Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft
File: G7Qd9-pn1O3-D60S99XOzYPhjZo.mft (raw, json)
Hash identifier: 2j2Lcr0YOp8PW2mCblTvNrYHPiwuuMX3bSwZU6a2Qw8=
Subject key identifier: 48:A3:39:8A:B2:C3:F7:10:B1:9D:8B:D8:4E:AF:E1:23:64:2E:6F:50
Authority key identifier: 1B:B4:1D:F7:EA:67:D4:ED:FE:0F:AD:12:F7:D5:CE:CD:83:E1:8D:9A
Certificate issuer: /CN=1bb41df7ea67d4edfe0fad12f7d5cecd83e18d9a
Certificate serial: 0197B6D7A3572CDA61CC6F01837B0CE7C25C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G7Qd9-pn1O3-D60S99XOzYPhjZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft
Manifest number: 0392
Signing time: Sat 28 Jun 2025 14:01:14 +0000
Manifest this update: Sat 28 Jun 2025 14:01:14 +0000
Manifest next update: Sun 29 Jun 2025 14:01:14 +0000
Files and hashes: 1: G7Qd9-pn1O3-D60S99XOzYPhjZo.crl (hash: 2ZkHOmKWGbrI+GN6vzAlp/iOSvOa6Dgw8FaThMd1kO0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/G7Qd9-pn1O3-D60S99XOzYPhjZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 14:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:d7:a3:57:2c:da:61:cc:6f:01:83:7b:0c:e7:c2:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bb41df7ea67d4edfe0fad12f7d5cecd83e18d9a
Validity
Not Before: Jun 28 14:01:14 2025 GMT
Not After : Jun 29 14:01:14 2025 GMT
Subject: CN=48a3398ab2c3f710b19d8bd84eafe123642e6f50
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:96:cb:8f:c8:7a:cf:cb:b2:fb:c8:2c:ed:3c:
ee:4d:21:f9:44:e9:31:8a:ee:40:18:ec:17:c4:8e:
aa:8b:49:af:72:d6:9c:36:b2:52:4c:b5:6c:13:29:
e8:eb:27:ba:db:6e:bb:7d:dd:d9:e0:ba:85:e5:57:
44:4b:cb:b4:1b:bf:5d:6a:79:fc:f0:5a:03:9f:5a:
e7:48:5c:c9:b4:fd:a8:58:96:2f:c9:ba:6a:fe:4f:
88:e1:af:e2:c7:b3:ab:24:86:eb:2f:b0:a0:31:4f:
ff:12:e5:6a:6c:18:b2:1c:b8:da:c8:10:9f:2f:d2:
5c:9e:0b:05:6e:44:9e:d7:ca:52:9a:b3:00:26:0f:
2e:f6:6c:7d:21:1f:92:02:06:9c:ba:24:48:ec:a3:
c2:29:bc:1e:e3:5d:2c:0b:cd:08:ac:7f:23:13:bc:
1d:05:e9:7e:73:77:d4:4c:9b:d7:f8:a8:51:59:0c:
61:e6:21:a4:b6:f8:32:24:8a:0c:e9:be:58:66:85:
10:c4:ce:09:57:07:de:22:b2:35:4d:92:8e:76:73:
1d:2e:fb:a3:b2:45:ba:eb:24:45:6d:52:f8:5f:71:
86:e6:93:2e:6e:15:34:18:7c:98:71:ce:b9:26:af:
fc:d0:c1:71:67:ee:0d:32:fa:8f:06:0d:bd:e3:02:
b2:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:A3:39:8A:B2:C3:F7:10:B1:9D:8B:D8:4E:AF:E1:23:64:2E:6F:50
X509v3 Authority Key Identifier:
keyid:1B:B4:1D:F7:EA:67:D4:ED:FE:0F:AD:12:F7:D5:CE:CD:83:E1:8D:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G7Qd9-pn1O3-D60S99XOzYPhjZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/459396-de90-4cc8-a542-3e6e7cdef73e/1/G7Qd9-pn1O3-D60S99XOzYPhjZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:ce:87:79:0b:9f:8c:c6:26:cb:4a:cb:38:de:21:bd:58:da:
84:f4:83:0f:1a:8b:34:a7:39:af:a5:c8:df:bf:e5:84:d3:c6:
65:b3:11:16:90:a3:50:e8:66:27:8f:c5:23:b9:eb:84:f5:6c:
bf:fe:f2:79:b4:d6:62:ad:38:6c:b7:aa:2e:16:39:df:99:97:
99:01:9e:77:1f:0f:18:47:b2:35:ca:eb:84:24:aa:6d:54:0a:
aa:7e:eb:14:07:e9:ef:50:8a:57:f6:ad:6d:8f:46:54:c8:22:
db:0b:75:06:09:9a:0a:4f:f5:b1:9f:f2:56:5b:09:df:43:aa:
e6:4e:cf:0c:97:9a:a0:52:e5:15:d8:66:48:ae:4d:95:57:77:
4f:28:78:61:d1:75:77:79:e1:cd:b3:79:0a:b1:1d:25:76:0a:
e2:8d:36:aa:76:d0:4d:a6:f0:17:37:e3:3c:50:da:47:10:3a:
7e:0b:bd:09:b6:f2:92:39:9b:09:a6:3e:98:3d:38:db:9a:3c:
aa:80:64:79:33:d3:22:95:d2:be:ca:92:9c:24:f0:c9:a2:da:
47:eb:89:5c:5b:32:0b:a8:85:0f:5d:25:a6:33:fa:e9:bc:0c:
5d:0e:e9:eb:cd:df:05:b1:cb:b6:95:a8:c9:1a:63:a3:09:0e:
bd:12:50:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 23:02:45 2025 by rpki-client