Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
File: gXRkmx7wDcg8KFOaOdKQs1MO37A.mft (raw, json)
Hash identifier: 1yQXA1ffXpj7aLH9lrLl/gMpTeBSyNEpey287mA8/6A=
Subject key identifier: 55:34:BD:DF:FC:42:6E:3E:2B:30:31:56:3D:20:60:5D:7F:DC:80:8D
Authority key identifier: 81:74:64:9B:1E:F0:0D:C8:3C:28:53:9A:39:D2:90:B3:53:0E:DF:B0
Certificate issuer: /CN=8174649b1ef00dc83c28539a39d290b3530edfb0
Certificate serial: 0197B70EF8089C92C092ED0449B75B1A54C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
Manifest number: C2
Signing time: Sat 28 Jun 2025 15:01:40 +0000
Manifest this update: Sat 28 Jun 2025 15:01:40 +0000
Manifest next update: Sun 29 Jun 2025 15:01:40 +0000
Files and hashes: 1: GQ42kTqn472NU0Utg1aKLG7W0bI.roa (hash: oM3P06tzeH7/sG3RLnC5jVN3WHhv6hvEc5nYDWBm418=)
2: gXRkmx7wDcg8KFOaOdKQs1MO37A.crl (hash: UGu5f7LKwLx3uEZGBicjuiwkQ2kvohR1284XqfvhRiI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:0e:f8:08:9c:92:c0:92:ed:04:49:b7:5b:1a:54:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8174649b1ef00dc83c28539a39d290b3530edfb0
Validity
Not Before: Jun 28 15:01:40 2025 GMT
Not After : Jun 29 15:01:40 2025 GMT
Subject: CN=5534bddffc426e3e2b3031563d20605d7fdc808d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:89:cf:75:bd:3f:91:1c:5d:1b:66:5c:11:c8:
40:b5:e4:66:4c:0d:35:ce:9e:a5:e6:c3:b7:ee:17:
7b:63:e9:ba:3f:89:e8:a4:be:85:40:80:ab:63:54:
8d:84:39:d7:65:76:4e:9b:45:ad:89:79:5c:66:26:
09:89:6e:93:6a:4c:11:c9:3c:d9:c2:8b:19:be:cb:
0a:81:3a:b2:02:f5:19:8f:35:59:50:e2:c6:c5:03:
0b:13:47:5a:8d:0f:1e:6a:a1:2a:fa:97:7c:01:dc:
01:96:09:cc:53:a2:db:52:d5:0e:d8:f8:e7:08:7a:
c5:3b:7e:f9:e2:1d:ec:d6:df:3e:75:6f:de:11:32:
a9:64:ff:29:a3:27:f3:f9:43:dc:d6:af:8f:62:64:
07:61:c3:aa:56:fc:7f:72:71:1b:1a:88:4d:15:23:
36:01:62:fe:74:20:65:c9:e9:b6:54:85:6a:94:95:
07:41:2e:8b:4f:df:88:88:69:00:11:b6:04:ed:13:
46:e3:c2:ec:eb:3a:1e:b5:3f:e3:4a:d9:85:21:bf:
ba:70:42:20:8f:a8:b6:53:f1:f8:58:44:00:db:18:
c4:16:87:aa:b8:90:d4:64:0d:83:15:53:ff:d6:69:
b7:6c:b8:39:c5:af:4a:be:b5:44:0b:33:8d:60:e5:
39:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:34:BD:DF:FC:42:6E:3E:2B:30:31:56:3D:20:60:5D:7F:DC:80:8D
X509v3 Authority Key Identifier:
keyid:81:74:64:9B:1E:F0:0D:C8:3C:28:53:9A:39:D2:90:B3:53:0E:DF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:dc:9f:b7:a7:a8:a3:aa:bc:83:d5:76:6c:44:0e:00:de:c4:
c9:bb:db:db:54:3d:02:3a:e9:80:99:6c:a4:d3:07:82:0f:14:
b6:52:52:69:b1:b3:e8:1e:37:78:58:ff:89:fa:53:7f:b9:77:
63:20:cf:a2:ac:10:4d:0f:4b:f3:21:e4:00:1a:89:66:7e:47:
10:39:11:a4:df:c2:9c:5c:ef:8c:40:92:82:85:96:82:05:f5:
0e:2c:1c:1f:b3:3d:58:48:72:a2:fe:63:80:9a:4e:f7:fd:ec:
6e:ef:57:fa:44:f7:bb:84:eb:aa:a5:fa:de:49:2a:c2:f5:b2:
ac:26:a5:f2:ae:88:17:56:ce:99:66:3f:d5:33:35:80:ba:74:
7f:3a:3e:48:58:37:90:ba:3e:f5:1d:7b:9a:bf:1a:9e:37:d8:
1d:d7:a6:ea:2c:ce:cb:bf:92:0d:bc:e4:0a:39:8e:89:05:b4:
ad:60:70:59:8f:b4:1d:dd:fd:0a:d3:10:66:e1:30:fc:ec:16:
2b:ab:b6:67:f9:ab:13:59:6c:f5:eb:32:7b:1b:d4:26:21:47:
7a:c3:d3:6d:1d:8e:26:61:08:b4:59:c7:bd:79:44:09:45:f5:
2a:30:be:70:b4:1b:ec:b5:c1:42:03:20:cf:8e:74:89:1a:42:
56:d1:34:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:43:32 2025 by rpki-client