Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/dc9082-5a9f-41ee-8d44-618cd0682b10/1/gXS2uiCeYit5ihT86qlEdi-nYpo.mft
File: gXS2uiCeYit5ihT86qlEdi-nYpo.mft (raw, json)
Hash identifier: eG8TGLUNDn1Cb59Q9Nln+avQIzmEhRsP2VL+Y+D56co=
Subject key identifier: 3C:6C:A0:03:69:B8:8A:CB:68:20:FE:A2:27:4C:00:FB:A3:28:77:C6
Authority key identifier: 81:74:B6:BA:20:9E:62:2B:79:8A:14:FC:EA:A9:44:76:2F:A7:62:9A
Certificate issuer: /CN=8174b6ba209e622b798a14fceaa944762fa7629a
Certificate serial: 0197B745317D0D465540214C65A9A7E1B340
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gXS2uiCeYit5ihT86qlEdi-nYpo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/dc9082-5a9f-41ee-8d44-618cd0682b10/1/gXS2uiCeYit5ihT86qlEdi-nYpo.mft
Manifest number: 74
Signing time: Sat 28 Jun 2025 16:00:54 +0000
Manifest this update: Sat 28 Jun 2025 16:00:54 +0000
Manifest next update: Sun 29 Jun 2025 16:00:54 +0000
Files and hashes: 1: gXS2uiCeYit5ihT86qlEdi-nYpo.crl (hash: XeQgnEVu2t+Q9iY2npwd+MR8RjuCs3x4AKJU4KEz9TA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/dc9082-5a9f-41ee-8d44-618cd0682b10/1/gXS2uiCeYit5ihT86qlEdi-nYpo.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/dc9082-5a9f-41ee-8d44-618cd0682b10/1/gXS2uiCeYit5ihT86qlEdi-nYpo.mft
rsync://rpki.ripe.net/repository/DEFAULT/gXS2uiCeYit5ihT86qlEdi-nYpo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:31:7d:0d:46:55:40:21:4c:65:a9:a7:e1:b3:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8174b6ba209e622b798a14fceaa944762fa7629a
Validity
Not Before: Jun 28 16:00:54 2025 GMT
Not After : Jun 29 16:00:54 2025 GMT
Subject: CN=3c6ca00369b88acb6820fea2274c00fba32877c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:ef:53:d3:8d:c1:87:9d:34:dd:50:f1:8b:26:
08:ff:2d:df:2c:24:a6:e1:8c:5a:92:f5:e4:4d:e3:
a3:dd:65:15:0d:32:95:bc:2f:96:43:f2:c9:32:92:
ec:50:15:d9:f2:4c:3b:05:b0:eb:6a:82:6c:86:66:
f0:4f:0f:56:07:91:b4:56:ce:55:53:d3:18:2e:a8:
c7:15:ff:6e:56:63:4b:f0:ee:6a:63:be:af:7a:9a:
a2:8e:3d:e7:0c:1e:0f:28:73:05:e3:8a:a2:23:7c:
89:48:fb:1d:d8:e7:e2:9a:05:44:d3:01:6e:73:fc:
85:cb:64:72:b7:bc:82:00:80:f1:04:b5:89:53:97:
b1:df:05:e5:d1:e1:f0:b0:a7:95:4a:b5:10:d8:65:
9f:4e:c9:10:90:44:fd:63:63:2d:43:c8:35:ac:56:
da:d5:76:f0:77:4f:ab:58:25:ae:a3:75:0e:1f:0a:
02:6b:bd:08:59:b1:c8:e9:7b:44:fc:bb:06:56:fd:
c6:e8:54:78:5e:b5:05:67:92:52:ff:d6:f0:51:97:
d3:d5:44:36:87:f5:68:5e:7b:4d:ff:b5:2a:df:ef:
19:c5:70:26:a6:bc:0e:e0:e9:61:f7:81:0c:a5:c4:
62:8c:75:85:c7:de:34:2d:67:fc:ad:55:f5:23:31:
51:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:6C:A0:03:69:B8:8A:CB:68:20:FE:A2:27:4C:00:FB:A3:28:77:C6
X509v3 Authority Key Identifier:
keyid:81:74:B6:BA:20:9E:62:2B:79:8A:14:FC:EA:A9:44:76:2F:A7:62:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gXS2uiCeYit5ihT86qlEdi-nYpo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dc9082-5a9f-41ee-8d44-618cd0682b10/1/gXS2uiCeYit5ihT86qlEdi-nYpo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/dc9082-5a9f-41ee-8d44-618cd0682b10/1/gXS2uiCeYit5ihT86qlEdi-nYpo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:09:a2:6f:18:3a:db:34:ce:a1:08:eb:06:3a:9e:7d:f8:7e:
77:b7:62:77:53:5a:6e:bc:b6:eb:3a:21:88:01:5f:21:6c:28:
a1:9f:8f:2d:3a:99:8d:dc:16:f7:3b:0a:9d:ff:6d:de:a4:a5:
f2:6b:9c:b0:4a:7c:32:db:94:e1:f9:61:1d:bf:e2:79:4d:cf:
06:3f:67:74:51:e7:fa:26:ee:4a:cf:0c:af:ed:00:64:a4:2c:
b3:6a:78:2e:a6:3a:74:16:30:3e:de:23:6b:52:c9:c7:ec:4c:
5e:d4:24:73:ea:a7:4a:48:5a:72:2f:d6:12:af:22:54:13:b7:
c9:37:c8:79:00:4b:53:92:e7:93:a5:46:0c:75:bf:06:4a:4b:
d8:28:4c:8a:09:7b:c1:d0:a4:7e:e9:b3:3c:9b:6d:76:5f:f3:
50:cf:dd:b5:83:51:dd:59:9d:f2:7a:6e:53:e4:c5:78:94:a1:
ed:71:9c:06:cc:62:51:5e:31:0e:8a:b7:2b:aa:e6:77:03:dd:
c9:dc:5d:8f:0d:56:74:c5:01:21:b7:80:ca:5b:8e:8b:7b:d6:
1e:40:40:4b:bd:ec:1f:98:c0:d5:01:0e:57:12:d2:be:68:45:
d4:bc:0d:64:9a:37:ee:6c:b1:34:8f:35:73:5d:ed:18:dd:16:
10:92:a9:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:29:33 2025 by rpki-client