Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
File: GQAdVXoGmNrXfEs-3fKn02tyqwA.mft (raw, json)
Hash identifier: NHRY+h3rvXmh3+BftnZGWjTFG0m06YXkkhN9CLI2+/U=
Subject key identifier: 34:23:CF:35:7B:80:30:4C:2E:2A:80:13:0C:3B:31:4C:C6:F7:39:E7
Authority key identifier: 19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
Certificate issuer: /CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Certificate serial: 019750B35851C2CB5472C9FC90536825CEDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
Manifest number: 04C0
Signing time: Sun 08 Jun 2025 18:00:20 +0000
Manifest this update: Sun 08 Jun 2025 18:00:20 +0000
Manifest next update: Mon 09 Jun 2025 18:00:20 +0000
Files and hashes: 1: GQAdVXoGmNrXfEs-3fKn02tyqwA.crl (hash: ftlK8a83cmkmxgMZvggCSrf96/zu3Fa2f5aKLFxfVCo=)
2: _Y3WU0rL_Z5yMospeFK2kheOtgM.roa (hash: qqDo+PPhN0qvkLG+7KSZ3FS8hY7kC2hitlOvSMnc4pQ=)
3: cqleo2TkA-Dax9YzlbPC4oCeXks.roa (hash: WDLbfAf8uLhRV57uZSklRDXJ7tKTUOclgtS0od1R4M4=)
4: spoNsBquI5wjgn7gu8viZ3BO3l4.roa (hash: G+9zvvKyQogrHpfux1dzt3BVRrnfOK8LLcMasK0KKtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:b3:58:51:c2:cb:54:72:c9:fc:90:53:68:25:ce:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Validity
Not Before: Jun 8 18:00:20 2025 GMT
Not After : Jun 9 18:00:20 2025 GMT
Subject: CN=3423cf357b80304c2e2a80130c3b314cc6f739e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:77:f4:5f:0e:6e:4f:8b:6f:21:59:94:fd:78:
3f:88:e3:aa:af:4b:c0:d8:68:d1:b0:c0:51:7a:2e:
2f:ba:05:0a:fb:bf:8a:12:8e:9e:68:0f:97:2a:3b:
1a:42:33:d5:43:58:0d:68:00:35:68:d8:cd:f4:cb:
d7:8b:20:33:e6:5f:7a:1d:be:2e:f0:b6:ad:a5:71:
e8:96:52:90:54:fb:a8:67:4e:6a:71:9e:f1:9e:43:
32:b4:ac:be:54:8d:23:86:3c:d4:4d:c1:35:9d:dc:
f6:cb:62:52:60:7a:37:70:1d:96:e2:55:40:52:85:
97:db:32:7b:9d:d2:5e:f3:bf:f2:79:65:cb:61:bc:
8d:79:24:ac:6b:f5:d5:20:b0:1c:61:38:ee:39:2e:
39:f7:7c:09:5d:c3:9e:36:97:63:cb:8d:94:35:25:
4d:2c:5d:86:9b:f8:15:06:19:fb:88:0d:60:32:23:
e2:09:ac:af:1d:8c:90:b8:5c:c9:9d:4f:98:c6:e7:
e1:33:a0:29:26:34:1f:f3:4a:43:8f:47:a0:3b:fc:
ca:cf:2e:fd:88:be:e0:4a:e7:21:d7:59:85:bf:ae:
89:7d:2d:0d:83:a1:59:3d:6d:0c:c0:37:5b:e9:05:
50:9f:fd:5f:ba:56:94:fa:b0:e8:77:52:bf:8a:6e:
38:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:23:CF:35:7B:80:30:4C:2E:2A:80:13:0C:3B:31:4C:C6:F7:39:E7
X509v3 Authority Key Identifier:
keyid:19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
97:03:76:11:a7:da:bb:17:36:ea:ee:33:9a:d3:3c:b2:43:34:
95:49:9a:42:3f:4e:3b:5e:70:0d:ae:f1:cc:ca:86:8c:7a:cc:
b4:f5:53:2b:73:af:d9:29:a3:2d:84:4a:eb:89:e9:59:ab:77:
27:2d:02:a1:ed:b2:86:f8:19:90:b3:bc:d1:2d:7a:50:19:2c:
c6:b1:15:ff:39:a3:00:89:72:f6:ab:8e:a1:9f:7d:8e:b5:a1:
85:b1:ea:72:50:04:c2:0f:ff:6a:ce:9d:29:d8:77:6e:4d:19:
29:8e:3b:21:9e:27:3e:fe:61:fe:8a:74:bd:e0:ae:ac:04:df:
9f:d0:bd:3b:d3:02:a4:3b:b3:88:b9:52:83:b0:58:8b:ac:c6:
84:61:14:12:bf:ef:8a:84:a2:3a:0d:7f:93:03:37:63:3c:13:
55:fd:b0:e1:4a:a7:0c:d0:75:c3:78:13:7a:c4:f5:68:85:1f:
8c:1e:6a:e4:f8:4c:fa:d1:b6:f9:36:4c:4f:86:fa:15:60:b2:
bf:c9:03:72:e0:ea:6e:f2:ee:ff:58:3d:6a:c2:75:66:66:42:
89:89:ee:4c:dc:02:a0:5e:a1:26:bc:bc:bf:e8:d3:34:be:e0:
cd:b7:6b:68:67:03:48:81:f6:69:1a:9f:40:8f:06:dd:0a:f2:
21:1e:fa:3c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:16:29 2025 by rpki-client