Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
File: gh9un_H7vyH2QToTfnNn3YqMA1w.mft (raw, json)
Hash identifier: fNLJNWitFVJM+35gDyE5qdQ09qbNgbJ+do/gnOAc+00=
Subject key identifier: 74:F2:0B:45:4F:06:42:05:86:C4:47:3E:E7:C2:AD:33:46:23:1F:65
Authority key identifier: 82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C
Certificate issuer: /CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c
Certificate serial: 01974FD7D192CB0060D1E6C08EDA685B99E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
Manifest number: 0DC2
Signing time: Sun 08 Jun 2025 14:00:33 +0000
Manifest this update: Sun 08 Jun 2025 14:00:33 +0000
Manifest next update: Mon 09 Jun 2025 14:00:33 +0000
Files and hashes: 1: LGI_BMqz48rF1CAQFBrnzf381U0.roa (hash: eJvU6iSIuiB2ZVQ2ar/OXbcHw5p8L+QuWzmrOM6M7qg=)
2: gh9un_H7vyH2QToTfnNn3YqMA1w.crl (hash: qwaA0W940ChPnnDp2vKhv27Ca2OY9QcS1Lzv0j1O1So=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 09 Jun 2025 14:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4f:d7:d1:92:cb:00:60:d1:e6:c0:8e:da:68:5b:99:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c
Validity
Not Before: Jun 8 14:00:33 2025 GMT
Not After : Jun 9 14:00:33 2025 GMT
Subject: CN=74f20b454f06420586c4473ee7c2ad3346231f65
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:46:a8:92:98:3c:b4:b2:01:7a:d4:5c:80:db:
75:77:9a:0d:54:f6:ca:67:ee:59:4b:4f:90:58:12:
4f:de:93:e7:b7:ac:f5:65:43:61:68:07:7e:2e:d6:
88:c1:3a:1d:e8:89:61:06:97:82:8f:a2:a3:0f:1e:
1b:2b:53:59:56:82:bf:2c:bb:40:01:f3:3f:31:aa:
cb:6b:c3:b3:83:2d:2f:14:62:30:46:db:ef:f8:81:
da:3f:dd:37:0a:5f:cb:d9:07:2a:6c:5b:c1:03:e6:
82:af:4b:1e:95:23:a1:39:13:c3:a1:26:5a:71:61:
c8:d2:91:8a:19:af:3c:92:56:7e:74:0a:50:08:87:
99:11:2d:d7:76:65:01:6d:4e:4e:eb:48:12:29:8b:
32:a7:33:0b:dd:cc:67:bf:ba:8c:db:4d:91:da:78:
eb:9a:12:3f:ef:84:da:dd:55:3a:21:ad:0d:d0:49:
b2:6c:e5:8c:48:46:32:d3:b0:2b:fc:e0:63:83:b9:
0b:3b:e2:52:54:46:16:38:32:6b:98:f8:ea:4e:f1:
00:cd:7d:c3:ed:ae:c1:bb:76:e8:58:bc:ff:d2:2d:
59:3f:44:e2:86:25:9c:5c:a0:9d:0d:52:2d:c9:b7:
13:3b:ff:b8:17:ad:07:a0:ab:ce:ca:ea:8a:01:e7:
07:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:F2:0B:45:4F:06:42:05:86:C4:47:3E:E7:C2:AD:33:46:23:1F:65
X509v3 Authority Key Identifier:
keyid:82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:33:10:59:5b:ab:b5:b7:68:f0:c9:f7:42:09:94:0f:28:07:
13:75:6c:9f:65:c0:c8:a4:cb:8d:e0:5c:ba:31:66:e0:22:f1:
2a:20:2e:ef:e6:3a:80:61:fb:82:80:a3:7a:4c:20:69:e1:f7:
aa:85:7b:a1:9b:3c:58:16:6f:5a:27:a9:83:21:7b:6e:d5:80:
19:77:b1:de:fe:93:4c:11:4a:8c:e1:11:31:57:2c:2c:da:76:
a0:1a:a5:70:1f:83:b8:51:63:a4:15:4a:f6:70:f5:dc:4a:ea:
d4:22:c0:7d:06:76:99:e6:e4:08:09:fb:b0:dd:7d:36:bc:f6:
68:39:0f:84:18:ac:eb:f4:ad:29:19:57:52:3d:bc:4e:dd:84:
30:55:f8:d5:36:93:7f:dc:28:9f:44:b5:5b:ab:77:23:32:33:
40:1e:aa:f9:be:f7:ab:de:0c:66:c7:8b:fb:13:d8:e2:c7:37:
fb:90:26:db:d4:ef:10:a3:ea:21:6a:6e:69:d3:bc:b0:74:a8:
e2:be:f6:24:b4:95:c4:b0:8c:8d:0c:67:9b:23:e8:97:b9:bb:
a1:02:38:8c:b4:3c:d3:5b:75:88:b7:3a:65:e4:36:53:ba:e1:
71:33:85:77:8b:1d:c3:f6:d1:23:c7:d0:2b:67:61:3d:94:f2:
d9:98:c7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 23:08:10 2025 by rpki-client