Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
File: gSBe85sNP11y-h2XHUGR4Lomhr8.mft (raw, json)
Hash identifier: zVpS3Tc4qhFzwZHbrrHnRbmCUTkgWKmBq0pxUQkCpQI=
Subject key identifier: B5:19:4D:F8:97:F6:55:33:53:D2:A5:7A:D0:AD:5C:0C:5D:64:3F:1B
Authority key identifier: 81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
Certificate issuer: /CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Certificate serial: 01977ED600317238514EECE1659E9FC480DA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
Manifest number: 0C7E
Signing time: Tue 17 Jun 2025 17:00:43 +0000
Manifest this update: Tue 17 Jun 2025 17:00:43 +0000
Manifest next update: Wed 18 Jun 2025 17:00:43 +0000
Files and hashes: 1: gSBe85sNP11y-h2XHUGR4Lomhr8.crl (hash: Gb/aRgHLAghwAPcrOHQIDAq3INwsDnXxUiFY28CxJtw=)
2: tejhqyIYcfJnZD52AowM2BpZATQ.roa (hash: oI2/9MVukstCSiurn/ztv7Ci6tJsVocDaOvri7bb8FY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 18 Jun 2025 13:26:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7e:d6:00:31:72:38:51:4e:ec:e1:65:9e:9f:c4:80:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Validity
Not Before: Jun 17 17:00:43 2025 GMT
Not After : Jun 18 17:00:43 2025 GMT
Subject: CN=b5194df897f6553353d2a57ad0ad5c0c5d643f1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ed:cc:11:7e:27:38:95:80:48:27:83:e2:1f:
85:9f:00:5d:26:0b:df:21:1d:69:e9:21:e8:d2:7f:
a6:e6:05:d5:74:b7:2d:01:59:90:b6:95:3c:5c:81:
5f:1f:16:7e:12:ee:2e:18:c1:4d:ed:d6:74:ae:d3:
44:8d:3f:b9:12:0e:e1:b8:bb:b3:e1:c3:e5:d6:4e:
46:69:bf:ff:18:e3:7e:c7:4a:9f:0a:e9:7f:92:75:
46:1d:fa:17:cc:0f:45:3d:c7:0c:6f:e7:db:af:1a:
0b:e8:2c:38:2a:fc:c6:96:bf:59:8b:49:7f:8e:eb:
3e:18:09:50:df:4b:fd:0b:a6:ea:6d:23:cc:96:a5:
ce:f7:c5:5d:07:65:10:cb:29:15:29:5c:b7:ef:f7:
0a:38:82:cb:b3:e8:ee:01:89:77:a8:ac:4a:51:6f:
de:46:b6:4c:8c:c1:c5:0f:b4:b4:cc:da:a3:6e:9e:
22:72:f3:f4:8f:09:94:98:95:e8:3c:11:2a:ec:a7:
12:bf:61:10:c7:6c:72:ec:06:00:70:e2:ef:2b:94:
f1:dd:20:6e:5a:2e:d6:42:e9:b8:71:84:22:85:c9:
c6:ea:03:3b:ca:2a:de:a7:4b:79:df:b5:b0:e8:59:
8d:0c:7d:3a:f7:97:a7:d0:ea:a0:28:6d:98:84:d0:
45:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:19:4D:F8:97:F6:55:33:53:D2:A5:7A:D0:AD:5C:0C:5D:64:3F:1B
X509v3 Authority Key Identifier:
keyid:81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:99:53:f6:e5:0b:fd:f7:56:b6:2b:8f:5b:f2:24:bc:58:1d:
10:30:9f:ee:2a:ef:e9:d8:ef:0a:0e:bd:d9:92:4b:5d:37:7f:
43:44:85:24:45:5f:38:fb:d5:0e:aa:c5:26:91:b4:65:71:80:
76:57:2a:eb:0f:54:d9:b7:b3:c8:6b:d2:bb:83:fb:3c:6d:c2:
45:f9:76:fb:ab:e2:3f:49:e1:b0:e9:ef:6d:b5:b6:18:5b:ee:
15:d6:8a:55:08:5a:54:a6:fc:91:46:e1:ff:15:1b:a5:40:d3:
50:48:75:bc:7c:28:18:bb:b4:01:4b:41:f2:9a:6b:c8:08:8b:
92:e3:56:22:48:10:50:a9:ba:59:e1:81:6c:40:38:b1:40:d4:
00:db:81:92:cb:4d:9c:74:1d:d4:65:8f:18:fc:55:fd:b4:19:
4b:58:c1:c7:35:b2:d3:3d:b6:f7:88:12:e0:40:4f:d1:91:85:
db:a3:8e:95:22:ea:35:24:7b:5f:95:1a:9b:96:98:3b:d4:38:
02:fe:b0:17:e3:1b:36:b8:90:e9:17:74:a3:cc:22:23:92:bc:
cd:52:10:f6:db:55:3e:c9:4a:6d:9e:c6:60:69:88:d5:80:c5:
1b:73:ba:b7:f4:c2:62:fc:86:39:77:b5:cb:0a:59:87:83:f1:
65:9f:dc:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 20:47:23 2025 by rpki-client