Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
File: gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft (raw, json)
Hash identifier: 6EITyqUg/VRBA4UXoCCD9egli79FOJN9/CNN6+mZ0vc=
Subject key identifier: 01:4E:B1:33:62:A3:49:AB:B0:ED:90:06:A3:2E:6D:83:A1:10:6C:E9
Authority key identifier: 81:A3:6C:67:E9:A2:35:39:C8:15:3A:98:34:EF:83:E5:C1:8E:6B:72
Certificate issuer: /CN=81a36c67e9a23539c8153a9834ef83e5c18e6b72
Certificate serial: 01977B672926725C255083B314FB0CECBAA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaNsZ-miNTnIFTqYNO-D5cGOa3I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
Manifest number: 03DD
Signing time: Tue 17 Jun 2025 01:00:47 +0000
Manifest this update: Tue 17 Jun 2025 01:00:47 +0000
Manifest next update: Wed 18 Jun 2025 01:00:47 +0000
Files and hashes: 1: gaNsZ-miNTnIFTqYNO-D5cGOa3I.crl (hash: 26Qjj4f4b21S98q4qc2aGR6Tvct1WLer9RWCeRnjazg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaNsZ-miNTnIFTqYNO-D5cGOa3I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 01:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7b:67:29:26:72:5c:25:50:83:b3:14:fb:0c:ec:ba:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a36c67e9a23539c8153a9834ef83e5c18e6b72
Validity
Not Before: Jun 17 01:00:47 2025 GMT
Not After : Jun 18 01:00:47 2025 GMT
Subject: CN=014eb13362a349abb0ed9006a32e6d83a1106ce9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:50:45:5f:e9:cd:d1:e9:67:74:42:a6:0d:0d:
b9:0f:f6:4e:6f:df:e3:71:f6:f7:86:8d:ac:9e:35:
60:4a:8e:2d:cd:b1:8d:72:9c:b7:f0:88:59:3a:f9:
1b:54:0e:a3:80:10:75:f4:9e:ae:56:27:9a:1a:1f:
01:e5:fd:10:86:2f:2a:82:6c:fc:1b:fb:93:c6:4f:
6a:4b:fd:a3:6d:c6:b6:38:02:9b:98:a1:84:fb:a0:
7c:fe:0b:75:05:93:c2:19:38:83:e4:f5:cd:70:71:
ea:41:1a:f4:09:fb:84:f4:92:5e:3e:d1:c4:f8:45:
87:65:0a:99:22:8c:42:55:f2:f9:64:99:97:96:9c:
7b:5d:31:6c:5e:4e:30:a3:ae:0f:cd:ff:f4:98:d2:
df:72:19:1e:ac:2a:0f:7f:19:11:2c:29:12:90:89:
67:5f:15:89:4e:9d:3a:9f:49:db:8b:ae:69:fb:61:
45:e6:d3:ce:d3:10:df:0b:52:c5:b9:3a:7c:08:50:
13:19:f0:29:7a:59:18:d8:13:79:47:37:dc:b7:2e:
f5:41:0b:cc:b8:a0:36:2a:09:f2:3a:dc:7a:ab:a0:
a3:df:f1:da:dd:bd:d1:14:26:8a:48:7a:cd:43:44:
b7:81:ad:ce:0c:80:dc:1e:f3:65:d9:f4:8a:3b:74:
31:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
01:4E:B1:33:62:A3:49:AB:B0:ED:90:06:A3:2E:6D:83:A1:10:6C:E9
X509v3 Authority Key Identifier:
keyid:81:A3:6C:67:E9:A2:35:39:C8:15:3A:98:34:EF:83:E5:C1:8E:6B:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaNsZ-miNTnIFTqYNO-D5cGOa3I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/25cbad-6134-45b1-8b3d-eb569a8a210f/1/gaNsZ-miNTnIFTqYNO-D5cGOa3I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:7e:fd:25:9e:8a:47:c2:18:bf:5a:9b:ce:4c:b1:ab:45:31:
