Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
File: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft (raw, json)
Hash identifier: qJG8/v9aQ8y4UV8Mi5F4VAdwvnbUJ9y+qgs3RL0SFOs=
Subject key identifier: EF:88:DC:AD:7F:5E:B1:56:43:98:00:85:E5:F6:38:D7:69:53:9A:9E
Authority key identifier: 81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9
Certificate issuer: /CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9
Certificate serial: 0197B74550F533F278F30E9DDDE748227A7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
Manifest number: 1474
Signing time: Sat 28 Jun 2025 16:01:02 +0000
Manifest this update: Sat 28 Jun 2025 16:01:02 +0000
Manifest next update: Sun 29 Jun 2025 16:01:02 +0000
Files and hashes: 1: Uq8gi0H23JLXKJO456NXYVIS4HU.roa (hash: q3fAHpVopvLMXAPFASnSatTw85vr7B/2nqisb3HGdTo=)
2: gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl (hash: EIA1qTEa77xW0DY/6AJC3kwh5TEl3swsNtKVWd3cSOM=)
3: iu1uLDkjA2lC4iCmh3mgoTg-ECs.roa (hash: J1M6seCPFdUQmcH1n+B1kmRcatuaeOrkFhV5roQrzQ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:45:50:f5:33:f2:78:f3:0e:9d:dd:e7:48:22:7a:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a2d0dcd50a682f975ea3d8c38e5e67bb0322f9
Validity
Not Before: Jun 28 16:01:02 2025 GMT
Not After : Jun 29 16:01:02 2025 GMT
Subject: CN=ef88dcad7f5eb15643980085e5f638d769539a9e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:ca:e5:d6:10:d9:c5:e8:08:3f:03:85:39:2d:
41:26:31:32:81:63:66:cb:c7:d9:da:44:21:ed:03:
9e:e0:f4:5d:51:8c:6f:51:5a:13:c6:0f:2e:38:c9:
c7:41:7a:14:ce:53:b6:c1:5b:31:66:95:14:cb:d4:
e9:4e:eb:28:91:80:1c:fb:b6:c3:76:b7:98:26:3e:
52:f6:82:6a:cc:93:cd:92:f9:b7:f3:14:83:f9:09:
05:dd:ab:67:85:ea:5e:c4:2c:98:01:ce:4f:75:6d:
07:f1:de:92:59:5f:56:be:8c:b3:d5:bf:3f:9d:d7:
00:c6:0f:df:d4:4b:86:d8:b6:b2:f1:0f:a8:d6:11:
d0:d8:59:43:8c:85:ed:16:65:37:40:e4:0c:e6:1b:
84:02:92:1c:7f:9e:51:0e:00:a4:e0:d8:f8:90:8d:
52:22:f8:53:82:12:ee:71:bb:c3:72:d6:f1:68:0e:
81:47:71:85:ad:88:1d:77:ae:3e:3e:49:6c:97:29:
21:7a:5a:15:27:8d:1e:6a:51:44:eb:27:61:00:10:
d4:4e:2e:eb:ef:2d:3b:23:fd:1d:1e:8b:d8:7f:4e:
3b:b7:28:9b:0c:23:70:a7:ba:df:c2:b9:4a:79:b5:
5a:5c:ef:42:3e:df:cc:14:9a:36:22:f3:af:15:b1:
0c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EF:88:DC:AD:7F:5E:B1:56:43:98:00:85:E5:F6:38:D7:69:53:9A:9E
X509v3 Authority Key Identifier:
keyid:81:A2:D0:DC:D5:0A:68:2F:97:5E:A3:D8:C3:8E:5E:67:BB:03:22:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/d25a72-bbe3-4ab0-9564-fe45d5160c39/1/gaLQ3NUKaC-XXqPYw45eZ7sDIvk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:cb:b5:dd:bb:fb:be:f9:4c:04:c8:5c:d9:00:a8:32:41:39:
04:87:58:5b:ec:03:36:77:bd:4f:0e:4d:5f:db:00:8d:00:b8:
01:79:45:21:37:0d:1b:2e:50:93:c0:00:d5:bf:5f:d2:43:42:
11:18:e3:6d:6f:0c:ef:4a:29:36:06:a0:f6:7a:ee:a7:69:af:
66:cc:47:ba:1d:68:63:7d:fa:b3:97:75:0e:fe:5a:31:24:82:
7f:ad:2b:7b:9c:09:2e:ab:db:61:99:f6:e7:b4:7a:d7:48:1d:
82:90:00:1a:9c:ee:cd:fa:b8:93:41:b2:c2:3a:9b:97:c0:33:
a8:4a:bd:07:b5:17:56:37:78:fe:35:ab:aa:06:e4:c1:e1:9c:
f0:10:94:b6:b7:4b:16:f2:ba:c8:38:cd:1c:73:bf:df:04:95:
8f:7a:c1:14:ed:ba:03:85:ea:93:57:eb:73:7f:3b:e9:5c:3d:
69:f6:bd:a4:76:a9:f9:c9:cd:51:7a:f1:89:f9:8f:06:3c:a9:
1a:28:ed:22:d9:be:83:98:41:52:14:29:28:b4:19:69:b9:0d:
0f:ad:b2:19:5e:61:05:cb:c9:16:e5:53:a6:2a:46:a0:e9:78:
ab:62:d3:4b:51:33:bc:53:83:94:49:7b:1f:df:01:85:18:b6:
2e:32:95:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:50:30 2025 by rpki-client