Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: O1nzgMUZIcUDyPYBIekIDxMHh5Gyg6clRfibfNE2yU4=
Subject key identifier: A8:86:82:BB:3B:CC:B4:17:82:72:FF:15:6D:7E:F7:9C:FA:9C:80:53
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 0197B6A173EAA953EB381863C4549DEABF2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 1548
Signing time: Sat 28 Jun 2025 13:02:03 +0000
Manifest this update: Sat 28 Jun 2025 13:02:03 +0000
Manifest next update: Sun 29 Jun 2025 13:02:03 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: 8lMelD0raOcc8ld0B6eI3zs5Ouk9Ai5vYFK3xEPdFRM=)
2: pucl_qoNJsFNHYReBDscEGdx2N0.roa (hash: SiJfUuqs3fjKSI6Mo6WtKDUOtA0gOnKfbqvupwDeWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:73:ea:a9:53:eb:38:18:63:c4:54:9d:ea:bf:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Jun 28 13:02:03 2025 GMT
Not After : Jun 29 13:02:03 2025 GMT
Subject: CN=a88682bb3bccb4178272ff156d7ef79cfa9c8053
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:9e:4c:bb:c5:c4:ac:d7:5a:d9:8b:a2:8c:25:
b5:c9:a4:a0:ca:0a:24:6d:d8:01:97:8e:fe:86:25:
d0:ac:48:13:b9:2e:fb:58:b4:a6:03:93:e6:94:b3:
6d:2c:03:94:3c:ce:5d:5c:50:cd:0b:9d:d0:e6:db:
e6:2d:b7:e1:1f:72:e6:19:04:92:4c:dd:ab:4d:e1:
6a:c3:7b:c1:6b:f5:c5:44:ad:1c:2f:c7:36:09:02:
4c:a4:4a:71:cf:2e:40:6a:1a:83:1e:da:bd:e7:0c:
d8:1b:85:4c:3d:a6:4e:1c:c6:8e:26:11:4e:9a:51:
25:2d:19:f2:fa:3a:33:61:6a:e9:7c:16:d0:01:df:
65:a7:8a:54:78:13:13:44:04:72:6b:f0:ab:5d:cf:
3f:ab:71:35:8e:70:d4:4c:37:60:88:6f:81:ed:64:
71:35:ce:a4:ab:55:f1:cf:37:b0:f3:81:08:5b:e2:
a2:80:29:f4:6d:2b:6c:86:8a:f8:46:70:88:7c:bf:
42:74:34:c2:d5:68:6a:74:03:19:96:91:83:7c:73:
e6:98:7e:32:00:9a:ba:d7:68:6f:ff:bb:2e:a4:38:
82:c9:c3:de:54:a7:6b:0d:75:36:04:d7:ee:a7:6d:
8b:15:f6:94:83:16:ac:72:91:42:fb:c0:28:64:33:
04:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:86:82:BB:3B:CC:B4:17:82:72:FF:15:6D:7E:F7:9C:FA:9C:80:53
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:f2:23:8e:a8:a7:b1:7f:6e:98:19:ac:79:70:00:1d:92:3e:
07:df:ed:3b:5e:e6:ce:6e:4e:e9:9c:95:20:60:d2:5f:5b:3d:
f3:98:a5:9e:44:c3:59:3e:e4:d7:04:14:f5:34:22:b4:e8:b3:
8c:88:42:0e:3c:4a:90:ec:3e:c4:fc:20:d4:e0:1c:a0:53:92:
29:55:04:22:52:75:f8:23:2a:af:10:74:3c:26:da:48:68:fd:
25:a1:14:45:04:87:e4:92:77:7e:ac:aa:2b:f1:c9:48:7c:70:
36:ce:fc:e9:3c:d8:b6:f0:12:4f:b5:15:98:e2:04:5c:42:a5:
9c:1f:3b:95:f3:fb:c3:96:e1:aa:3d:0b:e3:b5:cf:60:87:0b:
32:05:34:df:08:c4:2c:db:47:63:04:a8:01:f6:0c:0d:c3:a2:
c0:bd:43:db:d2:d3:e1:55:c8:c2:79:54:75:9b:0a:71:58:cd:
99:01:c0:b6:43:35:9f:0a:4d:6d:3c:54:38:62:49:6d:3f:bd:
0f:2b:61:58:c1:0f:9d:92:f9:68:66:80:55:d2:e3:7f:a8:90:
e4:af:94:37:14:d3:e6:5b:15:8f:7a:db:37:bc:f9:f3:73:1f:
8d:eb:1a:3e:ae:cc:74:bd:08:29:a3:52:6e:d7:67:4f:c3:de:
75:71:97:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:13:46 2025 by rpki-client