Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
File: G_A9uL9mABk75I-xDm4xa4tfiOM.mft (raw, json)
Hash identifier: /fQUdmHYLUli/jYMQKj6OfVkVA0dok7CwO/aVZqPzgg=
Subject key identifier: 4A:17:76:34:BC:0B:43:6E:B9:82:71:76:D6:76:85:58:7E:DA:68:87
Authority key identifier: 1B:F0:3D:B8:BF:66:00:19:3B:E4:8F:B1:0E:6E:31:6B:8B:5F:88:E3
Certificate issuer: /CN=1bf03db8bf6600193be48fb10e6e316b8b5f88e3
Certificate serial: 0198D5BC5E7F32C21D2D6E5A6BAC61369E72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
Manifest number: 0591
Signing time: Sat 23 Aug 2025 07:02:28 +0000
Manifest this update: Sat 23 Aug 2025 07:02:28 +0000
Manifest next update: Sun 24 Aug 2025 07:02:28 +0000
Files and hashes: 1: G_A9uL9mABk75I-xDm4xa4tfiOM.crl (hash: uszGd7MEVre1jVroTSu65PXdvjkGsJ2Vh2UYMZjqsbI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:5e:7f:32:c2:1d:2d:6e:5a:6b:ac:61:36:9e:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bf03db8bf6600193be48fb10e6e316b8b5f88e3
Validity
Not Before: Aug 23 07:02:28 2025 GMT
Not After : Aug 24 07:02:28 2025 GMT
Subject: CN=4a177634bc0b436eb9827176d67685587eda6887
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:f8:21:3b:3f:bf:09:f0:c9:52:09:c5:09:b6:
38:3b:17:cf:ec:10:7f:e0:d9:06:a0:38:d3:68:60:
67:96:e2:44:06:f9:48:39:3f:e4:ad:f4:64:a7:67:
cd:1b:bd:c2:da:85:95:db:79:8e:20:24:2f:59:6e:
1d:25:a1:2f:b2:84:0a:a5:16:e8:bc:fc:01:b7:ea:
cd:c4:f6:9d:ef:98:48:7d:43:2c:e5:b6:be:3c:d8:
78:28:a1:6e:5b:d5:c1:c9:75:09:b9:66:62:b7:ad:
fa:4f:80:cf:23:fd:cd:7f:ee:f0:21:72:6c:8a:d1:
15:f3:53:d7:b3:07:eb:22:77:ea:0d:c7:9d:7e:8f:
b8:ec:8f:49:17:bf:08:bb:2d:9f:8a:38:c7:6b:e1:
8c:21:6d:0c:26:52:e6:8d:cd:78:f2:e2:a6:b6:4d:
d4:43:92:a6:ed:ac:42:6b:79:33:41:ee:81:26:74:
0b:04:9f:65:e0:1f:37:a6:4d:03:54:87:b8:64:ed:
93:60:47:7d:9b:29:63:a3:66:b6:f9:b4:7c:d4:0f:
20:75:7b:c8:02:e9:2d:76:a1:79:54:4c:ea:b6:e5:
b6:be:b1:8e:f1:0a:a9:16:a8:ef:c6:27:9f:f3:02:
6d:95:3f:83:f1:41:91:f4:60:d7:63:17:57:d6:d4:
6f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:17:76:34:BC:0B:43:6E:B9:82:71:76:D6:76:85:58:7E:DA:68:87
X509v3 Authority Key Identifier:
keyid:1B:F0:3D:B8:BF:66:00:19:3B:E4:8F:B1:0E:6E:31:6B:8B:5F:88:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_A9uL9mABk75I-xDm4xa4tfiOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/d60752-ca7e-4acf-8cd1-ee5988e873e1/1/G_A9uL9mABk75I-xDm4xa4tfiOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:00:c6:13:d8:76:27:d8:a1:29:f1:98:f1:3e:2e:0a:79:e8:
9e:3c:0d:05:05:90:9b:4e:f3:53:92:e9:52:05:1d:2b:e5:f4:
94:f9:6b:2a:fd:ca:6d:f2:cf:5a:2f:25:aa:28:46:6d:01:44:
d9:62:3f:9b:ee:19:c9:3d:65:0a:96:16:b2:c3:d3:0c:70:02:
49:d6:58:7e:31:64:20:09:e9:0d:30:fc:39:8e:74:a4:a1:c1:
79:43:d2:cc:05:eb:cb:07:5e:19:7e:56:4c:ff:31:4d:91:09:
69:85:d9:48:f6:30:da:04:f9:23:b8:ce:a3:b2:06:6f:1d:5f:
8b:f5:8e:f9:8f:7c:6e:db:7f:35:4c:55:6d:34:20:c2:06:b4:
bd:ad:95:6a:b9:ff:cd:22:d8:f3:ab:aa:5d:1d:d9:2f:c9:3c:
d0:2e:18:f1:c5:33:a6:00:31:1a:e8:56:9f:e0:be:ef:e2:35:
e4:0d:d7:c9:47:31:56:f0:23:0c:1e:f9:32:40:42:cd:9e:f5:
0e:3e:f4:5d:4e:47:72:e7:31:0f:95:e9:c7:2e:5d:e8:fa:88:
14:55:cc:ba:12:5c:47:96:2e:c5:42:97:1a:a0:ae:67:e6:a3:
c9:f6:e4:e4:6a:ca:a2:a2:65:fe:2c:ea:6b:41:4c:c6:92:b2:
2f:78:1d:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 11:35:32 2025 by rpki-client