Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
File: GheAknBHDXwlZxEvtAqe9xJgBRY.mft (raw, json)
Hash identifier: u8BJMhGGlKSeMACvcx4ly5hGsk9a45GI+4slmuqIdpk=
Subject key identifier: 0D:52:04:9B:47:B7:98:63:CF:8A:A8:BE:2B:E0:CD:8E:07:A2:20:51
Authority key identifier: 1A:17:80:92:70:47:0D:7C:25:67:11:2F:B4:0A:9E:F7:12:60:05:16
Certificate issuer: /CN=1a17809270470d7c2567112fb40a9ef712600516
Certificate serial: 019750EAEA74261124B81414D6BB778C15E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
Manifest number: 1582
Signing time: Sun 08 Jun 2025 19:01:02 +0000
Manifest this update: Sun 08 Jun 2025 19:01:02 +0000
Manifest next update: Mon 09 Jun 2025 19:01:02 +0000
Files and hashes: 1: 3n_Nd4cUj6teASapK4pWavXgfU0.roa (hash: KngeXtbNNWR05hMf2WkynvKsVClU9oGlPMx0Mk7lMOM=)
2: GheAknBHDXwlZxEvtAqe9xJgBRY.crl (hash: C4Fu7dG00sLUjGouLIzWWNQlypuw2aLrKKFO5Jj74W0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 17:19:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:50:ea:ea:74:26:11:24:b8:14:14:d6:bb:77:8c:15:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a17809270470d7c2567112fb40a9ef712600516
Validity
Not Before: Jun 8 19:01:02 2025 GMT
Not After : Jun 9 19:01:02 2025 GMT
Subject: CN=0d52049b47b79863cf8aa8be2be0cd8e07a22051
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:6e:db:d6:9e:97:29:54:52:27:9b:fd:e4:77:
a0:43:2a:8f:fc:75:95:ca:0e:b5:0e:30:f9:3a:6f:
4f:81:00:53:de:8b:3f:1f:91:20:88:d5:28:ea:14:
f0:4b:88:ad:3c:55:4f:0d:be:18:f9:04:49:18:62:
3e:0e:79:f6:f0:09:a4:0d:e7:ab:24:ca:14:9c:20:
db:f7:a2:62:5a:19:32:08:0b:a3:df:19:2d:e5:3e:
8e:11:92:3e:e0:f2:88:cb:eb:02:de:4b:22:e5:81:
69:58:f5:44:c8:53:03:55:f8:cc:a1:6e:ef:ff:a7:
e9:2d:7a:ae:63:4b:00:34:64:d1:d5:4c:0d:c4:5c:
64:5e:73:46:a0:f5:07:d3:05:14:c4:f2:50:21:d3:
a4:2e:c1:3d:b9:0e:9a:a2:7f:6e:98:3f:c9:5a:4f:
06:c4:3a:c2:cd:26:04:57:12:23:8a:22:64:93:17:
c7:18:6e:c4:5f:8a:c7:94:b4:53:5c:a3:7b:60:4e:
23:9d:8c:54:74:53:0f:9a:59:90:e5:1a:93:42:c8:
3d:08:9b:e1:da:c8:de:8a:bc:db:1d:7b:9d:ee:47:
8f:55:c0:a0:f5:35:57:0e:92:79:46:c2:c9:57:45:
aa:67:0d:28:23:42:8a:eb:23:dd:a9:c7:9f:29:5b:
9b:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:52:04:9B:47:B7:98:63:CF:8A:A8:BE:2B:E0:CD:8E:07:A2:20:51
X509v3 Authority Key Identifier:
keyid:1A:17:80:92:70:47:0D:7C:25:67:11:2F:B4:0A:9E:F7:12:60:05:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GheAknBHDXwlZxEvtAqe9xJgBRY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/f47710-4a23-4bdc-9541-8afa74d8769f/1/GheAknBHDXwlZxEvtAqe9xJgBRY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:5b:7a:32:ac:17:20:e1:e7:eb:0f:76:42:03:6e:3d:3a:f3:
c4:a2:a5:fd:28:7f:e6:1b:cf:43:bc:60:d2:7c:42:ec:af:5d:
f9:f9:4b:b7:4f:f3:8c:ba:15:7f:36:f2:f6:1e:82:c3:88:df:
59:52:2a:19:ba:4c:11:42:d8:3e:51:61:0d:c9:e3:38:39:34:
8c:e6:15:97:80:b2:ae:8b:11:af:a5:04:b2:69:73:49:72:7c:
05:00:de:15:e8:7f:8c:a5:93:f7:45:35:77:fe:b7:3e:f7:15:
8f:b7:08:25:c6:1a:c5:c7:2f:6d:ae:ac:48:1b:d4:8c:96:95:
44:6a:51:e7:3c:65:b1:11:e4:69:a5:a4:89:ad:1e:87:e6:07:
37:bb:25:ed:95:74:68:14:60:19:81:15:cc:ee:51:0c:f7:e5:
fe:d9:e7:79:34:62:e0:0e:20:e9:f1:34:9e:d3:8e:14:90:56:
05:01:bc:b7:ce:e6:08:fe:d9:d3:c8:7d:e4:5f:4e:ec:53:91:
11:a3:1f:34:3b:b1:92:ed:c2:b9:c4:d1:da:7e:61:c1:aa:6e:
0b:18:b8:db:3b:8e:d8:cb:17:74:56:88:19:b0:28:cc:8f:d4:
af:c9:8f:b6:86:13:73:5b:1d:c6:82:a4:66:2e:15:d0:b5:84:
e6:1c:8e:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:25:42 2025 by rpki-client