Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
File: gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft (raw, json)
Hash identifier: BVZOTAnjSIPC91l2l8bGTogVV7sONm7HXrBBD6gh9M8=
Subject key identifier: A4:F2:FE:FB:68:6C:F5:92:ED:6C:A6:0C:15:C4:E2:28:34:26:B5:95
Authority key identifier: 81:A3:6C:67:E9:A2:35:39:C8:15:3A:98:34:EF:83:E5:C1:8E:6B:72
Certificate issuer: /CN=81a36c67e9a23539c8153a9834ef83e5c18e6b72
Certificate serial: 0197B74546E5BD954D2EEE388177F10E5126
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaNsZ-miNTnIFTqYNO-D5cGOa3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
Manifest number: 03FC
Signing time: Sat 28 Jun 2025 16:01:00 +0000
Manifest this update: Sat 28 Jun 2025 16:01:00 +0000
Manifest next update: Sun 29 Jun 2025 16:01:00 +0000
Files and hashes: 1: gaNsZ-miNTnIFTqYNO-D5cGOa3I.crl (hash: R9eI4bfc3F8e1ZBURW3AlonNuSB+ctRbLCupveJmSdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaNsZ-miNTnIFTqYNO-D5cGOa3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:46:e5:bd:95:4d:2e:ee:38:81:77:f1:0e:51:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a36c67e9a23539c8153a9834ef83e5c18e6b72
Validity
Not Before: Jun 28 16:01:00 2025 GMT
Not After : Jun 29 16:01:00 2025 GMT
Subject: CN=a4f2fefb686cf592ed6ca60c15c4e2283426b595
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:78:21:35:8a:2a:65:05:66:ac:a1:a4:04:74:
36:51:8f:72:a5:21:d7:9f:7b:1f:49:1c:bf:28:33:
56:39:7c:2b:18:80:45:18:13:3a:cd:9f:db:9b:cb:
fe:52:0e:97:38:ce:f3:c2:8e:83:51:59:be:55:ed:
e6:ef:2e:b9:8d:0b:77:a1:32:e7:b8:5f:d4:cf:86:
15:9c:11:24:12:3c:9e:27:b5:a5:6a:72:80:4d:7d:
40:48:d6:27:78:35:8d:5f:a8:bd:9d:1a:f5:b6:d9:
ab:6a:83:06:d5:72:b7:9d:21:e2:1f:cc:60:69:8b:
11:d1:72:bb:ed:28:91:14:37:9f:c0:44:46:74:6c:
0e:e8:52:6a:25:52:10:9e:28:8e:12:44:4b:c4:e7:
27:21:71:4b:6b:d3:5d:07:b1:f0:28:c0:2b:aa:a1:
b5:bf:dc:17:b3:f7:3b:47:7a:f4:d9:7b:4c:f1:f8:
c0:5c:61:2b:c0:16:8f:41:2d:06:28:3a:32:5e:41:
42:3d:3f:52:eb:a4:a8:da:1e:b9:2c:e3:cd:c5:48:
59:30:87:b9:7c:92:ee:c7:96:19:52:8b:c9:19:dc:
22:b8:04:9b:8f:c6:5b:70:87:40:58:e3:8a:54:d9:
02:8e:c0:59:aa:c7:e1:bb:e4:a4:8a:f6:1c:5b:2e:
48:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:F2:FE:FB:68:6C:F5:92:ED:6C:A6:0C:15:C4:E2:28:34:26:B5:95
X509v3 Authority Key Identifier:
keyid:81:A3:6C:67:E9:A2:35:39:C8:15:3A:98:34:EF:83:E5:C1:8E:6B:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaNsZ-miNTnIFTqYNO-D5cGOa3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:34:f6:13:bc:d8:eb:b1:04:76:2f:45:88:1a:9c:df:ab:54:
