Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
File: grLg0A3Xcank1gu_S-UhFOp32wM.mft (raw, json)
Hash identifier: kouIcwz0Wiv685W46zFfVQx2pnuk9tTvxIUqSMKfu6c=
Subject key identifier: 8B:D4:E8:EE:39:08:69:B4:5F:14:73:20:8C:F6:25:A8:5C:0C:29:08
Authority key identifier: 82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03
Certificate issuer: /CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03
Certificate serial: 019748FA96D7D58912E557B0CB2516CFAAE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
Manifest number: 0AF0
Signing time: Sat 07 Jun 2025 06:01:11 +0000
Manifest this update: Sat 07 Jun 2025 06:01:11 +0000
Manifest next update: Sun 08 Jun 2025 06:01:11 +0000
Files and hashes: 1: 1CyzKTSUGqvx3OyUAGR3OATmKOg.roa (hash: rilnowcGuwus1/WRGp84aFZique0Bvm+3PulbRJ3ebM=)
2: grLg0A3Xcank1gu_S-UhFOp32wM.crl (hash: d+SA9v2CLdueX3a695YttShjKFC7g/cG0c6Wx5PsEyo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 06:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:48:fa:96:d7:d5:89:12:e5:57:b0:cb:25:16:cf:aa:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03
Validity
Not Before: Jun 7 06:01:11 2025 GMT
Not After : Jun 8 06:01:11 2025 GMT
Subject: CN=8bd4e8ee390869b45f1473208cf625a85c0c2908
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:76:52:8c:60:ea:ac:ec:6a:7d:57:c5:2e:ba:
ff:dd:50:e2:3f:9a:e2:ce:be:24:45:44:8a:30:9a:
40:ad:37:c1:f3:dd:36:27:4d:f7:65:09:2d:95:20:
8e:f8:d4:fb:15:f3:c5:c3:1f:de:69:64:0f:44:51:
1d:89:34:4b:48:7f:38:b1:ff:02:22:37:1a:f2:e8:
8e:90:54:a8:9f:3f:09:60:42:7d:03:48:f3:18:5b:
83:b4:0d:62:3d:18:fb:b7:b6:6e:e8:0f:0b:8d:b6:
6e:22:8a:7a:e0:33:c8:47:28:96:dd:64:19:66:99:
f6:a7:96:c7:fc:44:fa:4a:25:92:a3:96:08:73:2c:
d8:00:55:bd:a2:de:0f:cc:e3:71:14:bf:30:42:49:
c1:bf:b2:e1:fd:17:2f:47:36:40:79:a2:b8:49:4b:
6c:22:75:03:86:2f:5f:fa:ab:3c:54:cb:d6:d6:87:
07:50:c1:b5:51:b9:12:f6:22:54:c8:25:1e:3a:e2:
64:74:e5:93:dc:b2:b4:2c:0b:d6:e5:d4:f1:0f:87:
ba:01:58:fa:3e:50:af:bb:c2:aa:ef:bd:7c:0b:3f:
11:11:67:f3:a0:66:53:0f:96:d8:bc:ae:90:8f:a1:
26:23:08:3e:bc:1d:8e:51:a8:63:77:0c:0a:aa:46:
7b:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:D4:E8:EE:39:08:69:B4:5F:14:73:20:8C:F6:25:A8:5C:0C:29:08
X509v3 Authority Key Identifier:
keyid:82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:4d:a1:80:2c:9a:68:92:a6:6b:22:8c:e4:e6:42:e7:bb:51:
48:31:87:74:8d:7e:d5:e6:c2:c5:47:0e:18:88:c7:ec:97:3c:
e9:6c:b6:2a:04:a7:12:d7:d7:58:e5:47:e8:36:eb:9e:3c:a0:
21:23:30:be:50:59:26:82:c6:e1:98:9e:b0:fc:03:67:0d:de:
05:a0:38:bd:18:1b:e7:04:8c:25:df:e2:9e:20:eb:0b:2e:a6:
b7:cb:38:65:5c:b7:34:57:6a:0b:0d:81:bb:10:f6:7f:d8:91:
14:da:d9:4d:7b:61:71:b3:67:46:6a:68:88:bf:77:82:24:9e:
1d:70:5c:1e:87:d7:82:0b:cc:3f:38:78:24:e3:57:72:ea:fb:
e5:e4:66:e6:10:dd:84:7b:02:e8:39:83:16:8b:61:65:55:4c:
4e:ad:b3:83:41:bd:c7:03:87:53:2c:a7:c6:b0:8e:9f:8f:e1:
89:71:6a:df:df:0d:55:70:81:3c:87:19:8b:4d:f2:e4:b0:d7:
6a:06:52:90:60:d2:69:ed:ee:0e:0c:5c:92:78:0e:57:d1:78:
e6:14:17:25:39:2c:c8:61:ea:f4:2e:c7:aa:a8:1b:3a:8c:bc:
ea:f5:08:19:24:c2:f0:81:fa:24:1d:31:67:74:06:97:ee:d1:
9c:76:cb:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 14:05:36 2025 by rpki-client