Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft
File: Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft (raw, json)
Hash identifier: Q2Aua06vQE4BIDXC1K/ddJt2LuQP0oxRqNI5cIAe85s=
Subject key identifier: 65:01:A0:37:BE:4C:24:0A:A5:6C:E9:14:CD:AC:E0:FE:10:A8:48:B5
Authority key identifier: 1A:F7:9B:F8:AA:B6:BE:01:49:D8:DB:5C:8A:0C:ED:BC:95:70:F1:6E
Certificate issuer: /CN=1af79bf8aab6be0149d8db5c8a0cedbc9570f16e
Certificate serial: 0197B8210F4C5EB5D7241FAB6BFF958977A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gveb-Kq2vgFJ2NtcigztvJVw8W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft
Manifest number: 9C
Signing time: Sat 28 Jun 2025 20:01:03 +0000
Manifest this update: Sat 28 Jun 2025 20:01:03 +0000
Manifest next update: Sun 29 Jun 2025 20:01:03 +0000
Files and hashes: 1: Gveb-Kq2vgFJ2NtcigztvJVw8W4.crl (hash: QD7ouvb6LDaCLR1+Rh+bJw9VvLCw5Zg1bI+AqX9q51I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gveb-Kq2vgFJ2NtcigztvJVw8W4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:21:0f:4c:5e:b5:d7:24:1f:ab:6b:ff:95:89:77:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1af79bf8aab6be0149d8db5c8a0cedbc9570f16e
Validity
Not Before: Jun 28 20:01:03 2025 GMT
Not After : Jun 29 20:01:03 2025 GMT
Subject: CN=6501a037be4c240aa56ce914cdace0fe10a848b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:dc:33:d3:92:7b:82:20:14:a9:7f:e1:5c:8f:
c4:c4:24:db:00:63:a2:4a:a0:24:54:50:5c:a5:1b:
67:3f:92:e9:78:29:3a:9d:43:98:39:81:cd:24:df:
da:8b:0d:18:01:5c:0c:e7:07:21:c4:bf:88:21:2b:
f5:44:a0:81:8f:c5:ee:f3:0a:94:5a:55:30:24:ac:
62:b7:84:fb:fa:9b:1a:74:f4:aa:59:75:d5:a8:b7:
66:9a:e3:f2:94:b2:f3:b3:1c:f6:25:72:ce:c7:85:
d2:44:a4:a8:0d:be:b7:6f:65:c1:56:44:5a:74:b9:
93:89:92:c6:ac:d6:20:12:fd:38:f9:b3:42:82:2a:
15:9f:58:41:c7:0c:ce:35:29:b8:55:5c:e1:2e:90:
32:72:e8:6e:2b:88:5c:8c:45:56:9f:ab:3d:55:92:
2d:32:49:ab:9e:fc:66:87:23:77:ec:ba:cb:af:b9:
a5:d6:6d:03:b0:12:3c:42:85:fe:3d:3a:a3:ee:af:
aa:75:b0:01:d0:b7:d4:c8:6e:fa:19:75:ea:52:95:
0a:bc:57:ec:1c:02:67:82:a3:98:ca:3d:27:ac:e2:
0c:85:9f:c9:2d:cd:76:3c:36:5f:a7:6f:ab:0c:a4:
55:cf:a8:1c:e0:74:0d:0a:59:c4:99:6a:bd:75:22:
39:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:01:A0:37:BE:4C:24:0A:A5:6C:E9:14:CD:AC:E0:FE:10:A8:48:B5
X509v3 Authority Key Identifier:
keyid:1A:F7:9B:F8:AA:B6:BE:01:49:D8:DB:5C:8A:0C:ED:BC:95:70:F1:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gveb-Kq2vgFJ2NtcigztvJVw8W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a9:8e:a0:e0:fa:0e:13:31:c8:83:1a:f1:fc:bf:06:f2:ae:a2:
39:aa:41:94:40:d2:fc:46:0a:9a:b9:23:5d:52:e5:46:68:15:
69:a0:32:4c:10:7d:1f:11:d1:38:66:57:6d:0a:e3:f8:4f:59:
08:71:25:f3:c2:31:4b:9d:cf:2e:bf:f1:d6:5e:8f:7f:dc:6a:
14:c1:b3:b3:0c:01:43:85:4f:5e:8b:a4:4b:c7:a6:80:87:86:
29:25:af:7c:d9:fe:3d:30:5f:7f:ef:38:bb:66:3f:91:15:7a:
39:2f:e3:2e:10:1f:15:ff:c7:61:56:b9:d2:04:ce:56:b7:85:
57:8f:8e:a4:03:c9:08:29:73:dd:6e:c7:d3:a1:e2:f6:ac:cb:
18:7b:d7:4b:23:0b:8b:1d:e9:91:61:8d:8a:b6:3f:b7:22:70:
7b:57:bf:5b:b3:f9:21:eb:aa:41:76:b7:b4:18:09:7e:1a:bf:
64:c1:b2:3e:62:6f:d5:06:a9:61:7d:1b:b5:7c:aa:54:a7:24:
e9:88:3b:47:90:99:ce:68:f3:85:8c:59:5a:1c:f7:90:a5:4a:
7c:7a:ca:34:43:5e:3b:65:79:c4:07:db:de:07:f4:a9:e0:73:
b6:d9:04:21:1c:91:7a:e3:ef:b8:53:4a:aa:29:6b:73:8e:0b:
88:67:eb:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:32:27 2025 by rpki-client