Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
File: g-k154ofll0QiRUhXQ8Et2tzPlg.mft (raw, json)
Hash identifier: UsI2QMMXxUh8GEV9nQMmZLjOXn4PCTaku5SbQ6FIeMY=
Subject key identifier: A3:7C:07:96:17:95:F8:9B:3E:A3:BA:46:65:92:79:65:B0:3A:A2:F0
Authority key identifier: 83:E9:35:E7:8A:1F:96:5D:10:89:15:21:5D:0F:04:B7:6B:73:3E:58
Certificate issuer: /CN=83e935e78a1f965d108915215d0f04b76b733e58
Certificate serial: 01974C6955DD72D4C7F2A286F13E5457BE24
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
Manifest number: 157C
Signing time: Sat 07 Jun 2025 22:01:00 +0000
Manifest this update: Sat 07 Jun 2025 22:01:00 +0000
Manifest next update: Sun 08 Jun 2025 22:01:00 +0000
Files and hashes: 1: g-k154ofll0QiRUhXQ8Et2tzPlg.crl (hash: x5n6R+e//Wc/1kclZy5319d0eV9CyphAhmDPaZGpl5I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 22:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:69:55:dd:72:d4:c7:f2:a2:86:f1:3e:54:57:be:24
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e935e78a1f965d108915215d0f04b76b733e58
Validity
Not Before: Jun 7 22:01:00 2025 GMT
Not After : Jun 8 22:01:00 2025 GMT
Subject: CN=a37c07961795f89b3ea3ba4665927965b03aa2f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:c1:d2:ca:fe:c4:a3:db:3c:02:b0:86:13:79:
47:51:20:4b:7b:a3:9c:84:f1:4e:7a:86:ef:a7:68:
90:4e:b9:a7:95:0f:ac:d9:e8:1b:82:fa:3b:2a:a3:
12:e9:fd:8b:c2:ad:65:e2:88:09:c4:06:3c:68:89:
65:2e:87:35:8e:41:dc:e9:7c:2b:59:31:ec:42:75:
5a:49:43:70:3b:e9:69:98:74:ff:65:41:03:e7:2e:
74:e0:3b:13:7c:e7:23:11:4c:56:20:08:c2:74:5b:
05:5a:90:32:00:99:d6:89:a9:50:41:3e:9d:47:b3:
1f:03:e4:d6:09:62:e3:f8:3b:ed:f9:82:50:60:70:
c2:88:d2:97:3e:d7:21:80:d3:b4:2c:9e:af:6d:09:
ee:37:93:76:38:e3:4a:a7:0a:b8:d4:f5:23:3f:7a:
a6:4e:b3:f9:65:85:37:27:12:5e:95:91:a1:bb:ee:
13:1c:d2:94:29:34:1d:ee:32:b0:92:58:d5:8d:47:
0b:5f:e8:10:b2:14:08:1c:7c:25:8e:1e:ac:1d:f4:
8b:a8:51:50:c3:b2:e7:cb:ab:62:44:a5:55:98:66:
6d:4e:f1:b4:f6:ed:5a:fe:59:70:8a:15:bf:b5:49:
10:0a:17:ce:ba:93:f2:9a:eb:b3:bd:71:31:aa:d7:
9c:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:7C:07:96:17:95:F8:9B:3E:A3:BA:46:65:92:79:65:B0:3A:A2:F0
X509v3 Authority Key Identifier:
keyid:83:E9:35:E7:8A:1F:96:5D:10:89:15:21:5D:0F:04:B7:6B:73:3E:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:0c:a0:95:4b:ca:c4:84:fd:c1:0c:5f:8b:ff:2a:ed:a4:15:
77:ba:99:a8:f9:01:c2:d2:1e:e6:a1:51:36:a1:73:e3:09:5a:
33:61:9a:bf:1a:13:d7:eb:40:06:47:93:16:3e:26:2e:97:ff:
94:ba:24:8a:b6:79:fe:4e:45:7f:0d:10:73:a9:57:6e:79:79:
ce:e2:06:3d:21:0a:ac:a5:b2:58:f5:4b:63:2f:0a:5f:8c:83:
fc:6b:59:67:d4:99:13:67:59:9b:fc:bd:19:a6:0e:b3:11:dc:
bb:4f:07:06:e3:6a:94:7d:7d:8f:95:d8:69:74:b4:7f:a7:7f:
bd:64:c1:ad:b9:2b:59:ce:00:0e:9e:1a:64:50:63:79:f8:d5:
5b:e2:be:5a:98:c6:c4:bf:46:53:f7:2e:5b:4f:0f:b7:d3:ed:
1e:e2:d3:1c:76:73:c9:48:30:83:2c:88:dc:b8:4e:80:12:d2:
1c:e5:a3:a0:63:df:c2:a2:b2:d2:3e:25:e6:d4:59:65:05:45:
34:a2:1a:54:b9:23:2a:ad:e9:69:c8:1b:c0:a0:b9:a1:73:19:
0a:09:7c:bf:99:2e:c4:07:43:1a:d7:5c:a8:8c:04:01:cc:80:
dd:8f:1f:b1:db:04:ac:bd:50:66:96:97:62:ad:1c:90:2c:e8:
8e:3b:76:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 07:32:44 2025 by rpki-client