E4:96:C3:45
X509v3 Authority Key Identifier:
keyid:18:E9:37:C1:03:DB:04:6F:22:55:3E:F9:94:38:FA:29:59:24:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:fb:9e:34:f9:34:c9:30:c6:3f:44:70:bc:a1:79:31:18:50:
34:59:69:23:46:77:a9:a3:df:d3:83:e9:83:c2:b7:21:5f:51:
8f:7c:57:f2:dd:ac:83:5c:a8:02:75:8f:64:6a:03:04:dd:19:
80:05:e8:c6:51:d7:5f:46:15:96:e0:c9:b0:55:38:b7:39:56:
98:8a:cd:35:b7:b1:3b:55:a2:5b:06:1f:31:03:e1:58:0c:0e:
a5:41:fc:10:66:26:34:de:65:ad:15:75:d7:1a:16:ba:b8:cb:
74:79:b7:cb:31:98:91:62:21:b5:71:b0:12:c1:7f:06:ab:47:
03:91:c0:3c:3c:4b:36:59:6d:97:e8:ec:9d:09:51:65:24:09:
8f:96:8e:ec:7d:f4:30:21:82:17:fd:7b:ff:fa:4c:59:56:33:
91:9e:51:0d:4a:43:52:9f:7d:35:e4:e8:fd:8c:2e:65:9c:f1:
14:bf:06:7a:0d:dd:d6:0e:eb:72:c0:b8:cd:d9:f4:4a:bf:89:
ed:42:53:27:aa:91:c4:37:04:c6:d2:b5:1d:e4:1a:a0:74:f8:
dd:57:3d:bd:18:17:6d:d4:4d:90:c9:c0:c5:cf:c6:68:11:88:
06:06:9d:df:cb:4e:47:de:78:d9:55:88:6a:5b:d7:0b:ac:22:
c5:b2:81:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 19:16:51 2025 by rpki-client