Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
File: G2t-l-0j1mqR-4qRv9nGdxEpsas.mft (raw, json)
Hash identifier: ezhd9XAa0FXL/sbfLNDAkxLODo1ETgQMT6R0AneA2hk=
Subject key identifier: CC:04:8D:EC:D2:22:A7:3A:6C:F3:1E:D9:DB:42:DE:AA:ED:94:DC:B4
Authority key identifier: 1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB
Certificate issuer: /CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
Certificate serial: 0199221F09789DCF5661E2A57F1CCF3D1D34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
Manifest number: 0F6A
Signing time: Sun 07 Sep 2025 03:01:23 +0000
Manifest this update: Sun 07 Sep 2025 03:01:23 +0000
Manifest next update: Mon 08 Sep 2025 03:01:23 +0000
Files and hashes: 1: G2t-l-0j1mqR-4qRv9nGdxEpsas.crl (hash: axTJn6u+TOZYo84nu46qG9M/VIJxWDa8FF7REFKicoI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 03:01:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:1f:09:78:9d:cf:56:61:e2:a5:7f:1c:cf:3d:1d:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
Validity
Not Before: Sep 7 03:01:23 2025 GMT
Not After : Sep 8 03:01:23 2025 GMT
Subject: CN=cc048decd222a73a6cf31ed9db42deaaed94dcb4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f3:ec:4e:aa:e9:82:3a:e8:51:55:69:db:54:d6:
9d:2f:c6:33:d6:f7:b9:16:81:79:6a:dc:d9:6b:84:
ca:c3:bf:16:b7:ca:45:3d:ed:89:2c:34:75:e2:a7:
22:76:cc:e1:0c:72:cb:7e:3b:94:79:90:b3:72:21:
55:c5:c6:68:b7:18:41:8f:39:75:2f:c7:f3:4e:49:
5a:f3:d1:3d:f3:5f:53:0b:40:da:22:18:64:22:b4:
02:15:b8:69:c1:7d:dc:17:dd:c9:bf:ed:fc:75:64:
58:36:e8:e7:bf:00:1c:a1:5c:a5:82:3e:29:a1:47:
b8:1b:c8:81:99:30:98:78:25:36:58:fd:64:2b:c7:
85:07:b9:89:22:98:71:3c:b9:c4:87:03:35:7d:ea:
26:af:9c:ef:44:af:4c:96:c7:01:15:77:96:cf:75:
97:02:35:3f:af:ea:47:44:b3:aa:05:ee:49:be:c0:
66:13:57:a7:fc:0b:65:b6:ae:51:0a:d7:ad:bb:ee:
2f:a1:c8:1a:fb:5e:03:54:6a:37:a7:16:6a:e0:3e:
68:02:82:6e:10:55:76:cb:f9:6f:4c:c2:37:33:d4:
28:7c:96:63:da:2e:f5:81:5b:f1:96:48:21:e1:36:
55:9b:fa:96:72:3d:a4:07:82:08:d0:8d:cc:25:1d:
59:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:04:8D:EC:D2:22:A7:3A:6C:F3:1E:D9:DB:42:DE:AA:ED:94:DC:B4
X509v3 Authority Key Identifier:
keyid:1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:03:25:09:c7:7a:17:9b:0e:78:f8:14:50:1e:1a:e6:95:21:
5d:26:5e:8c:63:d6:2c:95:d3:b1:83:bf:bb:82:3f:4e:96:4a:
de:9a:49:55:b8:9c:aa:6f:2c:bd:4b:78:d7:42:44:42:ff:92:
2a:a9:a5:13:b5:85:c9:0f:de:4d:36:31:f7:ff:37:b3:ca:44:
48:37:90:72:5e:60:b9:e1:ab:ef:f1:27:76:de:7f:4f:1e:7c:
68:13:da:1d:12:7f:7b:0a:e3:3c:25:13:48:af:8e:bd:68:19:
f9:ea:e3:aa:bb:31:e5:78:9d:0d:03:3d:35:e7:94:66:85:ee:
46:b7:d8:cb:4f:86:9b:55:99:1b:56:2f:70:8b:55:75:b4:24:
82:4b:b7:ca:c7:97:37:f7:dd:70:a0:a7:b6:fe:6d:83:6f:2f:
92:af:d8:b0:91:3f:79:ba:7b:31:f4:61:b6:eb:76:3a:29:9e:
d2:cc:a1:9f:28:d9:52:ea:7c:bb:df:4d:91:b1:90:12:82:8f:
01:67:44:a5:e6:1a:f7:e1:50:b7:95:36:27:14:84:1f:22:ae:
73:72:71:fe:d6:a6:6d:90:ee:16:c6:32:da:8a:6e:cf:6a:e1:
e0:ee:db:55:5e:aa:9f:1a:d4:df:81:00:85:0b:0e:b2:e2:7e:
1d:82:c4:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:11:03 2025 by rpki-client