54:05:e8:fe:ef:21:85:2d:87:0d:84:7c:ce:3a:89:95:b5:98:
72:d0:10:d4:96:da:fb:cf:ee:a2:60:22:d3:ac:cd:56:0a:a3:
c1:eb:46:4b:41:c2:47:39:69:91:06:fa:cb:59:f8:72:91:85:
da:40:74:0b:54:90:f7:71:39:55:ca:ce:ff:f8:d5:f6:cb:b4:
44:7d:ec:85:17:0f:85:a8:d2:58:de:03:fb:73:71:b8:4e:00:
9e:bb:ab:2a:f5:a6:e6:62:07:8b:16:ba:0e:9f:72:75:57:f6:
ad:56:08:ee:21:f0:55:fc:81:f1:d1:ae:0c:12:76:7d:75:59:
12:b1:07:ca:d1:98:32:cf:93:8c:40:ea:40:0d:32:f2:ac:98:
89:30:ab:a7:4b:38:df:ac:39:8c:b7:a0:77:42:33:73:a4:72:
ab:b1:49:e4:3f:eb:cf:96:81:9c:36:54:49:01:ea:f0:2e:97:
a1:98:67:79:34:e2:ba:be:16:fa:bc:93:24:b3:ad:06:d7:fa:
a3:3a:d8:55:bf:b1:18:dd:9b:c0:d7:17:5b:bc:cc:db:0f:cf:
79:85:5e:60:e4:4f:df:10:b9:b5:88:c3:51:33:85:1f:f4:1a:
37:d3:63:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe3RUblvZVNLu44gXfxDlEmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYTM2YzY3ZTlhMjM1MzljODE1M2E5ODM0ZWY4M2U1YzE4
ZTZiNzIwHhcNMjUwNjI4MTYwMTAwWhcNMjUwNjI5MTYwMTAwWjAzMTEwLwYDVQQD
EyhhNGYyZmVmYjY4NmNmNTkyZWQ2Y2E2MGMxNWM0ZTIyODM0MjZiNTk1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAunghNYoqZQVmrKGkBHQ2UY9ypSHX
n3sfSRy/KDNWOXwrGIBFGBM6zZ/bm8v+Ug6XOM7zwo6DUVm+Ve3m7y65jQt3oTLn
uF/Uz4YVnBEkEjyeJ7WlanKATX1ASNYneDWNX6i9nRr1ttmraoMG1XK3nSHiH8xg
aYsR0XK77SiRFDefwERGdGwO6FJqJVIQniiOEkRLxOcnIXFLa9NdB7HwKMArqqG1
v9wXs/c7R3r02XtM8fjAXGErwBaPQS0GKDoyXkFCPT9S66So2h65LOPNxUhZMIe5
fJLux5YZUovJGdwiuASbj8ZbcIdAWOOKVNkCjsBZqsfhu+SkivYcWy5ImQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKTy/vtobPWS7WymDBXE4ig0JrWVMB8GA1UdIwQY
MBaAFIGjbGfpojU5yBU6mDTvg+XBjmtyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2FOc1otbWlOVG5JRlRxWU5PLUQ1Y0dPYTNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8yNWNiYWQtNjEzNC00NWIxLThiM2Qt
ZWI1NjlhOGEyMTBmLzEvZ2FOc1otbWlOVG5JRlRxWU5PLUQ1Y0dPYTNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8yNWNiYWQtNjEzNC00NWIxLThiM2QtZWI1NjlhOGEyMTBm
LzEvZ2FOc1otbWlOVG5JRlRxWU5PLUQ1Y0dPYTNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMzT2E7zY
67EEdi9FiBqc36tUVAXo/u8hhS2HDYR8zjqJlbWYctAQ1Jba+8/uomAi06zNVgqj
wetGS0HCRzlpkQb6y1n4cpGF2kB0C1SQ93E5VcrO//jV9su0RH3shRcPhajSWN4D
+3NxuE4AnrurKvWm5mIHixa6Dp9ydVf2rVYI7iHwVfyB8dGuDBJ2fXVZErEHytGY
Ms+TjEDqQA0y8qyYiTCrp0s436w5jLegd0Izc6Ryq7FJ5D/rz5aBnDZUSQHq8C6X
oZhneTTiur4W+ryTJLOtBtf6ozrYVb+xGN2bwNcXW7zM2w/PeYVeYORP3xC5tYjD
UTOFH/QaN9NjvA==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:15:37 2025 by rpki-client