Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
File: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft (raw, json)
Hash identifier: 3AKOj4E8O8erk4lmFnhIcCJ+glEPI5XYcI8xytRUaIY=
Subject key identifier: F3:71:EE:1C:2D:AF:24:3C:29:82:C3:BC:A8:BA:69:0D:28:B5:AC:AB
Authority key identifier: 80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
Certificate issuer: /CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Certificate serial: 01977978EFC048DD2D207F55CE6BF7BC9ED3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
Manifest number: 1599
Signing time: Mon 16 Jun 2025 16:00:58 +0000
Manifest this update: Mon 16 Jun 2025 16:00:58 +0000
Manifest next update: Tue 17 Jun 2025 16:00:58 +0000
Files and hashes: 1: AlDLgq4a_thE-qXe6l8E_xWLXFc.roa (hash: 0ufopEuWXow9IQPbSAY5y6lUJPxjAppqenIRissIhOM=)
2: HbD_TR3_mqlACMnF4iTXIAuOjsg.roa (hash: T3tCAy3O2wLO9qO83uugLqRmkiFNSfdwlXWERB4+Mok=)
3: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl (hash: jpviCdoCGlOd5TmdlPAKndkmPEP8Ld1+lmB5B1G3pQw=)
4: h5Pey3t7ILGJvHcV0wlWm8IDgRE.roa (hash: /bmLdcY/7qOd0oeU6NCbdR7DKpvTkMz1r7GZ1d675P4=)
5: nId42Q0uPKxNBDzBg-GOcY-a01Q.roa (hash: 43G2ltR87FjAzlwjOiHc7NglbtaxLWslqx/bREI6WQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 16:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:79:78:ef:c0:48:dd:2d:20:7f:55:ce:6b:f7:bc:9e:d3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Validity
Not Before: Jun 16 16:00:58 2025 GMT
Not After : Jun 17 16:00:58 2025 GMT
Subject: CN=f371ee1c2daf243c2982c3bca8ba690d28b5acab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:24:83:cc:90:44:c2:e1:3d:71:f7:85:75:f7:
96:24:4e:39:2f:d7:3a:d6:d5:c5:e7:15:73:e1:1b:
01:7e:74:91:7e:e6:c8:f9:cc:36:f7:fa:08:6f:19:
e6:60:0d:91:c8:ff:0a:78:dc:15:09:20:a2:0a:f4:
42:27:91:57:f3:a7:7e:46:df:53:49:6c:01:c7:81:
f2:a4:a1:82:ce:14:ed:9e:d9:8a:21:66:8a:30:cd:
ec:1b:d5:5e:78:ff:95:e8:f1:30:57:7e:22:f9:25:
87:d4:05:9f:71:bb:eb:19:74:ee:14:f3:07:e9:74:
4c:db:c0:06:3d:d2:fa:5c:0d:f1:b7:a1:4e:68:93:
54:a6:6a:2b:22:37:32:0b:3c:fd:50:07:ce:e4:be:
12:7a:e3:37:c9:1d:7d:27:95:f1:06:3b:f3:ca:e5:
7f:ea:76:bf:ce:76:e2:d8:75:77:df:34:c1:ea:cc:
6f:8f:2f:c0:a3:12:ed:b1:b1:6d:8d:a4:c9:14:7f:
a6:49:94:4e:d3:7a:21:2e:32:10:10:5e:3c:8f:43:
0b:c9:c7:14:6f:a7:00:9c:a3:bf:80:bc:0f:29:51:
09:28:37:33:38:9a:ae:10:24:57:f0:3b:31:92:7c:
fe:78:c3:f0:3e:4d:84:ff:25:a5:65:08:de:c5:27:
14:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:71:EE:1C:2D:AF:24:3C:29:82:C3:BC:A8:BA:69:0D:28:B5:AC:AB
X509v3 Authority Key Identifier:
keyid:80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:18:d9:93:c7:51:a5:39:15:eb:9b:91:0f:0b:b0:35:b1:54:
0d:62:09:7a:37:86:f4:5d:85:60:24:df:6d:05:72:dd:48:cb:
37:8a:c9:82:3e:15:37:f2:b2:0a:c9:74:95:1c:75:ec:be:d0:
36:35:0b:74:df:ec:d2:23:3c:cf:fd:ea:79:04:35:54:33:da:
bf:85:30:75:ad:32:3d:77:1f:11:dc:39:a9:c9:f4:02:6c:aa:
34:90:e6:53:7d:b3:a6:35:f1:93:c6:f5:fe:01:00:72:65:f5:
0f:36:d9:75:22:52:ea:19:11:c6:fa:de:ae:be:54:bd:cd:33:
db:c4:ee:cb:05:34:48:e4:fd:49:40:de:f1:56:8a:91:54:4b:
12:68:76:5d:91:00:07:54:0b:a3:0d:e6:f2:62:aa:e4:23:49:
ee:10:a5:60:dc:81:2d:b9:c4:a3:b2:60:fa:c7:e0:ae:11:68:
88:8c:63:15:86:ca:9d:bf:5c:64:fb:7f:b9:a3:75:43:85:d3:
9b:a0:3f:f6:ec:07:b2:64:7b:68:94:c6:9a:18:be:e3:4e:b1:
47:75:48:cb:24:59:88:86:0c:23:20:23:6c:bf:88:7a:4a:46:
00:91:34:ef:94:29:b3:4c:06:42:74:2b:ec:32:de:9e:d0:4b:
59:f9:29:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 01:29:55 2025 by rpki-client