Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
File: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft (raw, json)
Hash identifier: F5MTgA1aV1pSrrwGOf4k2rE0Pt/5VL1lQbhEkkJiyeM=
Subject key identifier: 80:26:A3:20:9F:CB:57:15:6A:FC:E0:B2:76:06:63:CC:F2:8D:0E:98
Authority key identifier: 82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
Certificate issuer: /CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Certificate serial: 019688B7A48ACAB34297C21BED1AAF2CD166
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
Manifest number: 0FA0
Signing time: Wed 30 Apr 2025 22:00:58 +0000
Manifest this update: Wed 30 Apr 2025 22:00:58 +0000
Manifest next update: Thu 01 May 2025 22:00:58 +0000
Files and hashes: 1: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl (hash: 0CSt5nU2j8ZNuh5GHOYIl9Np1uSTUZAl/tFynOMUrSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 01 May 2025 21:27:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:88:b7:a4:8a:ca:b3:42:97:c2:1b:ed:1a:af:2c:d1:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Validity
Not Before: Apr 30 22:00:58 2025 GMT
Not After : May 1 22:00:58 2025 GMT
Subject: CN=8026a3209fcb57156afce0b2760663ccf28d0e98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:e3:91:99:6c:7a:70:26:0f:c0:d7:ca:26:92:
5c:8b:e0:2e:ff:20:2c:0f:99:59:f3:0d:8d:76:1a:
8e:ab:77:27:37:a6:f5:05:96:e8:5b:cc:07:ab:64:
16:9d:58:0c:af:a1:e8:be:be:6b:67:73:f1:aa:94:
7e:c5:ad:a3:c1:5b:87:c8:22:33:c3:0d:2d:0d:e2:
8d:4c:52:20:a9:62:88:c7:e4:20:99:8a:8a:f4:65:
29:1a:90:82:f3:2d:22:69:33:e3:8a:04:df:b5:62:
26:73:5a:a8:16:53:2f:60:f7:db:c2:44:c4:a1:19:
2d:8a:fb:af:62:91:ee:fa:98:5c:ba:06:6b:9c:e3:
83:cb:7f:c6:04:77:59:38:23:86:63:be:70:d7:8a:
26:4b:4f:c2:89:5d:af:67:52:83:16:64:24:81:a2:
8b:58:bc:46:cb:98:26:52:ba:bf:b2:62:91:63:c5:
de:cc:8e:a8:ff:7f:7f:8d:5a:02:2d:8e:6f:b7:2a:
c4:72:40:2d:7d:cd:02:c2:36:7a:43:e7:25:d1:ea:
3d:ef:f5:33:48:31:da:6c:8f:a1:ed:cf:a6:e0:76:
e5:a2:61:a9:5f:26:f4:fb:f5:2a:14:d8:6f:51:b9:
28:16:8b:b1:92:40:5c:30:2d:f4:c8:40:31:ff:ab:
e3:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:26:A3:20:9F:CB:57:15:6A:FC:E0:B2:76:06:63:CC:F2:8D:0E:98
X509v3 Authority Key Identifier:
keyid:82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:22:a6:60:50:10:a0:e2:64:d3:c3:82:c0:87:97:01:ab:b3:
65:eb:4b:61:84:f1:8f:0c:e3:4c:fc:b7:d5:9b:5b:2a:1b:1a:
dd:8b:74:24:c4:0d:43:a5:26:b3:98:72:5b:63:5e:a2:3b:03:
33:4a:c8:89:14:eb:e4:72:d8:f0:67:01:5e:7b:21:49:16:bc:
46:f6:a3:e5:55:fb:70:2f:02:67:12:f6:c8:1b:0c:ec:6e:91:
1d:ae:e8:3d:99:5b:cd:3b:bf:7f:31:7d:01:1f:04:7e:ac:fe:
7e:4a:29:b4:80:5a:f1:1f:a7:d8:ac:1f:be:7c:81:c2:9f:c0:
3a:1b:00:0e:1e:5f:07:ae:58:5b:e2:47:a3:b4:ff:8d:8a:91:
52:67:c2:9f:6f:4b:40:63:af:c1:39:bb:38:b8:e4:71:9e:5a:
6f:1a:f1:af:87:81:07:6c:cf:75:17:38:8e:b6:92:fb:74:97:
e5:fd:b6:77:53:17:0f:29:8d:c4:39:d7:d9:7a:c3:e1:b0:10:
1c:17:72:d5:05:c6:ad:62:72:89:fe:42:e4:81:55:dd:14:b1:
08:98:4e:6e:ca:43:af:8b:54:1a:9a:a6:a8:ac:5e:ad:69:3f:
da:59:61:e3:ce:b2:9e:8d:73:2c:b6:01:19:3b:00:dc:d8:5d:
9e:ce:c0:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 06:14:06 2025 by rpki-client