Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
File: gzVETFgRYcWIroS-AZZbyOg3gLg.mft (raw, json)
Hash identifier: gPDCVow1LUzDAXTNtJOikdgwwHqntNMPNPvVyqn9ZWg=
Subject key identifier: 2F:C2:BC:20:48:6A:A9:AE:CD:98:82:E7:1C:C8:06:50:BC:C2:7B:31
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 01976C990EAEF71148AEB97B0CBEC5D2D4CD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
Manifest number: 12B9
Signing time: Sat 14 Jun 2025 04:00:59 +0000
Manifest this update: Sat 14 Jun 2025 04:00:59 +0000
Manifest next update: Sun 15 Jun 2025 04:00:59 +0000
Files and hashes: 1: 52xHcZKMiLkJfC48D6ah-VZ8yTA.roa (hash: jrz3bp7KHkqbn8SdD2JCqFdwlcK3RRhyL/xchThJ/cc=)
2: gzVETFgRYcWIroS-AZZbyOg3gLg.crl (hash: dyCTeHeSw1YTNXNwm/1XGthZrwR5G3bhrSdUCLW6B5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6c:99:0e:ae:f7:11:48:ae:b9:7b:0c:be:c5:d2:d4:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Jun 14 04:00:59 2025 GMT
Not After : Jun 15 04:00:59 2025 GMT
Subject: CN=2fc2bc20486aa9aecd9882e71cc80650bcc27b31
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:3d:32:7f:c8:d2:47:b9:46:a0:cb:03:19:6b:
33:40:1f:5e:a1:01:6d:2e:c2:b0:ee:e0:0a:f2:f0:
d7:75:a4:ac:43:c0:8d:7d:1a:b8:b2:73:f1:e5:bf:
05:b2:03:40:fb:9d:05:c4:c8:d8:04:e7:30:13:1c:
83:b5:30:1c:b2:64:96:da:1d:71:86:dc:d1:cf:2a:
14:2a:de:68:c0:9a:6d:9c:12:40:99:eb:b1:f0:86:
2f:66:81:fa:4a:94:4d:c6:65:6c:23:1b:29:74:f5:
b2:8b:b5:5c:e9:71:d8:5b:f9:e6:e6:2b:c8:d1:df:
f5:16:7f:e0:b5:51:ca:1b:bf:3e:0c:2b:68:2d:af:
75:77:c8:67:90:0c:5d:bd:13:f0:af:18:99:88:c3:
f5:13:6d:ad:c0:74:e9:fd:f7:bf:1f:fa:cd:1c:f8:
d5:bd:53:cf:36:67:8f:85:05:4e:7c:85:f1:7e:2a:
b5:ef:70:88:60:a3:d3:63:76:b7:6c:2c:07:90:35:
57:a3:23:11:d4:87:c8:a0:e2:af:da:62:c3:06:63:
24:34:98:fe:4d:b8:17:87:47:8f:f6:f1:6d:7e:90:
97:f2:cb:96:95:09:32:1e:77:de:9e:a4:95:0d:d1:
66:ed:63:1f:9e:fd:e2:cd:52:91:a0:0b:92:68:0c:
53:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:C2:BC:20:48:6A:A9:AE:CD:98:82:E7:1C:C8:06:50:BC:C2:7B:31
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:fd:1c:be:7f:f7:00:c6:23:2e:a5:73:62:03:d8:bf:3b:1c:
4d:61:4f:aa:63:8e:51:0e:d8:bc:01:d9:ba:51:2c:79:b2:e9:
55:8e:0c:29:b2:54:c9:be:b2:e3:58:ef:91:2d:48:f8:12:6a:
50:17:ac:fa:c4:d4:8f:a8:36:3f:c4:e7:82:e3:fa:9f:30:c5:
9b:48:10:90:0f:9f:5c:ce:3a:2b:95:40:32:42:47:68:6e:0e:
bc:0f:f7:19:03:e5:e5:f2:50:aa:09:86:b0:df:0e:34:f5:b7:
f4:5a:70:b6:e9:25:78:88:55:0e:f8:70:d6:95:a7:67:31:d0:
f9:30:d3:0c:28:38:35:a6:a9:16:6e:c4:0e:6e:eb:b8:97:31:
a0:b9:16:fa:27:55:78:99:62:d8:d6:8d:47:f8:be:85:4e:25:
43:ed:03:72:79:23:36:88:29:0c:c6:59:ac:ec:50:d1:5e:cc:
f4:69:69:74:1a:a8:8f:30:74:71:0b:35:0d:a0:e0:45:02:43:
a4:2e:c3:d9:80:95:15:26:db:c9:fd:75:2d:1a:b7:6e:5a:b6:
84:c8:d2:7c:d4:3c:ee:78:22:40:66:df:d2:63:e5:ee:3a:ce:
43:af:e5:2e:a5:c4:42:30:48:01:8d:2c:71:9e:cc:d3:5d:ae:
6a:5a:0d:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 10:18:38 2025 by rpki-client