Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
File: gQrwAiUQayCW6bIdmsLyBAaI3qI.mft (raw, json)
Hash identifier: ljUsQ57qLG6a/DdM5ErXBIOeo8kjk0O+m7HHp6Z9iu0=
Subject key identifier: 51:45:7C:68:87:4C:42:7F:E9:4D:EC:59:A0:BB:DE:14:77:35:4F:91
Authority key identifier: 81:0A:F0:02:25:10:6B:20:96:E9:B2:1D:9A:C2:F2:04:06:88:DE:A2
Certificate issuer: /CN=810af00225106b2096e9b21d9ac2f2040688dea2
Certificate serial: 0197B820CA8ECC948C7CD2D9EE53AF617D96
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
Manifest number: 08FC
Signing time: Sat 28 Jun 2025 20:00:46 +0000
Manifest this update: Sat 28 Jun 2025 20:00:46 +0000
Manifest next update: Sun 29 Jun 2025 20:00:46 +0000
Files and hashes: 1: fvmPK9oBYawf3WrvWH2W-IrLack.roa (hash: jbyIzGoc+3nZMPPaYxP5PgX+7SvKTCObiN1ijSSrLNI=)
2: gQrwAiUQayCW6bIdmsLyBAaI3qI.crl (hash: hZK4UTQFU5Ly71ZIm7lhBqatMYwqHnPkp/6N8fVCjpY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.crl
rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:20:ca:8e:cc:94:8c:7c:d2:d9:ee:53:af:61:7d:96
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=810af00225106b2096e9b21d9ac2f2040688dea2
Validity
Not Before: Jun 28 20:00:46 2025 GMT
Not After : Jun 29 20:00:46 2025 GMT
Subject: CN=51457c68874c427fe94dec59a0bbde1477354f91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:d2:b6:09:d3:2e:6d:e3:c3:cd:2f:de:1f:43:
8b:b6:e8:bf:79:55:fd:f0:d4:5e:17:6c:4e:7f:22:
9c:07:b4:a9:1d:74:ab:18:b4:1a:49:59:5a:76:36:
3f:58:b3:97:a5:ba:0d:be:c5:1f:4d:a1:d5:91:0a:
bc:bd:37:b8:8d:65:6e:74:8e:6a:05:79:22:2e:9b:
77:80:8e:1b:81:eb:ca:e4:8e:ae:16:07:68:8f:e4:
a7:c4:77:ff:96:5e:3d:cb:56:4a:77:d9:9d:b3:7a:
77:08:da:60:fd:65:01:b5:ed:75:ed:4f:37:db:d3:
ed:22:7f:6e:19:c4:fe:67:ca:2d:da:73:98:ae:64:
ec:18:e0:f5:15:0f:22:56:48:66:d5:e5:f4:02:c7:
5d:84:e1:91:38:cf:33:91:f4:20:da:57:41:8a:78:
9d:bd:02:da:c4:01:b1:74:1c:8e:23:30:bd:20:2d:
2c:62:ae:5e:6f:14:68:d6:6f:55:14:ad:ef:0a:ce:
01:93:55:f2:ac:83:7e:e8:38:86:b4:f6:9c:4e:fa:
2d:7a:ad:d7:c6:51:78:40:fd:ec:4a:2a:61:d1:c1:
b0:dd:cb:26:81:f4:e1:4f:c2:fa:11:04:9c:bb:22:
fd:4c:fe:39:41:ce:e9:43:73:73:ed:4e:79:ff:c0:
d6:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:45:7C:68:87:4C:42:7F:E9:4D:EC:59:A0:BB:DE:14:77:35:4F:91
X509v3 Authority Key Identifier:
keyid:81:0A:F0:02:25:10:6B:20:96:E9:B2:1D:9A:C2:F2:04:06:88:DE:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gQrwAiUQayCW6bIdmsLyBAaI3qI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e8/442a9b-9ed7-493d-83f3-3ca488deee89/1/gQrwAiUQayCW6bIdmsLyBAaI3qI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:3e:0e:bc:f3:20:a1:4f:5c:30:0f:2c:5c:4a:c2:9f:89:0c:
25:23:37:52:8b:c5:cf:db:0a:54:63:3c:ec:af:10:cb:1f:aa:
21:9c:84:9e:9c:e8:f5:3c:cc:21:08:b6:7f:30:fb:de:ff:91:
84:96:f1:60:e7:48:26:57:e2:ca:06:2e:2f:0b:e4:f5:21:d3:
b9:97:d5:59:e1:bf:f2:b4:ef:75:4f:5e:3a:8d:87:e7:81:00:
5f:9a:c9:f3:fb:e1:71:b2:07:0b:99:cd:1c:e7:9d:6a:44:ca:
a2:49:56:fb:36:3b:f2:cc:17:29:06:22:7f:b0:32:48:1c:0b:
c4:98:db:b2:e8:f0:d6:14:24:b4:54:00:02:65:78:02:32:0c:
b6:70:99:c5:dd:c3:96:68:18:69:70:f4:58:e1:82:ce:8b:b4:
3c:f0:e9:7e:7c:58:4e:69:3a:0d:07:25:32:ca:68:5e:4f:50:
bb:15:f3:62:ae:cc:b2:ac:97:52:5f:7d:59:43:98:b4:d2:38:
ae:8a:88:fc:72:d4:4f:8d:7d:29:d1:b7:01:50:02:ad:ff:c3:
bd:4b:7d:fe:dc:51:cd:22:72:e5:17:9f:c3:0b:44:d9:8f:bd:
73:47:7f:9a:ca:b5:ed:7b:ce:5f:c1:b5:29:bc:08:ef:74:f1:
f8:d0:0f:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 28 21:50:24 2025 by rpki-client