Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
File: GtYaUvEILs9Ml7USK0YRIlBzRRs.mft (raw, json)
Hash identifier: vKF+q/LDRt8QctUxBfBubiTBJqpGPa9oYDbg0O2Mbgo=
Subject key identifier: EA:DA:08:15:81:5C:F0:8C:8C:0C:63:AB:A6:D4:73:67:34:87:33:64
Authority key identifier: 1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
Certificate issuer: /CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Certificate serial: 0197B77C44D50FA41C7275472B399DFE2BA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
Manifest number: 15B5
Signing time: Sat 28 Jun 2025 17:01:03 +0000
Manifest this update: Sat 28 Jun 2025 17:01:03 +0000
Manifest next update: Sun 29 Jun 2025 17:01:03 +0000
Files and hashes: 1: GtYaUvEILs9Ml7USK0YRIlBzRRs.crl (hash: 3uKqwM843hX3JjwV1Tam3kT6Xzgpy/Ufr+InkGNHwts=)
2: rDCQZOSrxJZ5t1EHBcAmewJ2zuE.roa (hash: 5o5LCz2EfBpIGStnQttGujPIzxdxxRQF2IZp5UipRj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:7c:44:d5:0f:a4:1c:72:75:47:2b:39:9d:fe:2b:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Validity
Not Before: Jun 28 17:01:03 2025 GMT
Not After : Jun 29 17:01:03 2025 GMT
Subject: CN=eada0815815cf08c8c0c63aba6d4736734873364
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:7b:9d:31:00:cd:d3:4b:22:7c:63:c2:15:72:
9a:09:68:a5:ee:a5:99:e6:77:39:ca:84:19:24:e4:
5c:5e:08:15:28:92:d7:9c:e6:29:29:0a:2a:2b:9c:
39:94:11:3f:65:0a:9e:dd:1a:18:5e:65:28:1a:45:
fb:76:e4:e4:eb:39:f5:61:1d:bd:67:77:c5:e0:3d:
01:d5:eb:57:6d:46:9f:62:9b:9e:de:4b:0c:7e:e4:
28:cc:a9:0b:fb:73:10:1f:e3:59:5d:48:17:18:60:
6a:41:88:36:7f:cf:24:73:1f:10:7f:69:f6:8b:bd:
be:10:90:c6:37:d1:b1:a1:1d:f4:e2:a8:a0:84:38:
25:cd:32:58:b3:9f:19:05:e1:f2:cf:3e:3b:93:72:
2c:73:11:fa:92:d7:aa:68:fb:fc:2e:26:c3:47:f1:
a2:10:be:66:73:6d:6b:e8:c3:cb:22:05:d3:53:30:
bc:2b:72:0c:d2:4b:77:ef:a1:dc:17:9d:f9:5e:f1:
62:09:48:38:33:2a:5d:46:87:a7:3b:28:0e:44:40:
ec:aa:8f:c1:62:12:9e:c0:1c:3f:91:19:73:8b:a5:
3a:1f:ff:82:54:8d:d1:c2:0b:cc:6a:95:72:38:3f:
8a:7f:4a:1d:f8:54:50:11:4b:9a:9f:5a:ea:66:dc:
e7:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:DA:08:15:81:5C:F0:8C:8C:0C:63:AB:A6:D4:73:67:34:87:33:64
X509v3 Authority Key Identifier:
keyid:1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:b4:da:5c:07:97:89:e9:52:b7:41:99:e1:07:4e:63:dd:4f:
a3:e0:52:e7:e2:d5:04:1d:fe:64:20:31:b1:59:f1:29:0c:a7:
07:1f:9f:6c:40:51:8c:c4:75:fd:0c:e3:bc:34:4e:7c:45:de:
8b:0c:bd:19:a5:6c:21:f8:80:4e:17:64:23:9f:fb:ab:c7:0b:
f2:58:f1:01:04:4f:2c:88:bb:7e:82:28:00:39:d0:88:74:a1:
05:c3:bd:65:eb:4e:51:0b:37:6d:d6:f6:8d:70:ed:eb:c5:4e:
fa:d6:74:03:be:6d:dc:98:c5:01:87:a4:9a:e1:f9:04:fc:b7:
dd:c4:ff:9a:82:62:55:89:f6:06:a6:86:29:03:29:43:5e:7a:
d2:2d:e2:57:ca:9e:f1:4a:8c:78:40:d7:f2:a8:70:c9:51:4a:
4f:c2:02:93:22:9e:78:9f:cb:b3:64:f9:9b:ee:9e:36:8b:3e:
d4:cb:70:39:72:85:22:03:ae:71:e6:ac:89:e5:62:a2:8b:e9:
15:17:fe:df:5b:0b:54:5e:53:00:fc:d2:7f:cd:99:23:a5:67:
35:d6:a5:ce:7c:9b:df:ea:4c:c1:e6:c3:28:76:38:5f:2e:0f:
3f:d6:68:16:34:fa:e1:0b:bf:d9:47:f9:c5:45:b8:d0:c3:cb:
f5:e8:a3:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 20:59:06 2025 by rpki-client