Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json)
Hash identifier: 9tpk0EIElv9VgieSLWXDhVgMHx0KVFx7A66E6Pc7VPk=
Subject key identifier: E9:F5:39:FD:E2:CA:C1:5F:0E:F4:CD:FC:34:14:84:34:3F:AB:4C:F7
Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840
Certificate serial: 019753EB6B116E6CD63AEB48AF8138377AFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
Manifest number: 157F
Signing time: Mon 09 Jun 2025 09:00:26 +0000
Manifest this update: Mon 09 Jun 2025 09:00:26 +0000
Manifest next update: Tue 10 Jun 2025 09:00:26 +0000
Files and hashes: 1: 7G9OAa8ebUxYvLbiABAZAGXs6yI.roa (hash: Q8FJVCv7ZP8KepVRkOgfjY1xOHET+UVMaI0qQvaXpcQ=)
2: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: FRL+5ECvzOzukihqXQrByyr5+avq6pYwrrvXMr/Pf1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:53:eb:6b:11:6e:6c:d6:3a:eb:48:af:81:38:37:7a:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827313247c486fe434833c09087a00a900301840
Validity
Not Before: Jun 9 09:00:26 2025 GMT
Not After : Jun 10 09:00:26 2025 GMT
Subject: CN=e9f539fde2cac15f0ef4cdfc341484343fab4cf7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:fe:fd:ef:3a:0d:53:2f:87:65:0b:86:a3:0a:
07:79:28:92:3f:a6:de:a9:98:5f:ba:f2:6d:00:44:
a4:52:98:09:b7:22:79:7b:86:c7:61:5c:37:0b:b7:
be:c5:8a:76:33:e1:72:fc:3c:8a:0f:f7:87:77:9f:
5e:8b:07:8f:f0:35:51:fa:2d:75:14:65:b0:89:4f:
fe:80:6a:98:a9:2d:ec:b6:4c:40:2a:f5:8c:ea:0f:
12:14:80:b9:08:a0:91:f8:d9:70:8e:8d:15:eb:12:
c3:7f:6f:14:4a:f1:a0:38:bf:1a:48:fd:20:74:22:
b5:d3:e9:eb:8b:5d:cd:06:5f:5c:65:83:e1:c7:a0:
03:e3:9c:d6:06:ec:64:48:1f:2e:a4:bc:56:58:52:
2a:23:82:02:c8:39:94:00:d0:42:8b:3c:e4:6c:a6:
91:94:84:82:92:2e:ed:f0:9d:6a:9c:39:c5:a1:c4:
70:ec:03:57:e4:d3:4f:0e:c9:45:0a:95:a6:18:d5:
c1:7c:ef:d8:18:da:88:9f:4c:e0:ff:24:e2:b8:bc:
99:05:7b:d3:88:08:23:41:ff:05:fa:c0:07:1f:ca:
08:3e:a2:ed:7e:ad:e2:f2:69:65:23:ec:80:c5:4b:
e5:01:27:f0:b6:f3:26:b7:58:f6:14:80:e6:58:49:
cb:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:F5:39:FD:E2:CA:C1:5F:0E:F4:CD:FC:34:14:84:34:3F:AB:4C:F7
X509v3 Authority Key Identifier:
keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:54:5c:d4:9e:28:d2:b7:b9:ef:d7:dd:49:4e:d4:e8:6f:26:
5f:fc:a4:49:61:07:2d:8d:64:f0:6b:7c:10:80:f0:76:01:ec:
f7:5e:7a:15:8e:6b:05:d8:bd:9f:ae:b9:ee:e0:f8:25:fa:a5:
17:de:59:6b:ab:78:ab:b8:53:29:e8:11:d7:a3:49:ca:02:56:
b2:44:c0:ec:06:a8:48:4c:3a:a2:44:ae:5e:14:98:68:d1:92:
11:52:d6:35:34:fb:7c:a4:06:5c:aa:56:e9:c7:99:eb:16:9f:
80:6c:d1:9a:4a:ce:81:bd:26:9f:81:2f:89:ab:6b:a2:64:80:
b7:78:c0:36:e3:f5:1f:3d:8c:54:9c:21:7b:9d:7d:78:90:f2:
b8:26:19:3d:40:87:5c:ae:a8:b0:d4:9f:2c:b7:83:2e:f0:06:
93:22:92:47:d7:50:b9:9d:f7:2b:c4:1f:a8:38:17:93:7a:20:
95:08:5c:f5:97:47:39:5f:5a:21:85:f5:a0:a4:81:38:6f:8a:
d5:73:f5:a5:77:40:f9:9b:6c:cf:79:a8:60:99:78:9e:3c:f7:
16:4c:ee:15:74:b8:20:d5:58:cd:69:7c:56:81:69:ec:79:c2:
bf:0b:64:ee:e0:c8:61:87:9f:e9:97:94:3b:1d:94:f1:20:e9:
04:5b:4e:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 18:11:19 2025 by rpki-client