Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
File: geTmB1l46pR2tkHOAIx4erKOXRM.mft (raw, json)
Hash identifier: NBPt/uMJ5rb6A6LqdaRCUuwqxQTFKlbrghpwUISwgcU=
Subject key identifier: 28:66:F3:FC:EB:A7:FA:D3:4A:6A:09:2D:E2:6D:28:EE:81:2C:9A:24
Authority key identifier: 81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
Certificate issuer: /CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Certificate serial: 0198D7059D2F25848E505EE57D81381C1B13
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
Manifest number: 1649
Signing time: Sat 23 Aug 2025 13:02:05 +0000
Manifest this update: Sat 23 Aug 2025 13:02:05 +0000
Manifest next update: Sun 24 Aug 2025 13:02:05 +0000
Files and hashes: 1: dBbI1Z81Mloa7W2OzhoKXchOrRQ.roa (hash: cFMz5yq3xJCpOCH1TXFzmCMMTxw6N/8cLdoB9ZDvza0=)
2: geTmB1l46pR2tkHOAIx4erKOXRM.crl (hash: 6Nu9YAJWhaSMrMWThALvVGDy/cTicBg1UzGJqJ84dW8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 13:02:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:05:9d:2f:25:84:8e:50:5e:e5:7d:81:38:1c:1b:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81e4e6075978ea9476b641ce008c787ab28e5d13
Validity
Not Before: Aug 23 13:02:05 2025 GMT
Not After : Aug 24 13:02:05 2025 GMT
Subject: CN=2866f3fceba7fad34a6a092de26d28ee812c9a24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:54:9b:06:8a:67:19:86:2f:10:c2:38:de:ac:
c5:01:81:35:8d:96:a1:e9:c3:cc:46:ab:19:fc:d9:
8d:32:e2:ff:62:ab:06:93:37:d0:13:8a:1c:a7:e8:
08:b2:e8:eb:d4:7e:de:6d:da:d5:35:68:a2:17:3e:
c4:95:1a:a1:03:a5:92:47:9c:21:fe:04:3a:83:cb:
9e:af:20:b0:ea:c1:8f:b0:46:d9:42:65:1c:b8:f8:
95:ab:4f:3d:a7:c0:6e:01:9d:13:6c:60:26:63:40:
8b:51:07:0f:57:dc:62:5d:bd:76:95:d7:8d:32:31:
71:c6:79:17:73:fb:37:76:8d:86:11:fb:1f:e4:14:
57:9f:fd:c3:84:0b:2d:a3:85:12:99:b5:28:c6:fa:
69:4b:82:30:1b:de:a3:e6:68:1e:9f:4f:54:84:8d:
28:56:bc:8d:f3:f1:ec:60:37:e4:62:d5:79:cc:34:
f5:7b:5a:7d:90:d9:ed:d7:89:17:3d:ef:ae:68:8e:
80:2d:22:b5:19:a3:fe:dd:ca:12:08:85:bd:c6:1c:
1a:5b:80:0a:1a:ae:e4:3f:af:60:de:76:19:d5:c4:
47:17:53:8e:de:e6:b4:f1:f2:3c:d7:e2:a2:4a:e8:
f2:44:9f:9d:61:55:04:30:de:f3:b8:d7:ab:9b:9d:
4c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:66:F3:FC:EB:A7:FA:D3:4A:6A:09:2D:E2:6D:28:EE:81:2C:9A:24
X509v3 Authority Key Identifier:
keyid:81:E4:E6:07:59:78:EA:94:76:B6:41:CE:00:8C:78:7A:B2:8E:5D:13
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/geTmB1l46pR2tkHOAIx4erKOXRM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/793709-ee58-4f76-b308-862b86b6e642/1/geTmB1l46pR2tkHOAIx4erKOXRM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:38:b8:45:f5:b5:9e:fd:4e:29:bb:1b:2a:c6:45:f2:cb:f4:
c1:72:34:c1:3a:2f:40:14:d9:28:6f:32:ae:80:3b:27:af:94:
ae:8e:8e:53:af:52:40:1a:cd:1a:d4:f0:35:5e:ab:d8:38:3a:
70:49:24:13:30:12:de:39:c3:ea:2e:2a:5f:5f:57:bd:8a:d7:
ad:ad:40:a7:37:e8:ee:37:c9:b6:d6:03:71:bc:a2:57:dc:a3:
08:f2:3c:df:84:51:c1:e3:4d:67:4c:da:86:eb:f1:fa:6b:c2:
bd:17:42:d1:56:35:51:ce:ba:97:b0:2f:37:91:ac:b5:0b:f5:
53:4c:ab:95:a9:7c:e9:93:57:30:50:b9:bf:c3:3b:5e:8a:be:
66:7b:69:c7:6f:ca:65:84:c0:5f:c0:a9:f5:ff:4b:42:75:65:
1e:32:cb:a3:79:5e:37:21:7b:85:86:6d:c5:7e:3b:05:b1:fd:
f8:72:b0:93:da:23:3b:f5:2b:85:a2:7b:5c:7d:41:b7:12:8c:
59:67:09:e2:79:20:fd:0d:cb:c5:6e:b8:c3:be:33:4d:16:63:
1a:cb:41:07:22:47:db:89:bd:c1:7c:14:c5:d2:38:58:c1:5c:
2f:6c:ec:7a:73:13:1a:0b:06:6b:2f:eb:e0:c3:eb:2d:28:6d:
02:e0:f0:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 00:10:17 2025 by rpki-client