Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
File: Gwm9TWooxfH75oPPKs1ei_K65MQ.mft (raw, json)
Hash identifier: M7XtpY7NXPE48A9uAsuTWnAuvvKd/Dln7pf0aEtGfaA=
Subject key identifier: AE:7B:61:47:B0:8A:3C:5D:24:54:CB:F8:F5:26:29:C9:33:8C:CD:09
Authority key identifier: 1B:09:BD:4D:6A:28:C5:F1:FB:E6:83:CF:2A:CD:5E:8B:F2:BA:E4:C4
Certificate issuer: /CN=1b09bd4d6a28c5f1fbe683cf2acd5e8bf2bae4c4
Certificate serial: 0197B6A1D09E014B37CB6FF74461072AC672
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gwm9TWooxfH75oPPKs1ei_K65MQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
Manifest number: 037E
Signing time: Sat 28 Jun 2025 13:02:27 +0000
Manifest this update: Sat 28 Jun 2025 13:02:27 +0000
Manifest next update: Sun 29 Jun 2025 13:02:27 +0000
Files and hashes: 1: Gwm9TWooxfH75oPPKs1ei_K65MQ.crl (hash: H8r90KE83UhmcaOy3FhLqCWwZLOrVDPx6qFSZxXNXVc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gwm9TWooxfH75oPPKs1ei_K65MQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:d0:9e:01:4b:37:cb:6f:f7:44:61:07:2a:c6:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b09bd4d6a28c5f1fbe683cf2acd5e8bf2bae4c4
Validity
Not Before: Jun 28 13:02:27 2025 GMT
Not After : Jun 29 13:02:27 2025 GMT
Subject: CN=ae7b6147b08a3c5d2454cbf8f52629c9338ccd09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:3a:9e:be:55:36:cf:5b:44:02:3d:7f:2e:1f:
24:f4:8a:5e:7e:76:45:d0:59:e8:9f:dc:30:67:2c:
09:fa:7f:9d:b5:55:af:08:b4:3e:63:ae:52:4c:14:
02:5f:96:33:b8:33:87:b3:6b:18:71:4b:b2:42:52:
54:a0:f0:e0:8f:58:ca:23:29:54:79:31:12:2f:ca:
91:10:25:e9:dc:77:77:d9:6d:0b:2e:93:fb:08:38:
72:10:fb:af:e7:5c:2c:59:9c:44:3d:26:51:a2:bd:
2b:e6:d5:4c:3a:19:83:06:5d:34:7b:8f:bf:d1:9c:
3b:76:19:3c:e2:0c:fa:b2:b7:c7:b7:8e:a1:20:65:
af:cc:f6:d8:d7:e8:36:e7:47:5b:73:30:40:af:31:
1d:13:89:e0:0e:21:8e:7e:83:f8:b3:74:01:ea:6b:
95:a1:ca:fb:4f:41:17:33:7c:8c:84:25:cb:18:ee:
72:1c:8c:a8:5d:f1:01:be:73:41:e1:68:25:9f:f0:
19:c5:82:2f:34:41:8d:09:42:ac:22:9c:65:23:0f:
be:fc:d1:c1:0d:47:85:e5:d8:b4:2c:5a:3a:92:4f:
ee:8b:f2:ab:b7:7e:90:40:8d:0e:a9:10:4d:21:8c:
cc:7d:43:79:97:1d:f0:24:b2:00:32:49:58:e2:39:
b0:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:7B:61:47:B0:8A:3C:5D:24:54:CB:F8:F5:26:29:C9:33:8C:CD:09
X509v3 Authority Key Identifier:
keyid:1B:09:BD:4D:6A:28:C5:F1:FB:E6:83:CF:2A:CD:5E:8B:F2:BA:E4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gwm9TWooxfH75oPPKs1ei_K65MQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:5c:7e:df:4c:43:0e:f8:75:5a:2c:e0:70:fe:2e:35:84:95:
