Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
File: goIekswnAHYZMDmOI4DCOqR1XxY.mft (raw, json)
Hash identifier: fc4NRccg0BcmcV2Y1mSNSp5y9JXf6ZKExhwJZyJXTyw=
Subject key identifier: 2D:3B:0D:C0:C3:C5:57:95:49:B0:F8:06:BC:E2:9A:40:11:27:2C:80
Authority key identifier: 82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
Certificate issuer: /CN=82821e92cc2700761930398e2380c23aa4755f16
Certificate serial: 019677FA7A70D30C7AE1EB13BB23198873A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
Manifest number: 05C5
Signing time: Sun 27 Apr 2025 16:00:26 +0000
Manifest this update: Sun 27 Apr 2025 16:00:26 +0000
Manifest next update: Mon 28 Apr 2025 16:00:26 +0000
Files and hashes: 1: goIekswnAHYZMDmOI4DCOqR1XxY.crl (hash: hUVRv7Suxm62Pg76vNdYuS/YK+l5AntCSl5Y8YRRBnM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fa:7a:70:d3:0c:7a:e1:eb:13:bb:23:19:88:73:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82821e92cc2700761930398e2380c23aa4755f16
Validity
Not Before: Apr 27 16:00:26 2025 GMT
Not After : Apr 28 16:00:26 2025 GMT
Subject: CN=2d3b0dc0c3c5579549b0f806bce29a4011272c80
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:bd:ba:2d:32:b3:b1:c5:16:a0:63:e5:80:9f:
ba:f2:83:9d:31:14:6a:92:72:cc:55:16:ed:3e:2e:
05:5e:e6:69:9c:aa:05:1b:60:4a:f5:11:51:98:e9:
12:b1:b5:5c:78:57:49:3b:0f:29:41:95:da:34:0c:
71:df:37:47:aa:5e:6f:75:81:94:61:02:ca:c0:95:
5e:06:df:01:58:45:b8:27:a3:a9:8d:a1:3a:6b:fc:
c0:a8:67:c1:79:8b:da:da:67:3b:c5:57:06:c2:a2:
f4:f4:fb:56:5d:da:63:cc:f3:af:93:c0:29:01:cb:
d7:5d:db:f9:28:1c:c4:9c:e3:ef:05:31:8a:4f:e9:
58:f9:ff:e1:6d:d7:0f:f1:16:e2:50:d2:cd:f5:8e:
34:ad:34:a7:ef:7a:76:1e:bb:af:99:d6:01:e4:51:
98:dc:c8:22:e7:f8:89:a5:20:ea:7e:84:34:ea:da:
85:9e:72:a6:90:f4:7f:03:88:18:9e:4b:43:32:8f:
84:e4:eb:e8:62:78:af:e7:2d:f9:06:24:76:35:de:
d2:a6:4c:8b:09:fc:f3:8c:84:9a:10:78:d2:8a:be:
ef:50:53:59:40:a7:06:68:7e:a4:5c:95:d1:06:0f:
7a:63:f2:40:6c:f6:5c:19:17:b6:a7:c1:58:59:98:
c8:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:3B:0D:C0:C3:C5:57:95:49:B0:F8:06:BC:E2:9A:40:11:27:2C:80
X509v3 Authority Key Identifier:
keyid:82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:7d:2f:48:60:30:bf:5b:34:18:f0:38:fd:b0:3a:c6:01:06:
3d:30:30:76:86:4e:15:9b:e9:b1:fb:07:40:20:8c:f0:ff:87:
e9:f1:7c:e7:d7:38:7c:77:a6:fd:b1:e3:1f:85:e4:09:25:5d:
13:ba:7e:93:a8:2f:0c:f4:8d:46:96:43:40:40:b2:5f:14:36:
fb:53:ef:e6:b5:b4:89:34:86:63:61:f7:ff:3c:f8:da:4d:2f:
fa:a7:1d:d5:f5:42:95:d2:11:74:d0:3e:8c:62:b8:22:57:a3:
39:56:96:5c:0c:f5:6b:9e:d4:06:92:c6:8a:c1:fe:50:6e:23:
2b:42:ae:1a:6d:34:6c:2a:a8:c6:3b:bf:42:b4:88:c5:42:d1:
c7:d7:7e:d9:b5:da:36:1a:45:ff:e4:ed:3d:37:a2:1e:96:83:
2c:d0:52:76:ec:6d:95:85:e0:06:6c:2a:0a:3a:d9:b0:f7:2d:
90:84:e0:2b:91:ec:c9:1a:8c:f4:61:fa:8a:5a:7a:f1:99:39:
d0:0b:6c:c2:92:f5:95:e6:ba:8d:64:0a:72:47:1a:46:26:a8:
74:ad:33:65:a5:c1:95:c9:1c:bd:0a:3e:58:b4:7c:bf:fc:43:
27:d3:16:f3:ac:a7:a2:3f:45:ac:47:0f:ff:52:19:c7:e3:ef:
5d:27:2c:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 22:23:19 2025 by rpki-client