Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
File: G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft (raw, json)
Hash identifier: rCasl18QszC5hRc0Oxc3T73CTC9MLZ0RVWG9EVuZTxg=
Subject key identifier: E4:89:0C:06:64:1D:E5:B9:85:6F:24:B3:9B:31:C6:11:67:5D:FA:9D
Authority key identifier: 1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
Certificate issuer: /CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Certificate serial: 0197B6A11C710F0A4FF79EF1CEE9681C0D2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
Manifest number: 015B
Signing time: Sat 28 Jun 2025 13:01:41 +0000
Manifest this update: Sat 28 Jun 2025 13:01:41 +0000
Manifest next update: Sun 29 Jun 2025 13:01:41 +0000
Files and hashes: 1: G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl (hash: yN8H1aKAthj1ht6vsMXrkFN3Tjpx76+uuq4JhVKI2Z8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:1c:71:0f:0a:4f:f7:9e:f1:ce:e9:68:1c:0d:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Validity
Not Before: Jun 28 13:01:41 2025 GMT
Not After : Jun 29 13:01:41 2025 GMT
Subject: CN=e4890c06641de5b9856f24b39b31c611675dfa9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a1:0d:07:74:81:24:0f:42:94:75:45:e4:f4:
bc:64:81:1a:d8:f0:5c:03:23:b0:19:25:29:6c:6c:
25:d4:44:29:bb:80:ea:03:f8:e0:5d:9d:3c:9c:95:
50:03:0c:4a:3a:23:04:d0:a7:af:9b:7e:ee:09:3c:
27:44:a6:ea:6b:7d:7f:7f:35:c3:f1:26:11:b3:d7:
28:af:e3:4f:b8:57:69:11:9d:54:5c:b0:41:38:e1:
2c:14:11:97:f4:43:4b:46:25:4d:6a:0b:9b:72:37:
2d:a2:96:b0:e2:37:d5:2d:fe:94:83:61:29:e4:de:
b5:69:08:3d:02:f1:82:ca:a5:f9:e9:5e:19:bb:aa:
4d:c3:4e:0e:23:f3:88:3c:69:34:38:e3:4f:30:7f:
55:6b:c4:37:d7:d2:3a:d9:cd:96:be:2c:c9:64:0f:
c9:60:76:6b:c4:94:fd:ef:20:24:25:97:1c:24:94:
7a:7a:d8:73:37:4d:88:49:bf:08:be:be:c4:b7:65:
23:b9:fc:d7:05:80:7a:8e:a3:1e:c7:b4:8e:88:49:
6d:75:e0:24:f5:f9:23:46:e7:34:fc:14:bd:3d:9b:
5f:26:f3:2e:5a:cb:3e:fa:ef:aa:b0:72:38:f4:26:
9d:3e:a6:26:3e:ac:ec:c0:47:54:8a:db:21:f8:e4:
ed:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:89:0C:06:64:1D:E5:B9:85:6F:24:B3:9B:31:C6:11:67:5D:FA:9D
X509v3 Authority Key Identifier:
keyid:1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:9e:ab:9a:5d:41:12:0c:a5:7b:e4:3b:b3:92:00:7b:53:86:
86:7a:e5:27:17:5f:66:3c:89:75:d5:52:9c:6e:60:72:ea:05:
5a:98:19:b3:8f:c1:33:70:8a:5e:2c:cf:e9:15:ba:34:ae:60:
a1:63:cc:e0:35:33:89:65:b5:3e:4f:ec:63:11:4d:68:db:e8:
e4:a6:10:58:db:60:24:12:b8:a8:c0:85:1c:92:6e:d5:4c:0c:
0b:64:2f:bf:39:93:03:9e:4c:16:ae:28:de:8a:2e:27:02:83:
fd:69:70:26:fa:a9:5e:58:e4:d5:fa:a6:18:48:c4:82:4a:29:
a2:cb:c0:90:e8:a7:a6:7b:54:0f:cb:90:bb:60:5c:b5:6a:01:
29:e2:20:b2:3e:1b:db:74:57:ad:50:74:16:48:66:70:e8:dd:
dd:38:eb:c8:a5:40:fb:4b:d0:a9:94:71:5c:dc:b6:1e:af:4f:
ce:f0:49:a9:ff:ee:be:33:19:1f:4b:69:50:ac:b9:ee:1d:ad:
ce:9a:08:36:6f:a7:70:7d:15:aa:52:3c:f5:21:32:70:3f:65:
01:a5:a3:c0:2b:08:b6:bb:7e:0b:bb:39:7f:cd:ee:4a:91:1b:
cc:1a:17:08:e5:5c:f6:8b:f9:5e:ab:76:63:eb:91:aa:37:88:
e9:54:c3:6d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:03:22 2025 by rpki-client