2b:ce:b0:0c:a5:f6:8e:bc:ad:64:70:09:52:9c:a5:cb:20:14:
7e:b3:96:cb:1e:49:98:11:0a:0b:43:3c:48:d1:02:b6:1b:5f:
21:6a:27:6e:06:56:9c:5d:90:4c:71:5b:6f:ea:57:a2:9e:c6:
15:0c:03:f9:c4:33:8f:72:e0:c6:68:a7:5b:de:fe:43:41:da:
d0:3d:73:72:f9:99:3d:56:f8:7f:82:6d:74:a2:09:86:f7:b2:
57:a4:f0:82:2d:7e:20:b8:a8:b2:4d:ee:4f:d1:bd:ff:5a:56:
55:db:7e:80:b7:ea:e9:c6:eb:77:b6:20:94:18:e7:41:8f:ac:
25:5b:e2:ff:d5:b5:27:eb:81:eb:63:77:e9:c7:da:88:9e:f3:
13:42:15:c8:8a:bd:4d:7a:c0:83:77:75:31:2e:0e:bd:44:7f:
d2:60:83:3b:a3:0f:d1:e2:26:80:5c:cb:db:03:a2:a9:a7:ff:
bc:b9:2c:e2:bc:2f:04:2d:70:77:a1:26:08:54:36:aa:49:20:
74:05:c4:86:6f:b4:35:cf:d8:19:63:cd:34:f9:eb:90:37:7f:
02:53:e9:3e:d6:8e:ce:31:bc:55:e9:7e:62:36:45:b1:72:d6:
4f:2f:87:07
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe2odCeAUs3y2/3RGEHKsZyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFiMDliZDRkNmEyOGM1ZjFmYmU2ODNjZjJhY2Q1ZThiZjJi
YWU0YzQwHhcNMjUwNjI4MTMwMjI3WhcNMjUwNjI5MTMwMjI3WjAzMTEwLwYDVQQD
EyhhZTdiNjE0N2IwOGEzYzVkMjQ1NGNiZjhmNTI2MjljOTMzOGNjZDA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzqevlU2z1tEAj1/Lh8k9IpefnZF
0Fnon9wwZywJ+n+dtVWvCLQ+Y65STBQCX5YzuDOHs2sYcUuyQlJUoPDgj1jKIylU
eTESL8qRECXp3Hd32W0LLpP7CDhyEPuv51wsWZxEPSZRor0r5tVMOhmDBl00e4+/
0Zw7dhk84gz6srfHt46hIGWvzPbY1+g250dbczBArzEdE4ngDiGOfoP4s3QB6muV
ocr7T0EXM3yMhCXLGO5yHIyoXfEBvnNB4Wgln/AZxYIvNEGNCUKsIpxlIw++/NHB
DUeF5di0LFo6kk/ui/Krt36QQI0OqRBNIYzMfUN5lx3wJLIAMklY4jmwyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK57YUewijxdJFTL+PUmKckzjM0JMB8GA1UdIwQY
MBaAFBsJvU1qKMXx++aDzyrNXovyuuTEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3dtOVRXb294Zkg3NW9QUEtzMWVpX0s2NU1RLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS84NmI1NGMtYjk4MC00ODE3LThkZjYt
ZGNlNzc4MWEyYzVjLzEvR3dtOVRXb294Zkg3NW9QUEtzMWVpX0s2NU1RLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85YS84NmI1NGMtYjk4MC00ODE3LThkZjYtZGNlNzc4MWEyYzVj
LzEvR3dtOVRXb294Zkg3NW9QUEtzMWVpX0s2NU1RLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIFx+30xD
Dvh1WizgcP4uNYSVK86wDKX2jrytZHAJUpylyyAUfrOWyx5JmBEKC0M8SNECthtf
IWonbgZWnF2QTHFbb+pXop7GFQwD+cQzj3LgxminW97+Q0Ha0D1zcvmZPVb4f4Jt
dKIJhveyV6Twgi1+ILiosk3uT9G9/1pWVdt+gLfq6cbrd7YglBjnQY+sJVvi/9W1
J+uB62N36cfaiJ7zE0IVyIq9TXrAg3d1MS4OvUR/0mCDO6MP0eImgFzL2wOiqaf/
vLks4rwvBC1wd6EmCFQ2qkkgdAXEhm+0Nc/YGWPNNPnrkDd/AlPpPtaOzjG8Vel+
YjZFsXLWTy+HBw==
-----END CERTIFICATE-----
Generated at Sat Jun 28 19:43:44 2025 by rpki-client