Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
File: 1GL5scD2-pylMXZOJtOu0hG_7YE.mft (raw, json)
Hash identifier: n9UqMekvktjAJznrbLXFaDsz/ydu85h+ouUhiBgKKQY=
Subject key identifier: BF:3F:00:50:C0:F9:2F:8C:CA:95:06:B6:6F:13:7D:BB:13:4A:2E:85
Authority key identifier: D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
Certificate issuer: /CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Certificate serial: 0197B9A1884B4A05F40E30CC885827DB3BDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
Manifest number: 0BD5
Signing time: Sun 29 Jun 2025 03:01:00 +0000
Manifest this update: Sun 29 Jun 2025 03:01:00 +0000
Manifest next update: Mon 30 Jun 2025 03:01:00 +0000
Files and hashes: 1: 1GL5scD2-pylMXZOJtOu0hG_7YE.crl (hash: rIGO6qe+pjitTyuAnVIqyvqda/Sq5FHLfChd24ar10s=)
2: CzS60ntrl-ifakYiPMHnNys_2hg.roa (hash: gJEVLSYuR5fsAEatKrGL8Os1DpygWBOtVxsvnHWW9x0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b9:a1:88:4b:4a:05:f4:0e:30:cc:88:58:27:db:3b:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d462f9b1c0f6fa9ca531764e26d3aed211bfed81
Validity
Not Before: Jun 29 03:01:00 2025 GMT
Not After : Jun 30 03:01:00 2025 GMT
Subject: CN=bf3f0050c0f92f8cca9506b66f137dbb134a2e85
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:76:78:7b:96:c1:f8:a9:a8:01:a6:9c:ba:bd:
7e:c7:48:46:2f:9b:23:c5:88:0e:4e:ef:fc:bf:3e:
56:77:8e:46:85:62:d6:c2:2d:cb:4c:ff:ec:0e:bc:
4d:a0:fd:69:e8:2c:49:9f:1a:db:b8:f6:f2:0e:9f:
27:79:f0:e2:d6:6b:e0:68:38:45:c0:76:ed:64:31:
13:4d:11:3f:22:65:0d:e8:87:6b:d7:a5:10:86:6d:
26:33:93:ec:e8:44:a6:a4:c4:f2:3d:00:72:21:8a:
f7:44:d3:12:77:4a:4a:0e:9f:42:38:99:a3:8c:0c:
97:1e:3f:30:1c:35:9f:f8:c2:bb:81:21:f7:2d:dc:
b6:2e:00:11:ef:de:e4:ce:ef:3e:12:e5:74:f8:45:
dc:47:bb:74:5d:5a:ab:db:8b:d0:e6:a4:6b:e5:05:
f8:80:0d:3e:a0:8e:27:42:02:dd:0d:d0:4e:81:23:
60:75:d6:c9:d4:be:e4:a8:27:8e:3b:e3:f5:a7:5c:
02:cc:c9:b3:3f:44:a1:65:fc:85:3b:73:1d:e1:d7:
44:14:46:e7:06:da:64:c1:2d:92:e8:8f:a4:3e:65:
85:b0:48:22:e4:f4:65:35:35:74:6b:9f:75:a0:bb:
14:3e:35:d3:2a:f5:e3:56:bc:60:55:32:88:51:68:
7f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:3F:00:50:C0:F9:2F:8C:CA:95:06:B6:6F:13:7D:BB:13:4A:2E:85
X509v3 Authority Key Identifier:
keyid:D4:62:F9:B1:C0:F6:FA:9C:A5:31:76:4E:26:D3:AE:D2:11:BF:ED:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GL5scD2-pylMXZOJtOu0hG_7YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/100c81-56f5-4db6-a66a-b1043b635a1e/1/1GL5scD2-pylMXZOJtOu0hG_7YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:bf:27:da:5b:68:24:5c:fd:86:c7:9f:c5:b4:62:52:aa:62:
b4:66:a4:2c:29:ec:ef:d1:76:7c:b0:ae:f3:ae:46:c7:67:2a:
74:7b:12:56:5d:1e:e3:0d:dd:b0:bc:e2:6c:35:11:e5:42:31:
3e:98:41:02:53:b0:c8:5d:99:00:97:20:50:71:c7:fe:df:62:
73:98:b8:7b:d1:1a:ef:25:00:b6:34:24:71:57:39:39:17:04:
e8:63:dc:95:d0:18:c0:ea:71:4e:be:25:a5:e4:c2:b5:66:79:
01:77:3d:b6:f8:16:a6:72:ec:77:b0:f5:60:4a:50:6e:ae:f2:
5d:44:ac:e8:79:69:f2:6b:ef:60:4a:03:04:e9:8c:1e:96:6b:
63:1d:e2:a0:e8:53:34:f9:37:ef:96:9c:5d:95:53:89:0d:0f:
ee:43:bb:49:d6:c7:c6:c8:f9:9b:de:13:e8:ec:98:1a:aa:ed:
08:da:33:62:ec:c7:75:13:a2:d3:58:b5:49:a2:c1:0e:9f:8d:
8e:10:71:59:b3:e9:14:e6:4c:2c:9c:bd:88:c1:66:98:0f:c1:
93:cb:86:f7:89:0b:64:95:ac:dc:17:bb:03:71:d6:8c:1f:ff:
9d:a7:63:40:f3:08:c7:b1:62:00:97:2b:40:49:b3:f0:59:f4:
69:a3:b1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 06:36:31 2025 by rpki-client