Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
File: GHpwT0heEd7avFYmTl2AwUh-CEI.mft (raw, json)
Hash identifier: 47O6dPrpeelcNheXRoEsu0shdor1RgwcrtFgAMAiS9k=
Subject key identifier: F0:47:FD:E5:0B:2F:A8:D1:8C:BD:08:17:7E:11:16:C3:E5:32:0B:19
Authority key identifier: 18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
Certificate issuer: /CN=187a704f485e11dedabc56264e5d80c1487e0842
Certificate serial: 01976DAB79EDA29E0E347A35193A84DF793E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
Manifest number: C9
Signing time: Sat 14 Jun 2025 09:00:43 +0000
Manifest this update: Sat 14 Jun 2025 09:00:43 +0000
Manifest next update: Sun 15 Jun 2025 09:00:43 +0000
Files and hashes: 1: 7aycDRTYf8P211UyjMoRLngFRos.roa (hash: 1hSkTrGl1NaKOimvmkvsZcL4F2FAkgvJlT6iCyQWKdc=)
2: GHpwT0heEd7avFYmTl2AwUh-CEI.crl (hash: ZjikeNaZjf67N7JSvevoUhfpFmzAo7rEiJPNZNjcSnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 09:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:6d:ab:79:ed:a2:9e:0e:34:7a:35:19:3a:84:df:79:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=187a704f485e11dedabc56264e5d80c1487e0842
Validity
Not Before: Jun 14 09:00:43 2025 GMT
Not After : Jun 15 09:00:43 2025 GMT
Subject: CN=f047fde50b2fa8d18cbd08177e1116c3e5320b19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:b1:e2:92:0c:9c:91:50:38:a0:d8:b6:fa:2d:
e3:e3:7b:87:18:06:ad:48:f4:20:22:6e:35:1b:18:
bb:63:b1:58:e0:dc:d6:66:74:07:80:3a:9d:fe:19:
b2:51:13:55:ff:a1:3d:29:84:da:11:dd:be:32:b9:
10:b5:f7:6b:10:4c:4a:bd:2c:25:42:74:2c:c4:a3:
07:fa:f1:74:a0:7d:ac:92:a1:c6:d7:7e:ab:80:47:
c5:5a:b4:fd:d6:f7:64:fe:d0:d8:d1:27:ed:16:6e:
36:a4:53:40:a6:2b:69:ba:68:36:65:0f:b6:8b:7e:
d6:a8:90:41:80:07:13:f3:c6:bf:42:1a:24:81:b2:
58:49:ac:3c:bf:a9:5e:11:ec:c4:c9:25:bf:52:25:
de:75:cc:04:b6:08:9a:47:8d:45:1e:fc:a5:26:91:
c7:dd:31:37:7d:52:8b:00:f7:da:a3:24:14:b0:76:
24:ff:c0:66:9a:b9:56:c5:d5:ac:e9:7d:3c:69:04:
24:04:f3:8b:c8:17:f3:57:90:36:49:80:22:41:36:
21:b1:38:0a:8c:9b:c5:58:6c:02:2f:7c:85:cf:9a:
8a:87:56:e7:62:66:cc:38:70:d9:76:8e:68:30:00:
a8:34:35:84:72:2c:4e:4f:0f:a8:85:a4:60:94:d1:
2c:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:47:FD:E5:0B:2F:A8:D1:8C:BD:08:17:7E:11:16:C3:E5:32:0B:19
X509v3 Authority Key Identifier:
keyid:18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:e1:c5:5f:c9:21:05:77:ef:d7:6c:3f:ee:cd:70:6e:25:ac:
e6:73:6b:1c:da:10:5d:a8:5e:9c:10:71:f4:74:7d:10:e1:68:
87:3a:a8:f7:c7:10:18:50:8a:8e:51:f4:3f:95:b6:b8:03:57:
af:48:82:02:4c:65:08:a4:f0:b8:25:7f:9d:94:14:8c:da:78:
07:10:d7:93:42:44:e9:03:df:8a:d6:5b:76:b3:e9:d6:e8:21:
6a:bc:05:3c:08:99:08:76:9a:cb:41:30:66:9a:f1:96:f7:5f:
b5:f6:b6:d0:bd:8c:2c:4c:b2:de:13:13:3a:79:06:ac:3b:96:
80:ef:cb:1d:ac:c9:cf:73:52:06:0e:84:dc:28:fe:34:09:f6:
a6:ea:41:7a:32:87:36:b4:55:0b:b9:72:f0:0a:cb:11:d0:9d:
c5:19:60:95:77:f9:01:aa:38:47:21:80:97:6a:75:ed:e1:80:
4a:a8:7c:fd:e4:50:ec:b6:02:0b:14:ea:6f:f4:69:e1:0f:a3:
67:ce:79:09:73:c2:26:01:b1:2c:47:a2:a4:c5:27:c2:ad:12:
af:0a:03:19:b9:9e:2d:e8:f2:c7:9b:28:08:dd:2c:67:8d:71:
08:58:41:c5:24:ce:24:6a:18:b2:9c:97:5b:36:23:c6:98:4c:
f4:ce:bb:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 14 19:55:46 2025 by rpki-client