Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
File: GtYaUvEILs9Ml7USK0YRIlBzRRs.mft (raw, json)
Hash identifier: h7slMhh3fwrSzZ6QH5I1XGbewE3Ejh2ZM6sqBgcSeWU=
Subject key identifier: 59:DD:C3:44:1E:2D:51:D5:E0:A0:1C:F2:14:0D:DE:12:C6:5E:8F:FD
Authority key identifier: 1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
Certificate issuer: /CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Certificate serial: 01975121E52D7D53BADF536BDCEE8B8A9201
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
Manifest number: 1580
Signing time: Sun 08 Jun 2025 20:01:05 +0000
Manifest this update: Sun 08 Jun 2025 20:01:05 +0000
Manifest next update: Mon 09 Jun 2025 20:01:05 +0000
Files and hashes: 1: GtYaUvEILs9Ml7USK0YRIlBzRRs.crl (hash: 6wtOOIrcqwbSWiWYRFVANYXdg6351nplp+1OsRbCOVU=)
2: rDCQZOSrxJZ5t1EHBcAmewJ2zuE.roa (hash: 5o5LCz2EfBpIGStnQttGujPIzxdxxRQF2IZp5UipRj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:51:21:e5:2d:7d:53:ba:df:53:6b:dc:ee:8b:8a:92:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Validity
Not Before: Jun 8 20:01:05 2025 GMT
Not After : Jun 9 20:01:05 2025 GMT
Subject: CN=59ddc3441e2d51d5e0a01cf2140dde12c65e8ffd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:d4:4f:82:88:46:73:ff:9a:9f:be:3e:42:4b:
fd:90:1c:7f:3a:16:1b:c3:ed:ae:72:26:b1:cc:b7:
bf:f6:62:70:e8:e8:4a:6e:74:c3:f5:29:64:c4:2c:
b7:38:97:d7:68:c8:b8:44:dd:98:55:4a:04:06:5d:
f1:bc:1e:9b:6c:01:62:d6:13:bb:83:4e:7a:83:77:
00:40:91:70:94:1d:a1:88:86:7d:bb:9c:04:0b:22:
2f:30:91:ca:54:6c:da:0f:e8:0a:03:e9:8c:12:63:
67:1c:52:e8:7a:c8:0d:4d:69:75:8b:22:a3:ca:85:
8a:f9:47:31:78:15:87:1f:86:ae:a2:1a:3b:c9:c7:
be:44:54:43:87:28:42:a3:ab:c9:0e:0e:29:19:d0:
3d:f9:5b:22:e6:20:58:d0:ba:df:27:da:e4:09:e7:
b6:58:a4:c7:1a:3a:55:ed:8f:4d:32:3b:51:bc:c6:
5f:df:d1:de:f9:2b:98:2a:32:a2:b3:2c:b4:cc:42:
2f:f5:1a:78:6e:35:4d:9f:28:b9:ca:29:2d:08:7a:
a7:57:1e:8e:47:37:30:60:89:a0:b1:37:8b:fc:1b:
a8:3e:d0:49:e8:82:e3:a5:b2:4d:09:4d:a4:84:4c:
24:ba:8b:63:ff:8b:d4:23:ae:15:f6:eb:02:ce:03:
ea:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:DD:C3:44:1E:2D:51:D5:E0:A0:1C:F2:14:0D:DE:12:C6:5E:8F:FD
X509v3 Authority Key Identifier:
keyid:1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:27:af:86:52:17:92:3c:5d:ac:5a:0c:41:e2:82:25:b3:e7:
13:a5:01:31:8b:d4:5b:40:13:40:49:54:f0:06:dc:cf:a4:7a:
53:da:a8:a6:6d:a2:02:46:a7:0b:7b:da:bc:00:d4:84:39:e6:
8a:9c:bf:58:af:34:c7:b8:9c:1a:02:fb:83:54:6d:36:be:97:
5b:24:6b:cb:35:7a:96:7b:f4:fd:45:45:bf:5f:8e:e0:a8:3c:
85:c0:7e:ee:6f:0d:96:18:ab:94:dd:4c:42:77:e9:04:cf:38:
3c:7d:99:18:7b:58:29:32:43:ab:84:d3:73:9d:5c:33:dc:7d:
83:f3:ed:5a:fe:14:8d:a1:1d:c5:fb:62:fa:b0:61:45:a5:e6:
23:8f:81:f8:a7:87:c6:45:76:24:5f:3e:a1:38:d9:af:99:c2:
7f:db:79:d9:98:46:6e:94:76:98:f5:60:c3:9f:c2:a2:bc:07:
e0:12:83:23:36:20:54:ec:42:cc:a4:59:56:0c:2a:5b:90:5d:
1c:3d:07:3a:11:57:67:b6:0b:34:c4:f9:47:c3:1e:1f:08:68:
3f:07:ea:43:7a:cc:87:a5:dd:24:09:bf:19:e0:10:1e:ff:fb:
5d:8f:54:2a:79:7f:86:0b:4b:3d:24:85:be:86:55:04:49:6d:
8c:7b:89:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:33:53 2025 by rpki-client