Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft
File: G_GA7KTkQF6Heotjkjp1iNd-OdI.mft (raw, json)
Hash identifier: 6oj7avJ5K5uTHoV0lVYEiPiv/WZFdzYlfpDOa0edakA=
Subject key identifier: 69:2E:6A:F0:94:9D:CF:8B:16:25:A4:4C:76:DA:FD:17:27:59:FC:5F
Authority key identifier: 1B:F1:80:EC:A4:E4:40:5E:87:7A:8B:63:92:3A:75:88:D7:7E:39:D2
Certificate issuer: /CN=1bf180eca4e4405e877a8b63923a7588d77e39d2
Certificate serial: 01987E2F4A60527F6CA98FB33A9FCAF8DAF5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G_GA7KTkQF6Heotjkjp1iNd-OdI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft
Manifest number: 0573
Signing time: Wed 06 Aug 2025 07:01:25 +0000
Manifest this update: Wed 06 Aug 2025 07:01:25 +0000
Manifest next update: Thu 07 Aug 2025 07:01:25 +0000
Files and hashes: 1: G_GA7KTkQF6Heotjkjp1iNd-OdI.crl (hash: 46X0H1kvmWSoDRCYCMIdAAm3wvF66w+WEW+UQ0pB7Po=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft
rsync://rpki.ripe.net/repository/DEFAULT/G_GA7KTkQF6Heotjkjp1iNd-OdI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 07:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7e:2f:4a:60:52:7f:6c:a9:8f:b3:3a:9f:ca:f8:da:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1bf180eca4e4405e877a8b63923a7588d77e39d2
Validity
Not Before: Aug 6 07:01:25 2025 GMT
Not After : Aug 7 07:01:25 2025 GMT
Subject: CN=692e6af0949dcf8b1625a44c76dafd172759fc5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:8f:d6:1b:37:6e:eb:f1:e8:81:bb:b5:5a:3a:
54:5c:e5:e5:35:35:38:33:b2:3d:09:06:3a:20:75:
ad:22:b9:4d:6d:9c:6c:1b:53:ea:24:77:8b:da:c1:
72:d8:15:fd:9b:28:3d:ce:29:52:28:35:3e:db:64:
8b:3a:4e:a3:8c:e2:21:85:40:60:ac:fe:0c:98:0f:
97:e1:62:a6:b1:f9:1b:7b:87:e5:6f:16:e9:44:d3:
5e:78:87:3f:da:7c:29:92:d1:7f:6f:f0:b7:1f:5d:
45:e4:2c:f0:50:55:91:a9:6f:af:64:20:c1:8b:73:
c3:3b:42:66:1e:05:22:4a:f0:9a:a1:fc:36:9c:33:
77:0f:06:fd:01:c2:06:ff:39:93:73:23:c6:52:fa:
16:e1:70:d2:0d:43:0c:b6:bc:15:4c:c2:82:d1:db:
62:28:3d:a2:fa:12:44:f3:77:24:46:68:27:05:78:
1a:3a:e3:7b:e6:52:b0:fb:00:0b:f9:9c:71:36:c1:
07:1f:1b:0e:26:f1:a4:08:de:3d:0f:7a:e5:39:00:
1c:f1:96:97:3c:81:92:33:a1:fe:99:6c:db:5d:2a:
09:0e:e3:51:c0:90:4f:97:5d:13:9a:83:f4:6d:76:
f3:0b:2e:41:25:2f:d8:d9:e3:e4:cb:42:f0:cb:2f:
bf:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:2E:6A:F0:94:9D:CF:8B:16:25:A4:4C:76:DA:FD:17:27:59:FC:5F
X509v3 Authority Key Identifier:
keyid:1B:F1:80:EC:A4:E4:40:5E:87:7A:8B:63:92:3A:75:88:D7:7E:39:D2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G_GA7KTkQF6Heotjkjp1iNd-OdI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/e8922d-b304-4188-bda6-dc6b1ff72c18/1/G_GA7KTkQF6Heotjkjp1iNd-OdI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:23:1e:f4:c6:1f:9a:47:be:cd:a6:7e:e8:4b:0f:c3:43:0c:
33:5f:63:44:88:49:2d:be:c4:e9:a2:40:d1:3f:6e:f2:a4:e8:
77:5d:b8:31:d1:23:60:50:c5:36:92:0b:f2:c3:26:38:f1:24:
33:d9:c9:87:f5:5f:57:4f:b4:1d:0d:07:35:23:39:d0:c5:61:
1f:03:63:fc:fd:86:60:60:5c:8d:55:b2:89:d9:52:e5:ae:fa:
8e:7a:b1:7e:65:32:23:5e:c6:42:2b:70:85:99:1d:71:62:a6:
30:d1:63:de:58:d0:18:86:ff:63:1e:2c:81:0f:3e:c7:26:65:
bf:21:0e:02:59:f5:1d:71:a4:ad:ee:62:3c:0f:8b:28:3e:f8:
c7:cf:6a:76:6e:8e:14:e5:72:9d:48:1a:38:3b:76:0e:cc:37:
a8:b3:15:23:95:f7:6b:5d:61:a6:02:df:28:53:eb:3a:c2:a6:
01:7e:e3:f7:93:c3:d9:f3:79:83:5b:0f:65:e7:5c:1d:de:7d:
f9:67:73:32:2a:27:42:bf:7e:a5:e4:1c:33:b5:e7:3e:e8:f1:
f5:ff:49:35:e3:02:b5:8c:ca:a2:84:9c:da:8d:62:0f:f5:c6:
30:98:35:fc:20:6d:e5:68:9c:6d:52:e9:d8:12:a5:d3:45:7b:
53:1b:1c:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 6 16:10:48 2025 by rpki-client