b8:25:5e:c5:63:69:f5:8c:79:c5:aa:52:18:35:ed:87:90:af:
75:f1:70:70:d3:f4:f6:7f:f6:c1:da:0c:dd:e4:69:d5:ed:fd:
b6:96:47:c7:32:fb:73:ec:3d:86:e8:cc:4c:5b:9a:18:e7:bb:
ab:ca:5c:04:ce:a1:3f:2a:1d:74:63:64:c9:bb:c1:52:41:c8:
8f:6e:90:1f:65:ae:3c:ff:ca:87:ff:47:13:04:83:77:17:91:
32:d7:ab:7c:f0:d1:99:3b:84:11:79:93:86:d2:33:fe:e6:8a:
ba:49:f6:7c:8c:47:7a:24:69:12:6e:3a:76:69:63:86:41:0a:
64:d6:f0:80:a5:e3:e4:69:94:7f:3f:87:c4:e9:23:12:a7:18:
1a:1b:b6:be:2c:93:06:92:62:2d:49:68:7d:d2:63:77:d2:78:
fb:ca:bb:9f:05:05:a2:94:b5:25:dd:5f:d0:04:c7:82:6e:43:
f1:df:b5:b0:79:55:8a:eb:07:ce:60:bc:3c:f8:fa:8a:b8:e4:
47:5a:0e:ac:da:9c:9c:62:b9:7b:c0:36:33:34:74:f9:66:6b:
f1:cd:75:d9:b2:21:be:74:2d:3c:5c:77:4a:1e:1d:77:58:cb:
1c:d8:97:c9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZd7ZykmclwlUIOzFPsM7LqlMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgxYTM2YzY3ZTlhMjM1MzljODE1M2E5ODM0ZWY4M2U1YzE4
ZTZiNzIwHhcNMjUwNjE3MDEwMDQ3WhcNMjUwNjE4MDEwMDQ3WjAzMTEwLwYDVQQD
EygwMTRlYjEzMzYyYTM0OWFiYjBlZDkwMDZhMzJlNmQ4M2ExMTA2Y2U5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1BFX+nN0elndEKmDQ25D/ZOb9/j
cfb3ho2snjVgSo4tzbGNcpy38IhZOvkbVA6jgBB19J6uVieaGh8B5f0Qhi8qgmz8
G/uTxk9qS/2jbca2OAKbmKGE+6B8/gt1BZPCGTiD5PXNcHHqQRr0CfuE9JJePtHE
+EWHZQqZIoxCVfL5ZJmXlpx7XTFsXk4wo64Pzf/0mNLfchkerCoPfxkRLCkSkIln
XxWJTp06n0nbi65p+2FF5tPO0xDfC1LFuTp8CFATGfApelkY2BN5Rzfcty71QQvM
uKA2KgnyOtx6q6Cj3/Ha3b3RFCaKSHrNQ0S3ga3ODIDcHvNl2fSKO3QxFwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAFOsTNio0mrsO2QBqMubYOhEGzpMB8GA1UdIwQY
MBaAFIGjbGfpojU5yBU6mDTvg+XBjmtyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2FOc1otbWlOVG5JRlRxWU5PLUQ1Y0dPYTNJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8yNWNiYWQtNjEzNC00NWIxLThiM2Qt
ZWI1NjlhOGEyMTBmLzEvZ2FOc1otbWlOVG5JRlRxWU5PLUQ1Y0dPYTNJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi8yNWNiYWQtNjEzNC00NWIxLThiM2QtZWI1NjlhOGEyMTBm
LzEvZ2FOc1otbWlOVG5JRlRxWU5PLUQ1Y0dPYTNJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYH79JZ6K
R8IYv1qbzkyxq0UxuCVexWNp9Yx5xapSGDXth5CvdfFwcNP09n/2wdoM3eRp1e39
tpZHxzL7c+w9hujMTFuaGOe7q8pcBM6hPyoddGNkybvBUkHIj26QH2WuPP/Kh/9H
EwSDdxeRMterfPDRmTuEEXmThtIz/uaKukn2fIxHeiRpEm46dmljhkEKZNbwgKXj
5GmUfz+HxOkjEqcYGhu2viyTBpJiLUlofdJjd9J4+8q7nwUFopS1Jd1f0ATHgm5D
8d+1sHlViusHzmC8PPj6irjkR1oOrNqcnGK5e8A2MzR0+WZr8c112bIhvnQtPFx3
Sh4dd1jLHNiXyQ==
-----END CERTIFICATE-----
Generated at Tue Jun 17 10:09:30 2025 by rpki-client