Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
File: gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft (raw, json)
Hash identifier: uNAXoa6geSLGSW3/gykHcx1vMO+DWa4mmjvsI93seto=
Subject key identifier: D5:33:2E:17:A0:C8:83:12:0B:A4:6E:FC:0F:97:6C:76:43:84:B9:B6
Authority key identifier: 81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68
Certificate issuer: /CN=8166038385b343d55e76b728efe23c0731787668
Certificate serial: 0197CCBA4CC50158315296405D242E26B72C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
Manifest number: 0EC1
Signing time: Wed 02 Jul 2025 20:00:50 +0000
Manifest this update: Wed 02 Jul 2025 20:00:50 +0000
Manifest next update: Thu 03 Jul 2025 20:00:50 +0000
Files and hashes: 1: 2iJw4EQoXKQlcgvYyAFZ8L2PyY4.roa (hash: iiK5pamhZGxd1XFCTcN85Gnci+JOI25h5MBN1jWndgw=)
2: gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl (hash: nZKKjeDEDPQR7M8ypLwoXrP7EGFaty6m65BPRFwzRHY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 03 Jul 2025 20:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:cc:ba:4c:c5:01:58:31:52:96:40:5d:24:2e:26:b7:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8166038385b343d55e76b728efe23c0731787668
Validity
Not Before: Jul 2 20:00:50 2025 GMT
Not After : Jul 3 20:00:50 2025 GMT
Subject: CN=d5332e17a0c883120ba46efc0f976c764384b9b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:e7:e0:51:8e:c5:b3:e7:71:d2:fa:16:ca:9c:
8a:3d:9b:08:15:65:f5:df:c4:30:86:46:3a:fc:51:
48:7d:c8:15:e4:dc:18:29:b5:ef:f2:96:08:34:30:
e0:03:8a:2d:5a:e1:85:d1:6c:2b:b1:8d:48:e3:aa:
36:04:92:7b:61:0e:f8:00:9c:7a:db:87:68:26:47:
32:5e:10:88:64:c7:76:42:5a:ff:6a:a0:8a:b3:be:
ec:cc:0b:b3:09:5d:48:f7:db:ad:ec:c6:37:13:e9:
4f:0c:70:bd:36:0f:d0:a4:17:7e:2c:44:63:0d:2f:
e7:73:a2:e6:8e:c2:2e:3c:ea:0c:16:75:1a:8b:01:
73:5a:dd:17:26:90:04:69:fe:c2:85:90:0b:3a:6d:
62:36:7b:dd:64:b5:2b:9e:8f:7d:aa:ff:07:f0:6c:
ef:53:c9:3c:22:6b:24:9b:49:d7:c2:9f:b0:1b:21:
3f:6b:f9:72:7f:4f:fc:0a:28:e7:fd:ad:e2:5e:87:
a3:95:ee:77:ba:9c:a3:3d:b4:53:f6:d9:7b:5c:7d:
33:4a:85:ce:23:55:79:e5:d0:6f:88:28:4b:5d:f6:
ef:d0:4b:28:82:ee:67:20:09:9c:e3:4f:88:0e:d9:
87:79:7e:11:76:de:8a:a2:c0:b8:d8:47:6c:6e:c0:
5b:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:33:2E:17:A0:C8:83:12:0B:A4:6E:FC:0F:97:6C:76:43:84:B9:B6
X509v3 Authority Key Identifier:
keyid:81:66:03:83:85:B3:43:D5:5E:76:B7:28:EF:E2:3C:07:31:78:76:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gWYDg4WzQ9Vedrco7-I8BzF4dmg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/48cfd0-3238-4aaf-b663-4373b65790b8/1/gWYDg4WzQ9Vedrco7-I8BzF4dmg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:1e:30:79:6b:3c:1d:99:52:f4:c3:b5:df:bb:88:34:5f:75:
eb:f3:d8:0f:54:bf:32:a6:ea:a3:7c:23:af:55:dc:10:4b:ed:
87:8c:a8:d9:9a:bc:fd:27:b1:01:57:da:7d:e7:32:98:49:2b:
92:5f:13:54:b9:dd:80:e3:34:69:df:5f:03:aa:3e:3f:9e:d9:
ee:46:49:47:5e:77:3d:c9:38:0f:c8:8e:e6:1a:2e:19:fb:b9:
a3:3f:ab:92:f8:32:57:39:03:0a:14:b3:4e:f8:98:a8:78:3f:
3a:66:cd:67:d6:27:d3:bd:da:90:ad:f9:f7:d7:ae:51:1a:41:
2a:bc:ed:be:b6:4a:2e:24:f6:8d:84:7f:03:7e:03:23:bc:7a:
78:fe:56:e8:8b:f2:29:69:41:fc:f0:87:c7:ed:49:df:79:86:
fb:c7:ac:ca:9a:7d:b3:84:39:69:5c:f6:39:12:40:63:4c:c7:
bc:5c:0c:fa:5f:45:cf:a8:0c:ec:83:f2:39:d6:03:68:64:21:
61:86:08:71:14:54:c6:05:fe:b4:cd:de:11:a6:06:b0:ee:39:
a0:0e:93:2f:5b:f6:33:0c:48:26:1d:f2:4c:d2:bf:90:b9:89:
ea:ea:90:67:1b:04:14:44:45:2a:87:a9:5a:a7:0a:47:7b:dd:
71:0a:6a:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 3 02:54:02 2025 by rpki-client