Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
File: ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft (raw, json)
Hash identifier: GHUl7Ph5YUxLxK5mKUQmFoPNjS97YhMmz6DMRidR9F4=
Subject key identifier: AB:A7:17:FD:AB:19:78:98:48:EA:C7:C6:64:62:A2:D4:7D:1A:AB:CD
Authority key identifier: 82:12:19:46:9C:6D:F7:6C:F4:76:F2:74:CD:CF:27:E5:2F:8F:0D:F8
Certificate issuer: /CN=821219469c6df76cf476f274cdcf27e52f8f0df8
Certificate serial: 01974A7B2D5655C9EB327714A05F3793EEEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
Manifest number: 0570
Signing time: Sat 07 Jun 2025 13:01:15 +0000
Manifest this update: Sat 07 Jun 2025 13:01:15 +0000
Manifest next update: Sun 08 Jun 2025 13:01:15 +0000
Files and hashes: 1: fdOHadbduUc9htmWTS-jPq_zv2U.roa (hash: gZYnTf+6Tdj5UA3epTVfXJljvvit6fFaXTM2YVnS+ZA=)
2: ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl (hash: w/7LKnXq6T96Xzguvt/2yApkqz+kDPJOTwcGXMitBJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 11:24:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4a:7b:2d:56:55:c9:eb:32:77:14:a0:5f:37:93:ee:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821219469c6df76cf476f274cdcf27e52f8f0df8
Validity
Not Before: Jun 7 13:01:15 2025 GMT
Not After : Jun 8 13:01:15 2025 GMT
Subject: CN=aba717fdab19789848eac7c66462a2d47d1aabcd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:15:3b:ae:25:dc:11:cf:32:45:47:61:4f:4b:
00:c6:93:08:71:6a:79:b2:c9:32:61:55:da:0a:65:
b0:b3:e2:a7:87:37:30:09:f3:04:c1:67:98:d2:f4:
3a:80:f4:8a:8e:e5:4b:7b:6d:53:80:96:ce:70:d7:
ed:b8:ff:45:4c:c2:0a:94:d3:34:db:9f:c4:97:c1:
26:d7:30:67:25:18:58:27:05:f1:7e:31:91:8c:e3:
73:07:42:b2:b7:5b:87:bb:fb:7e:31:89:9a:11:95:
47:76:18:b4:5c:7f:e6:42:a9:af:44:ff:9d:40:d8:
a7:9b:6e:bb:f4:f8:94:cf:35:ce:d2:11:4b:64:b1:
40:12:b6:be:61:af:e3:41:0a:e0:71:60:3c:51:25:
da:f5:90:7e:96:d9:55:1d:05:23:88:d1:b7:6e:c2:
cd:1d:61:7b:16:f2:fd:d0:b5:5a:4a:94:1a:02:33:
24:eb:d5:f8:ac:43:fd:49:10:27:51:ac:7c:13:28:
33:54:7c:36:70:fc:38:64:53:16:b7:8e:12:a8:43:
a9:9d:b3:98:50:7c:bf:b7:28:22:58:2f:12:b2:a0:
4d:9c:64:e8:56:39:71:96:52:66:c4:6c:4d:36:8c:
ab:9c:60:e8:f7:2e:e8:74:68:a5:56:5b:16:fe:4c:
3e:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:A7:17:FD:AB:19:78:98:48:EA:C7:C6:64:62:A2:D4:7D:1A:AB:CD
X509v3 Authority Key Identifier:
keyid:82:12:19:46:9C:6D:F7:6C:F4:76:F2:74:CD:CF:27:E5:2F:8F:0D:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:f0:55:78:be:da:57:81:5c:66:98:9e:88:2c:8e:af:db:d7:
a3:f3:f9:15:e7:95:78:e0:dc:e3:e2:c2:aa:ed:92:48:14:7b:
c9:00:2a:9f:b5:9c:01:75:e0:37:8b:e9:0b:97:31:9c:44:fd:
8b:dd:11:d6:3f:e5:a5:67:0c:ae:82:a0:86:76:f2:ae:01:18:
1c:12:5f:5d:a9:02:17:bb:c6:3f:93:f8:30:d1:c3:a3:a7:1c:
49:a7:e2:2e:e9:bb:8f:a8:f4:b5:d1:87:b0:73:8f:ea:0f:00:
b1:d0:78:a3:b9:00:90:f2:18:c9:04:2a:c1:d3:b4:a9:85:32:
3b:1b:4a:3e:2c:39:43:eb:e7:76:89:9e:65:56:92:f1:13:e6:
8b:19:ce:30:c4:80:79:9c:dc:69:17:45:ae:9a:45:56:11:64:
52:50:d4:8c:6d:ca:a0:c4:4f:0a:25:b0:e0:05:fb:df:b2:8f:
c9:15:98:6c:70:60:d4:4b:6b:03:98:49:7a:51:b9:c3:4c:a7:
77:70:70:b1:a9:20:fe:04:07:04:9e:e6:69:18:dd:95:68:d2:
0f:44:45:fa:92:e0:d6:8e:81:1c:18:61:f5:7f:e9:2e:3f:57:
2f:6f:e7:11:ae:18:79:19:7c:e8:f6:80:e6:5a:42:15:83:14:
93:3a:c0:a5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 21:10:48 2025 by rpki-client