Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
File: 1GL5scD2-pylMXZOJtOu0hG_7YE.mft (raw, json)
Hash identifier: 9ob0TWFCybyf0yun+oMppOW6XaoBz+4BtZ+wTnrDAEg=
Subject key identifier: E1:06:C9:9E:DA:32:1D:C0:E5:4C:4A:C2:5C:0A:C0:6B:43:5D:A8:B8
Authority key identifier: D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
Certificate issuer: /CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Certificate serial: 0197499F57D22F3D8295FDDAB67A06416241
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
Manifest number: 0B9B
Signing time: Sat 07 Jun 2025 09:01:08 +0000
Manifest this update: Sat 07 Jun 2025 09:01:08 +0000
Manifest next update: Sun 08 Jun 2025 09:01:08 +0000
Files and hashes: 1: 1GL5scD2-pylMXZOJtOu0hG_7YE.crl (hash: h2sREIA2qANjpSNfuzQIr8UBB4UPoW/SnRNkBPjZkHE=)
2: CzS60ntrl-ifakYiPMHnNys_2hg.roa (hash: gJEVLSYuR5fsAEatKrGL8Os1DpygWBOtVxsvnHWW9x0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:49:9f:57:d2:2f:3d:82:95:fd:da:b6:7a:06:41:62:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Validity
Not Before: Jun 7 09:01:08 2025 GMT
Not After : Jun 8 09:01:08 2025 GMT
Subject: CN=e106c99eda321dc0e54c4ac25c0ac06b435da8b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:26:cc:21:5a:47:7c:68:4e:fb:42:e9:d9:8e:
8f:7c:36:6c:ff:28:63:e7:55:a8:ab:6c:f1:3f:24:
d7:d3:9d:01:0c:91:f0:8d:f5:ad:21:55:e9:59:ad:
b4:72:98:a1:be:eb:b0:0b:2c:c9:eb:6b:b2:9c:5c:
6e:73:f8:0f:a2:07:b6:e2:bd:96:87:04:40:c5:f7:
eb:2f:68:cb:9a:f4:62:4e:2c:22:30:b7:53:58:cf:
8b:6d:10:e9:90:d7:ee:37:9e:64:49:bb:f6:a6:43:
0f:00:86:fd:7d:6e:de:21:1d:74:cc:48:73:41:70:
e9:50:33:7e:62:c0:c0:c2:8b:85:54:fb:04:91:ee:
57:a0:47:ad:ce:db:30:ba:cd:13:fc:c7:ca:a8:64:
3a:98:19:d6:01:49:63:c7:e8:51:81:e0:ec:14:ba:
db:35:32:59:00:67:68:74:7c:a6:6a:7b:33:59:2b:
41:41:46:d8:03:9f:0d:8c:11:fd:38:f6:5a:11:a5:
e2:6c:40:2b:9b:d2:5e:51:73:9c:d6:98:fb:46:ae:
87:4e:b4:eb:f5:27:f5:de:6b:c0:b1:ad:16:f6:29:
7a:a9:e0:78:0a:fb:92:05:a0:db:22:07:ac:fb:43:
8d:1f:82:22:3c:c5:f8:b9:4b:3f:70:f4:87:36:88:
56:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:06:C9:9E:DA:32:1D:C0:E5:4C:4A:C2:5C:0A:C0:6B:43:5D:A8:B8
X509v3 Authority Key Identifier:
keyid:D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:53:d1:ec:77:c3:35:03:0b:64:c3:34:ad:35:17:aa:fe:ca:
da:33:ef:30:88:c2:f9:11:9b:3b:ad:f4:27:b5:23:40:99:43:
3e:d3:8e:21:07:43:05:be:8a:4f:5a:cc:b7:98:5b:bc:d3:08:
03:a3:eb:e8:07:1e:1a:68:65:08:3a:66:c3:22:45:8d:92:b9:
d2:35:1d:5a:58:11:0c:a1:ca:ef:88:a2:5d:4c:68:06:fb:ac:
b3:d6:4c:9f:bc:14:c2:71:06:7c:95:7d:f8:a7:fc:e4:d0:05:
c8:cc:fa:39:52:f3:cc:39:23:65:7e:6e:63:06:d6:5c:7f:3f:
f7:a9:4b:b8:50:db:55:6f:bc:12:c1:fa:03:a8:ec:89:9e:53:
c2:5d:ef:90:7e:4b:ef:27:f1:53:b9:5b:2a:61:8d:90:48:b5:
7b:aa:e9:d3:3d:f3:50:3f:6a:0a:8d:b7:c5:5b:81:83:a1:ab:
7c:38:59:f0:ac:d4:55:2c:aa:a5:09:67:da:50:95:3f:9b:f4:
ce:d1:b5:91:8a:ca:82:d9:21:b2:36:5e:cb:b0:b8:d2:bb:b2:
81:9a:1b:15:0c:a4:85:52:43:ea:d0:1d:9e:0a:e6:fe:bd:43:
71:fb:3f:f9:62:86:a5:6f:d5:0c:92:f3:0a:1e:ce:9d:be:e5:
f7:06:5c:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 15:19:55 2025 by rpki-client