Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
File: GZdiXDlfuGf12AjVNZehHOfzxMs.mft (raw, json)
Hash identifier: W0L/TXSLFkY786uY6Ig3iRuYvrE+DKwCQGHBnQW16jw=
Subject key identifier: 73:CA:BB:68:86:00:2C:FA:D1:13:D9:8C:88:F9:B0:C7:67:0B:3C:09
Authority key identifier: 19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
Certificate issuer: /CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Certificate serial: 0197B77C876F04D506BD650BA574702DBF0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
Manifest number: 15B3
Signing time: Sat 28 Jun 2025 17:01:21 +0000
Manifest this update: Sat 28 Jun 2025 17:01:21 +0000
Manifest next update: Sun 29 Jun 2025 17:01:21 +0000
Files and hashes: 1: GZdiXDlfuGf12AjVNZehHOfzxMs.crl (hash: ifvkUsbS+wXc4ht4MlqcYClh7V9YmDf9LFMSuwH70TU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:87:6f:04:d5:06:bd:65:0b:a5:74:70:2d:bf:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Validity
Not Before: Jun 28 17:01:21 2025 GMT
Not After : Jun 29 17:01:21 2025 GMT
Subject: CN=73cabb6886002cfad113d98c88f9b0c7670b3c09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:80:ee:d7:5b:32:74:c1:20:cd:ad:40:70:e9:
60:71:8e:4a:10:6a:f1:44:17:55:d9:24:2a:0a:d9:
d8:38:3c:37:d7:57:f3:ef:8e:dc:ce:1d:6f:08:45:
ed:11:13:27:54:26:c8:d1:c8:82:65:0a:4b:7d:6c:
a0:20:0c:ca:3c:a8:30:88:51:ca:ca:ff:c0:b0:4e:
43:e2:bd:81:41:b0:ae:18:a8:4e:07:e2:c3:55:cf:
5f:23:1c:08:72:94:85:c1:ea:4d:6d:d2:dd:a3:2d:
e5:06:3d:a2:93:ec:26:56:c4:20:57:50:8c:7d:a1:
39:fc:ec:09:30:67:b6:0c:e0:0b:d4:70:0e:0f:43:
ad:f4:78:1b:3a:57:da:31:16:4a:39:36:32:bd:bd:
15:d4:05:51:6d:e5:bb:c5:4c:28:61:c7:2a:bc:77:
b2:6d:b9:2b:d7:cc:d5:62:bd:50:03:8f:4d:2d:82:
f6:a7:b8:c8:ef:ba:d8:61:14:66:8f:d7:81:e5:34:
d4:bb:43:39:fc:36:35:7e:9e:1f:ed:00:bb:f4:f4:
d7:37:88:cd:4d:2b:2a:9a:1d:bb:eb:1a:43:ce:29:
3b:0c:1e:f8:1c:49:bb:83:ba:9a:a5:90:ea:52:d4:
9a:8c:b2:ae:d7:6d:08:2e:72:c2:68:0d:79:1e:c6:
f8:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:CA:BB:68:86:00:2C:FA:D1:13:D9:8C:88:F9:B0:C7:67:0B:3C:09
X509v3 Authority Key Identifier:
keyid:19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:6c:ac:2c:94:e8:25:3e:03:4b:79:82:ab:d5:23:1d:c3:dd:
7b:86:0d:68:6e:4c:84:22:ef:f8:26:76:05:89:16:f8:16:53:
07:d7:a0:c1:cf:26:8a:0f:2d:56:cf:30:db:00:e3:a9:83:41:
2a:92:f8:f3:85:f6:ea:c0:34:a8:3d:b6:99:a3:b4:4a:8a:d1:
b9:02:82:17:16:24:66:9a:c3:9a:57:3a:fd:20:cb:c2:61:c2:
6c:10:46:31:64:d9:71:1c:61:1a:36:af:a1:ff:af:26:93:e6:
61:07:c0:80:54:b1:fe:02:c2:55:d5:50:06:d0:f0:08:3f:ec:
f5:3c:1a:e0:1e:2d:f2:f6:62:2b:5f:64:e0:00:6e:8e:cb:6b:
e0:8c:2d:bd:5a:59:85:64:c5:0d:08:fc:db:dd:e5:36:d2:34:
74:b7:79:b0:35:08:4c:5f:d2:2c:86:8b:ad:de:b9:1b:f3:68:
80:e4:68:f9:75:0d:0c:c3:af:19:fb:24:c0:31:d6:b7:46:eb:
e1:e7:61:ed:c2:aa:8c:79:9c:63:5b:5e:f7:95:f2:ef:1a:55:
01:49:96:e4:56:cf:28:14:dc:ef:db:47:64:35:3e:08:69:28:
f5:e5:d7:ff:c4:bb:e5:7d:31:fc:93:62:8e:6e:bc:8a:13:62:
a7:12:fe:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:34:45 2025 by rpki-client