Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: RoyXGulHC4UzzYYv6T3x54wzw1A/v2biEdnM3WqV0do=
Subject key identifier: 05:71:D1:AE:82:AB:78:B8:D6:ED:29:79:24:8B:C7:F5:DC:51:B1:5D
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 0197692A16E8E9474CB154A729D70FED027C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 1520
Signing time: Fri 13 Jun 2025 12:00:55 +0000
Manifest this update: Fri 13 Jun 2025 12:00:55 +0000
Manifest next update: Sat 14 Jun 2025 12:00:55 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: D4jr4ov2gRssqq03JnkfhoPQY0UiTV3HJO2AWfX8ZqU=)
2: pucl_qoNJsFNHYReBDscEGdx2N0.roa (hash: SiJfUuqs3fjKSI6Mo6WtKDUOtA0gOnKfbqvupwDeWPw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Jun 2025 12:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:69:2a:16:e8:e9:47:4c:b1:54:a7:29:d7:0f:ed:02:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Jun 13 12:00:55 2025 GMT
Not After : Jun 14 12:00:55 2025 GMT
Subject: CN=0571d1ae82ab78b8d6ed2979248bc7f5dc51b15d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:8d:3b:3c:d7:36:70:f5:ca:65:c7:87:3f:a6:
e6:2f:bd:5f:b0:75:69:63:bf:e1:05:42:f3:56:a3:
d2:1d:14:ae:8f:5a:73:f3:07:1a:2e:d4:bc:d8:36:
c6:e7:ec:10:71:50:37:94:fc:16:4c:e6:c1:80:9f:
85:01:31:48:2f:86:72:65:f5:63:80:0a:74:b6:8d:
eb:2c:dc:5d:4b:78:f0:34:30:2b:ed:4e:b9:2d:7f:
18:3d:e4:9c:f1:1c:97:90:3d:74:3c:c7:18:47:32:
65:14:49:7f:d8:8f:6d:46:7e:c4:06:20:7a:91:86:
40:9e:cf:76:00:d0:80:3c:aa:d9:9b:3d:d6:a4:2b:
18:09:02:bc:1f:c7:9d:75:14:e7:b4:52:27:9a:c1:
f1:e6:69:2d:73:50:de:c3:a3:c7:8b:02:f6:bd:18:
fe:50:02:af:a8:9e:d0:f0:94:f1:f8:e9:5d:75:e4:
bd:d7:41:32:39:0a:18:69:cc:86:b5:02:c6:fd:f4:
52:3c:64:21:68:b8:2d:29:0e:bc:17:d9:81:94:7a:
fd:6a:0f:da:0d:70:de:c9:e3:a1:7e:6f:be:81:0f:
30:14:d5:2c:af:95:f6:75:1b:f2:90:62:43:eb:39:
4e:c7:0c:7a:ac:34:ae:8f:4b:73:f7:01:81:46:93:
21:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:71:D1:AE:82:AB:78:B8:D6:ED:29:79:24:8B:C7:F5:DC:51:B1:5D
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:0d:4c:3c:62:14:d3:ad:b5:06:f2:d7:04:b1:c4:fb:c3:9c:
ba:49:54:6c:66:f1:69:ff:e9:d4:be:75:92:77:76:e7:e6:09:
50:6e:d3:ea:6f:74:9c:8f:4f:1c:75:f4:bc:d0:e1:15:7c:a3:
c7:a4:fe:8f:23:0d:7d:63:bb:b0:1d:ba:f6:ae:16:47:87:2f:
fa:de:99:ca:c1:09:ca:e8:09:c9:07:fd:96:ef:e1:0b:73:14:
cb:93:73:5c:e6:38:05:50:9b:74:29:99:c0:76:06:24:82:b5:
e2:d4:a0:11:5e:d7:de:9e:d9:c3:c1:f3:0d:50:eb:f6:33:7d:
61:5d:87:6d:a7:27:1d:9e:47:b9:a6:d8:6c:4d:9b:89:46:9c:
46:03:6a:f8:23:73:2f:b3:29:de:3e:5c:1e:5f:d2:9f:ee:0e:
bc:f8:c8:b5:93:f2:40:63:f9:72:6d:51:32:ce:0a:47:48:60:
0a:d3:4a:a2:4c:86:d3:c3:48:c4:1a:7b:e1:fe:48:6b:2b:e1:
cc:51:0e:fb:3a:98:60:8d:37:e9:07:7e:bf:1d:3d:f3:04:cf:
89:b0:92:1b:6e:f6:7c:32:71:4c:24:de:bc:73:b0:1e:01:0e:
aa:de:9d:3e:86:06:10:da:e4:79:d0:25:7f:bb:ce:20:03:1e:
4d:da:38:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 13 19:01:49 2025 by rpki-client