Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
File: ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft (raw, json)
Hash identifier: 6GZR7cZKSTHWvNXGG3T6BExmoE/iDNruZ3Ij78Ptv3w=
Subject key identifier: 2A:DA:2B:2C:07:EF:5C:AE:C4:C2:6B:D0:5B:99:39:1A:3D:93:88:28
Authority key identifier: 82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD
Certificate issuer: /CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd
Certificate serial: 0197B6A0C6AD27BA25DC3527C3C0A91FC4D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
Manifest number: 079B
Signing time: Sat 28 Jun 2025 13:01:19 +0000
Manifest this update: Sat 28 Jun 2025 13:01:19 +0000
Manifest next update: Sun 29 Jun 2025 13:01:19 +0000
Files and hashes: 1: ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl (hash: cQ67Bitq801pd5/bYPUicfuirZP5CpoW6AcWPsIJbT8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 13:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b6:a0:c6:ad:27:ba:25:dc:35:27:c3:c0:a9:1f:c4:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8214dc48b3e919e55ce8184d3a9690d14925bcbd
Validity
Not Before: Jun 28 13:01:19 2025 GMT
Not After : Jun 29 13:01:19 2025 GMT
Subject: CN=2ada2b2c07ef5caec4c26bd05b99391a3d938828
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:f2:c5:85:67:1c:11:3e:61:af:60:c6:f8:9d:
08:91:90:75:fa:b2:ff:aa:d4:e4:fe:36:b5:9c:a2:
0e:c2:49:42:64:bd:3c:e0:32:54:5f:e7:b7:3b:d1:
56:7a:24:f0:b6:44:c4:c5:11:51:78:dc:93:5c:2c:
4b:9e:9c:8c:eb:4d:4d:b8:15:24:13:c7:48:4a:91:
dc:26:82:57:d9:b0:7b:cb:cf:67:29:4a:58:bc:50:
db:9b:ef:bf:93:93:94:66:bf:3a:8b:d9:81:2e:b6:
56:66:5a:c5:a8:03:cd:04:bc:88:3c:13:c4:9f:34:
77:03:0b:6f:5c:34:81:eb:70:68:60:47:0c:94:17:
96:f3:ba:0d:5b:b5:51:5a:97:8c:69:bc:c5:3d:1b:
1e:50:43:77:39:45:3f:c7:52:72:99:b9:4a:80:32:
1b:b6:69:46:3a:cd:3b:f4:b2:89:0e:3a:d1:09:4a:
d0:c7:6c:62:dc:3c:07:e7:de:be:e2:a0:2f:e0:85:
17:cb:27:8a:b5:72:f1:c0:71:3a:a4:d2:62:db:79:
78:c6:8f:73:8c:6a:7c:62:51:08:70:68:dc:b8:4f:
98:f0:dc:50:d1:71:22:1c:3e:06:a8:e6:ca:a1:ec:
fa:d9:f2:e7:a1:94:dc:78:0e:7f:01:85:84:2a:ab:
78:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:DA:2B:2C:07:EF:5C:AE:C4:C2:6B:D0:5B:99:39:1A:3D:93:88:28
X509v3 Authority Key Identifier:
keyid:82:14:DC:48:B3:E9:19:E5:5C:E8:18:4D:3A:96:90:D1:49:25:BC:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghTcSLPpGeVc6BhNOpaQ0UklvL0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/2a7a18-8d4a-4e81-90a0-fbc026917f62/1/ghTcSLPpGeVc6BhNOpaQ0UklvL0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:07:56:2c:8e:8f:75:4c:2e:7c:09:38:ae:0a:1d:10:39:86:
8d:11:70:b1:f9:4e:18:91:46:c4:97:fe:36:8a:6a:78:59:30:
ef:d3:6e:f8:29:48:6f:97:0e:cf:00:25:01:2c:c7:7a:8c:a7:
8c:5e:fe:3b:ab:b4:3d:49:df:75:a6:58:a5:be:33:44:ea:e6:
5f:44:ca:1c:e4:f0:41:af:c4:03:57:4c:39:22:98:f7:35:5a:
88:65:d8:8b:73:16:9a:9a:60:4d:c6:a4:d6:b1:14:0b:84:44:
d8:8b:ae:36:17:d0:a4:f5:c5:e4:ca:20:7b:1b:0e:71:4a:6d:
72:a6:35:04:29:53:23:ab:d1:8f:4a:75:ed:6a:92:36:c9:f4:
c8:9c:63:d2:8b:ba:e5:6a:21:0f:7f:fe:33:a8:84:3c:40:29:
5c:68:5e:31:e1:dd:13:70:de:d0:5a:b3:e6:01:48:bc:95:65:
af:ef:85:a4:17:cc:7c:20:8f:b1:4c:7a:94:75:c8:b6:71:7d:
d7:ce:9f:5d:e0:57:7b:3d:f4:38:16:19:e8:57:c3:df:22:13:
2b:70:f6:c2:2a:9b:d7:25:39:0a:49:69:75:ba:5e:08:06:73:
b3:31:7d:e0:a0:b1:04:9e:7d:d0:de:71:e3:66:10:00:59:2a:
e1:3d:4f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 22:15:48 2025 by rpki-client