Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
File: G2uUO5o9_2loAVFr6EcbxFiFZug.mft (raw, json)
Hash identifier: 080CDlx6yR7+H1DfJPE5ttkd6Nyxm/X++pnTlF/dyKI=
Subject key identifier: D2:13:E9:E4:CA:D2:1B:AC:E4:37:A4:60:5F:6E:FF:85:20:0C:E1:1B
Authority key identifier: 1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
Certificate issuer: /CN=1b6b943b9a3dff696801516be8471bc4588566e8
Certificate serial: 0197B7450B1E6CF8420A673156CD00258371
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
Manifest number: 125A
Signing time: Sat 28 Jun 2025 16:00:44 +0000
Manifest this update: Sat 28 Jun 2025 16:00:44 +0000
Manifest next update: Sun 29 Jun 2025 16:00:44 +0000
Files and hashes: 1: 1ISrUMvXtY8idtkbmSmcNCBmXOs.roa (hash: JdzcjRC1qPASLJAyKXCJZ2jvTuTxM21yeidKZ9A5IsQ=)
2: G2uUO5o9_2loAVFr6EcbxFiFZug.crl (hash: /nPlYyNZSYQ2ghlWokKTUuyqmLFFfXguDXv7a6L7buk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:0b:1e:6c:f8:42:0a:67:31:56:cd:00:25:83:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6b943b9a3dff696801516be8471bc4588566e8
Validity
Not Before: Jun 28 16:00:44 2025 GMT
Not After : Jun 29 16:00:44 2025 GMT
Subject: CN=d213e9e4cad21bace437a4605f6eff85200ce11b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:1b:91:4f:1a:48:6a:3d:f8:a7:7f:aa:3f:8b:
e1:1f:7e:b7:7f:63:09:6f:fa:47:6f:58:04:25:17:
f9:11:8e:10:f0:73:71:bb:1e:4e:fc:f8:53:a9:d5:
17:66:60:f7:bb:82:27:87:63:47:7d:16:67:38:4c:
02:38:cc:ed:35:4b:27:87:dc:e5:16:e2:ae:ea:f6:
ec:21:35:73:e8:46:3e:46:ca:b4:1e:d1:ea:90:e3:
5a:d3:cb:00:6b:5d:50:60:4f:81:1f:70:f9:96:47:
7b:87:ac:54:a9:67:5f:67:dd:da:92:ef:d0:e2:27:
f6:b4:66:8b:6f:27:b7:d1:c8:52:14:3d:d6:09:66:
7e:39:4f:91:38:c6:53:c3:40:a3:e2:cd:4a:01:93:
46:b4:0d:e3:7c:d2:a0:0f:24:d3:21:f8:46:c2:ee:
4e:30:30:17:6f:e8:ab:bc:19:8c:47:51:1a:82:e6:
9d:63:d0:f7:07:ff:40:99:d4:ad:53:c3:7d:a6:0e:
49:8d:86:0c:e7:ee:62:e7:64:f7:1c:a8:ae:86:10:
f9:74:ef:7d:de:ce:6c:4c:f2:9c:f5:d4:bf:53:02:
3b:87:9e:01:7a:f3:2b:22:f2:40:27:11:5a:8e:ec:
9f:7b:83:fc:dd:1e:26:1e:c3:68:50:cf:c8:aa:b2:
c7:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:13:E9:E4:CA:D2:1B:AC:E4:37:A4:60:5F:6E:FF:85:20:0C:E1:1B
X509v3 Authority Key Identifier:
keyid:1B:6B:94:3B:9A:3D:FF:69:68:01:51:6B:E8:47:1B:C4:58:85:66:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2uUO5o9_2loAVFr6EcbxFiFZug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3d6107-5bce-4780-ae10-22d371d6cdee/1/G2uUO5o9_2loAVFr6EcbxFiFZug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:fa:3e:c4:bf:b5:af:3c:9a:c5:7d:a9:0e:dd:97:7f:f7:7d:
0c:9f:42:ab:45:3b:cb:e5:ee:49:a5:6e:d6:fe:34:41:e7:50:
47:e3:4c:c8:b2:89:d9:d3:05:12:93:a2:9f:07:a2:14:a6:4d:
80:0c:b2:42:6d:5c:77:4d:78:07:a3:7f:42:f3:88:50:5a:73:
38:43:17:f6:9c:a6:4b:01:4b:1c:6f:be:76:66:9c:c3:3b:ae:
3a:c8:97:50:c1:72:7f:d4:a4:5c:97:3c:5c:e7:40:d2:e7:cd:
61:bb:7f:4f:6b:01:1f:22:b4:c4:f6:4d:50:eb:65:6d:9c:d6:
ef:76:d2:ac:e3:27:86:57:60:31:3b:d0:a6:d9:75:97:fa:18:
db:5e:0d:d5:d0:2b:a0:2a:fa:c5:51:07:c0:50:49:e9:56:12:
ff:76:44:be:0d:14:51:38:c0:f5:c0:1b:e5:51:ef:9e:23:6f:
fd:7b:47:0e:84:db:28:e1:ad:c2:d5:89:48:ba:42:cf:f8:bf:
e4:c4:d6:86:90:68:bf:00:e6:29:8a:37:db:f3:16:e0:be:e6:
ec:df:98:9e:84:28:8d:70:04:f5:ad:93:af:b0:54:b1:68:f2:
45:be:f9:36:de:b9:71:09:8c:71:60:34:c6:52:91:bc:47:c0:
2b:dc:7d:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:48:14 2025 by rpki-client