Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft
File: Gvq72Ih6kieJRewu74JDoSlq33g.mft (raw, json)
Hash identifier: 8LfhOY6vbf3DuHgB0WbQ9zBYD0PyZtHbZbVhpOyMS5Q=
Subject key identifier: 2D:3F:DE:8A:CE:2F:4E:69:B4:A8:FB:80:C1:1B:F1:3C:FE:52:CD:71
Authority key identifier: 1A:FA:BB:D8:88:7A:92:27:89:45:EC:2E:EF:82:43:A1:29:6A:DF:78
Certificate issuer: /CN=1afabbd8887a92278945ec2eef8243a1296adf78
Certificate serial: 01988166A480F14E6E9721EAACC3FCED6940
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gvq72Ih6kieJRewu74JDoSlq33g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft
Manifest number: 161B
Signing time: Wed 06 Aug 2025 22:00:44 +0000
Manifest this update: Wed 06 Aug 2025 22:00:44 +0000
Manifest next update: Thu 07 Aug 2025 22:00:44 +0000
Files and hashes: 1: Gvq72Ih6kieJRewu74JDoSlq33g.crl (hash: j6bwVr812PnlAfVaex9xmhu/LU17U4ajp0hedVJ7MWY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gvq72Ih6kieJRewu74JDoSlq33g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 20:46:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:81:66:a4:80:f1:4e:6e:97:21:ea:ac:c3:fc:ed:69:40
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1afabbd8887a92278945ec2eef8243a1296adf78
Validity
Not Before: Aug 6 22:00:44 2025 GMT
Not After : Aug 7 22:00:44 2025 GMT
Subject: CN=2d3fde8ace2f4e69b4a8fb80c11bf13cfe52cd71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:a6:10:4e:d7:0e:2f:15:3a:64:77:44:31:5d:
f2:90:f9:f5:19:ec:86:ea:bd:92:67:74:a9:4a:eb:
96:94:d9:7f:fb:f5:7e:ad:d7:47:b7:60:75:49:c7:
16:e8:83:e3:5b:1b:1d:8c:d2:df:b9:46:b1:e5:32:
9d:a2:22:7f:d1:21:54:dc:94:7a:6e:2d:ee:e5:84:
51:bc:67:a0:1d:be:2c:69:75:e1:4f:13:d1:0e:e5:
93:55:1e:4b:35:96:10:d7:bb:7a:d9:54:e9:5f:7c:
35:90:74:a0:bd:6b:8a:a7:34:d6:4b:fb:89:25:46:
76:77:83:ec:92:f4:b0:8d:2e:72:a7:75:e2:b0:93:
07:46:49:ec:96:63:97:05:77:7b:09:a0:52:e0:6a:
e8:95:76:e0:07:fe:8f:01:63:ef:f7:bd:1d:d1:3c:
77:52:fe:18:e4:28:8e:08:7f:be:44:79:e0:b5:e4:
74:fe:ef:b0:de:1b:64:09:0a:b4:2c:bc:f3:23:5e:
53:3b:22:08:d2:aa:77:10:6b:3b:67:06:7c:cd:20:
b8:ff:0f:5d:9d:17:6a:6d:18:0a:13:65:cf:f1:87:
bc:e4:e3:b6:03:4a:6c:44:7f:26:7e:17:3f:0d:92:
c7:4d:96:3b:fe:04:fc:fe:65:50:70:48:15:4e:8a:
f6:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:3F:DE:8A:CE:2F:4E:69:B4:A8:FB:80:C1:1B:F1:3C:FE:52:CD:71
X509v3 Authority Key Identifier:
keyid:1A:FA:BB:D8:88:7A:92:27:89:45:EC:2E:EF:82:43:A1:29:6A:DF:78
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gvq72Ih6kieJRewu74JDoSlq33g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/df7a4c-2548-40dd-900e-516065b6cfa5/1/Gvq72Ih6kieJRewu74JDoSlq33g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:44:5c:81:bf:27:14:f2:3a:aa:ca:81:2d:67:94:4e:37:80:
fc:95:c2:d0:09:dd:9a:38:69:a2:ba:e2:1a:df:8f:c4:0c:41:
cd:51:01:46:db:4a:08:59:b3:a1:ff:4d:fd:a3:9b:d2:35:ef:
81:14:3c:fc:fe:b8:d6:a3:94:9b:2a:cd:14:a6:39:f4:df:51:
ca:17:67:c6:21:58:d2:5b:82:d3:b6:19:9f:8c:50:29:a6:a7:
be:ed:cd:0e:21:df:65:09:46:42:14:b9:d6:e6:a8:ae:7a:92:
d7:2c:0d:1d:c0:d4:9e:b4:0c:1c:ca:79:13:50:cd:92:7d:34:
4a:60:24:50:09:91:24:1d:96:19:c4:fb:01:dc:5e:33:c1:db:
df:f7:0e:1f:6e:6c:22:b9:6a:7a:54:28:af:44:f5:48:b0:17:
18:40:17:62:79:08:4e:89:a1:51:99:53:7b:58:9d:1d:fd:e7:
e7:44:4f:5d:84:14:c3:0c:58:83:d2:d0:36:86:3b:2a:df:30:
0a:57:cc:a9:03:3b:e3:a5:59:92:0e:c2:39:6f:b0:d0:9d:2f:
20:1c:b1:90:52:d4:5f:ea:b3:bc:ec:82:32:1e:27:f6:ad:b0:
5b:7c:c2:4d:dd:9b:dd:55:88:13:ac:62:c7:c5:10:0e:66:c6:
63:41:59:87
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 7 05:03:01 2025 by rpki-client