Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
File: g1-7knspUGK30KcgR7a0qhsPmyk.mft (raw, json)
Hash identifier: fsQa4gcec+nCLhbnlw2lnQC3FT0P3SMhTkuLeIeNmDQ=
Subject key identifier: 16:88:D3:46:C0:D0:FB:AE:42:BD:23:56:7B:84:27:83:F6:03:E8:E5
Authority key identifier: 83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29
Certificate issuer: /CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29
Certificate serial: 0197B8FD430FC6D05EC52921A663BF9752E7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
Manifest number: 0AE7
Signing time: Sun 29 Jun 2025 00:01:34 +0000
Manifest this update: Sun 29 Jun 2025 00:01:34 +0000
Manifest next update: Mon 30 Jun 2025 00:01:34 +0000
Files and hashes: 1: Xz1rL6dK4mQZieGCdBgSZgZHbZ4.roa (hash: gmK1QKVfo/W+VuZX9S2XVVxCk24nsYt3d8ghU+Ddwrs=)
2: g1-7knspUGK30KcgR7a0qhsPmyk.crl (hash: 7w1DMUylI9iDxErzqtbLH4WOisgkqDVSJ4tgX3i/2ws=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:43:0f:c6:d0:5e:c5:29:21:a6:63:bf:97:52:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29
Validity
Not Before: Jun 29 00:01:34 2025 GMT
Not After : Jun 30 00:01:34 2025 GMT
Subject: CN=1688d346c0d0fbae42bd23567b842783f603e8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:ba:23:f8:c9:d6:52:31:f6:ad:30:dd:67:ea:
89:aa:5c:87:b6:5e:16:69:a1:15:19:dc:12:88:98:
65:25:8a:5f:5b:44:0d:7f:09:75:4d:75:ef:c5:76:
97:b1:a7:78:6a:01:65:a4:52:55:7a:3a:4b:76:3e:
3a:7d:59:5f:27:14:35:c5:0b:8a:ed:1e:d8:4a:a5:
42:cc:1f:a6:54:ed:75:8f:3c:42:02:a5:76:58:2e:
03:80:0d:3d:84:1a:95:24:60:df:f0:f6:d6:bc:64:
09:ce:48:57:52:ad:73:cd:4a:99:f9:c6:c5:21:69:
39:0e:a2:69:ba:0e:07:86:be:fe:05:58:05:58:4e:
11:5a:12:a7:0a:eb:55:1e:80:8c:9b:3b:eb:3d:57:
c1:52:c5:bb:48:ba:ca:ed:3b:ed:24:4d:32:6a:00:
eb:37:6a:55:e3:b2:b0:06:f1:9d:6f:63:ac:fc:f2:
65:60:58:e0:df:95:15:3b:cd:2a:f8:f8:8e:63:f0:
ad:7c:6c:10:bb:6f:01:7e:19:18:da:1d:7d:36:79:
55:c6:cf:d8:c1:57:93:98:a3:c0:ee:f6:d1:f1:8f:
b8:f3:81:5d:ee:15:10:64:53:9d:0c:79:f5:c3:20:
95:5a:02:9d:92:bb:44:97:2b:c4:a7:0b:cd:51:a1:
5f:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:88:D3:46:C0:D0:FB:AE:42:BD:23:56:7B:84:27:83:F6:03:E8:E5
X509v3 Authority Key Identifier:
keyid:83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:75:51:8d:86:1d:97:f1:dc:ee:d5:f6:88:88:81:24:a4:8d:
ab:89:49:2a:a4:6f:19:ca:cf:3f:bf:f4:67:1e:36:a0:9a:8d:
5c:08:c0:10:2b:83:b5:9b:cf:05:1e:7f:67:7f:52:55:70:41:
de:87:80:0f:ad:4f:81:4b:53:c2:94:e7:94:80:ac:41:4d:b8:
3e:ed:cd:a0:86:db:22:f2:11:e2:6f:8f:aa:63:8c:2b:e6:aa:
a3:ce:a0:77:d9:a7:3a:a0:52:d6:54:4c:95:ce:84:e7:85:3c:
16:fb:ac:7c:b5:51:b5:f5:32:b7:31:8d:af:b3:37:fa:a9:94:
80:b4:bb:98:aa:75:17:2e:35:8a:62:72:32:bc:b3:65:d9:46:
d9:19:20:e6:2d:12:6f:e9:b4:eb:10:0a:4b:a7:8a:a7:de:2e:
8e:cd:c1:c5:1f:ec:fc:24:25:d7:f0:5c:87:59:3a:ff:35:bc:
bb:5b:36:0c:44:e1:45:17:35:84:ad:2a:38:b1:0c:fa:3a:93:
ff:97:59:b2:c2:2c:ae:8d:bc:8a:0b:ef:42:db:5c:64:01:97:
63:9d:5e:06:a0:36:8b:c0:f5:8b:28:62:e0:58:d0:1d:e9:81:
eb:9e:52:3d:bc:35:21:1d:66:7b:68:50:5d:47:23:51:0b:ba:
5d:f3:eb:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:07:38 2025 by rpki-client