Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
File: GeBhVfweN2UrK3nJpTbS5hRNBPc.mft (raw, json)
Hash identifier: HRKnZSsKp9eVNKOAhxoQP6uILPPtWHsUFgPPVPrgDfc=
Subject key identifier: 1F:C3:4E:32:BD:19:0F:64:9B:D9:FF:A3:4A:C9:19:28:BD:B7:00:FE
Authority key identifier: 19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
Certificate issuer: /CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Certificate serial: 0197B6A12D27E01BE3219D678E4D60298E7B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
Manifest number: 0E1D
Signing time: Sat 28 Jun 2025 13:01:45 +0000
Manifest this update: Sat 28 Jun 2025 13:01:45 +0000
Manifest next update: Sun 29 Jun 2025 13:01:45 +0000
Files and hashes: 1: GeBhVfweN2UrK3nJpTbS5hRNBPc.crl (hash: QAygf2CF8eLLQjSq1RRrflblSQbBteuNY+srv+qO6rI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 10:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a1:2d:27:e0:1b:e3:21:9d:67:8e:4d:60:29:8e:7b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19e06155fc1e37652b2b79c9a536d2e6144d04f7
Validity
Not Before: Jun 28 13:01:45 2025 GMT
Not After : Jun 29 13:01:45 2025 GMT
Subject: CN=1fc34e32bd190f649bd9ffa34ac91928bdb700fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:08:97:b7:e8:95:62:c7:9c:d5:3b:57:4e:3d:
f3:46:4d:2a:9c:29:a6:38:c5:66:87:de:1b:26:d2:
ad:98:9c:87:78:d7:97:74:42:40:45:f5:23:17:08:
62:b8:ca:9d:06:e3:f0:02:f5:3c:95:42:21:46:96:
c1:7f:5d:e6:f3:09:d2:43:77:55:ba:3b:fb:38:ee:
ba:34:2d:18:a0:6c:88:6b:e0:c7:1f:22:46:d8:b8:
3a:4a:c3:24:18:22:98:bd:2a:77:fe:ac:c6:49:44:
99:68:ab:fc:e1:6b:8f:85:34:c1:2d:ad:b1:09:ab:
7c:b0:a3:f2:91:e5:1b:63:5e:f2:51:ef:9d:73:60:
9e:89:07:f1:f8:2a:a9:76:2b:36:a3:3a:f6:f7:ce:
32:9b:d3:ef:dc:cb:af:ed:a1:1e:a6:31:c0:f8:d8:
dd:b6:9f:36:76:46:2c:d9:74:e1:38:a5:0e:d6:cb:
49:39:18:93:17:0d:e2:25:0a:9e:ea:a7:a9:e4:bd:
2d:a6:72:95:06:f4:6b:65:3b:c4:16:7e:1f:e6:4e:
da:6b:0d:a8:5c:49:c2:33:04:67:ee:ea:46:84:37:
3f:52:3e:5e:02:b9:6b:11:ba:fe:c2:3b:0c:a9:f7:
60:fb:68:a7:36:41:ce:80:d4:33:0a:55:3a:f9:44:
46:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:C3:4E:32:BD:19:0F:64:9B:D9:FF:A3:4A:C9:19:28:BD:B7:00:FE
X509v3 Authority Key Identifier:
keyid:19:E0:61:55:FC:1E:37:65:2B:2B:79:C9:A5:36:D2:E6:14:4D:04:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GeBhVfweN2UrK3nJpTbS5hRNBPc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/bb85d7-7cde-4e1c-b9df-79eeb6321eb7/1/GeBhVfweN2UrK3nJpTbS5hRNBPc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:80:c0:3a:f3:cf:b2:0d:a6:e5:12:7c:9b:9a:6b:4f:26:98:
de:b2:17:6d:62:6d:fb:58:ba:9c:1c:e2:e9:d1:53:4c:a7:81:
39:3e:95:68:3d:94:86:f0:0b:7a:8b:2e:25:29:6f:d0:ff:cf:
11:51:c8:dc:ff:38:b8:83:f9:d8:af:ba:ac:ad:ba:85:8f:90:
26:58:2e:ce:42:71:02:fb:93:7a:38:80:eb:16:3f:c6:09:f1:
84:0e:28:a2:60:ce:50:ae:09:73:2e:74:b7:e2:16:0d:cd:4d:
a8:d9:9f:06:76:4d:ba:0b:53:5f:da:0e:da:95:12:d7:30:d6:
c3:3e:1a:92:90:5a:38:ff:5c:62:ac:90:4a:30:34:9f:5e:1e:
fc:df:2c:d3:6c:67:fb:02:f2:97:c5:af:c9:ac:e7:05:0a:9e:
39:33:4d:0b:08:f2:f8:1c:e1:44:8a:12:e5:5a:8c:b2:c0:5a:
0f:93:70:54:c7:db:d8:31:96:85:11:e6:c8:7b:46:1b:25:ee:
88:3e:76:3a:b0:9a:39:5c:06:3a:a3:ce:60:67:f0:23:20:70:
b5:ab:c6:53:49:97:00:4f:68:c2:f5:61:7a:66:5f:a1:21:6f:
89:04:5c:1f:f1:75:9e:b1:26:2b:e8:ba:d1:52:da:ce:73:80:
32:2f:d2:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 19:03:06 2025 by rpki-client