Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
File: GDDmA-nKjAXUwbxisLdue9nRiQk.mft (raw, json)
Hash identifier: 2pjn63e4VPU6mwM/3AyIYIhUsCGXJaKyAVF+afSb6Lg=
Subject key identifier: 7F:94:5D:E7:1E:81:3E:88:F9:F8:A4:BB:71:0D:23:5F:52:96:3F:BD
Authority key identifier: 18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
Certificate issuer: /CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Certificate serial: 0197813202AC0B1F6958E568286640F822C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
Manifest number: 159E
Signing time: Wed 18 Jun 2025 04:00:27 +0000
Manifest this update: Wed 18 Jun 2025 04:00:27 +0000
Manifest next update: Thu 19 Jun 2025 04:00:27 +0000
Files and hashes: 1: GDDmA-nKjAXUwbxisLdue9nRiQk.crl (hash: /e58NQELzyk5MNFW44IbHZGooIw7ChL8iKHQXHgYUq0=)
2: o4yUZzbKz_wfUkXyIRtz_sPdHfw.roa (hash: BiVeXsHTenn/poTYlXrG4Bvxv5uxzXwbjeteQc7yW9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 22:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:81:32:02:ac:0b:1f:69:58:e5:68:28:66:40:f8:22:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Validity
Not Before: Jun 18 04:00:27 2025 GMT
Not After : Jun 19 04:00:27 2025 GMT
Subject: CN=7f945de71e813e88f9f8a4bb710d235f52963fbd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:f0:12:94:d3:e5:f7:74:54:06:25:b4:3b:30:
49:1d:b9:f0:5e:6f:cc:d3:a7:16:07:72:d2:c6:25:
c7:5d:19:b2:27:1f:96:72:03:56:d4:6c:b1:06:9d:
5e:5d:cd:e3:59:87:72:ef:c2:d3:82:f1:9f:c5:28:
29:77:97:0f:f4:7e:47:57:41:78:4e:49:5d:05:04:
7d:55:94:0d:2f:69:60:60:db:18:1a:63:74:f2:03:
29:0a:32:d6:14:31:7f:80:d9:bc:37:b6:e1:44:82:
87:58:d2:eb:e8:a8:37:02:d6:0f:ea:69:99:7d:94:
ad:09:2d:f6:8b:4d:6c:40:e8:bb:92:1e:3f:f1:97:
67:54:2e:6b:8f:c0:a0:f1:4e:5c:88:ee:cf:fe:91:
39:82:d6:d9:ce:40:8c:81:2e:a4:bb:e6:de:ff:8b:
31:68:71:f8:a4:f2:73:3c:dc:26:18:20:8c:f0:63:
d8:fa:e3:b8:00:b5:cf:cd:10:ad:28:8b:11:15:86:
db:4d:1a:15:f6:5b:e5:a1:a5:96:a1:67:9a:ea:25:
68:ad:a5:bc:41:87:ca:58:f8:96:05:39:f6:ff:08:
1d:f7:b9:84:bb:5a:32:23:a5:c2:75:d4:94:4b:82:
31:eb:5e:4b:de:35:c9:3c:ff:2e:3d:6d:fb:ad:3d:
de:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:94:5D:E7:1E:81:3E:88:F9:F8:A4:BB:71:0D:23:5F:52:96:3F:BD
X509v3 Authority Key Identifier:
keyid:18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c2:dd:a9:49:b2:14:65:7d:a7:ee:3d:2d:9e:1a:54:75:78:65:
06:22:fe:5a:64:4c:35:d7:9f:a5:bd:45:9e:a5:bb:51:31:7e:
4f:b7:03:82:b0:53:8f:3b:3b:70:26:ab:30:88:a3:6d:28:f2:
b4:a7:38:0d:8a:b0:43:aa:8a:1e:30:75:9d:54:c6:d9:54:71:
d5:bf:63:8a:4a:07:55:99:72:3d:57:3b:3c:52:f1:75:5f:82:
91:1b:a2:2f:85:c6:06:03:cb:0e:13:86:4a:76:6a:b5:be:69:
0a:1d:ce:96:64:77:07:4d:04:3a:cf:02:fe:c9:8f:b8:44:d1:
de:44:15:8c:c6:29:5b:6f:36:96:48:4d:2d:80:97:8d:75:30:
d6:1c:55:08:6f:a7:3a:e7:1e:20:55:24:4c:d4:dc:a4:2a:b8:
8b:e7:93:2c:a5:f0:68:7c:21:e1:9b:38:62:a5:82:65:c3:76:
80:ec:c7:65:14:dc:bf:ec:c9:62:27:5c:a1:22:47:13:95:ae:
6d:35:c8:07:03:1d:6b:a8:b8:bf:7c:6b:80:91:76:8b:61:29:
8c:9c:9e:17:20:21:6e:ba:1a:10:bb:20:df:c5:85:1d:91:de:
70:8c:19:6b:ff:c9:46:87:78:67:41:4f:a7:69:2f:e3:89:e4:
58:49:b6:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 18 09:07:37 2025 by rpki-client