Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
File: GEe1nSHqNrMGL8qAznXBYWr1EZo.mft (raw, json)
Hash identifier: DHFIjcpMTlDY5rtwtNBcT7/kHF548Sj7hjKd6AbP6XM=
Subject key identifier: D7:AF:1D:F9:23:02:F9:BD:41:7E:9C:43:C8:47:68:53:9A:7E:9B:DB
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 019677FA85A8BF28644E4E16C6633EDBF42B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
Manifest number: 1529
Signing time: Sun 27 Apr 2025 16:00:29 +0000
Manifest this update: Sun 27 Apr 2025 16:00:29 +0000
Manifest next update: Mon 28 Apr 2025 16:00:29 +0000
Files and hashes: 1: 1JOZ7dbb5H6duThfeMsJ0JbBk7I.roa (hash: 0Pd6o8RRKlvvsS/YlVCGhUpZijHcF0bp4ry/V9YxdXE=)
2: 8cLxwhiwZ15o52IG0lIcBm8BfIQ.roa (hash: PFZiPiXQsPniAQ08Y5K+gzotL1tE/fkVxovwe7IBhnM=)
3: GEe1nSHqNrMGL8qAznXBYWr1EZo.crl (hash: FfrILp6jD5lBu3lshEG5CN08hflSyH47ROW22omlNBI=)
4: IUhjeSZNLRuDHaFdnLWNCkDEtoA.roa (hash: 7mHS1yKQvcVUsvgxBWbk52TGnvHhH+IlGhrKPQMDS/Q=)
5: Jfkb9wIjflJ9g_nlBWaCF6laiWU.roa (hash: /ljWZ+p/6L9vGqqgT4FUCtEB1Y8qOikrC1+ICoRutK4=)
6: eSjPZbIfbzV_-2dY3DLb0TWTSdM.roa (hash: AL9fqh7ceKqnHM3PxeRD473MOSaIbFz8D+64dfZV0bI=)
7: shcI5ksCijvvRLID7bxpTU4Ek38.roa (hash: 5j6UIvbPGZk819fhFv2lIK9RILlN83FerZg8FUEwxJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:77:fa:85:a8:bf:28:64:4e:4e:16:c6:63:3e:db:f4:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: Apr 27 16:00:29 2025 GMT
Not After : Apr 28 16:00:29 2025 GMT
Subject: CN=d7af1df92302f9bd417e9c43c84768539a7e9bdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:2a:e0:60:92:a3:78:84:a8:bb:bd:32:37:ff:
df:1f:c2:82:1c:ce:92:40:06:bd:1d:a5:b0:b5:fb:
1b:98:a7:c6:40:c5:67:9b:a0:27:75:1a:2d:4f:53:
b8:a5:15:64:6f:ce:29:de:bf:36:5b:40:7e:19:5e:
28:54:8f:1f:7e:92:fc:96:40:17:fc:a6:a7:b8:fd:
58:75:d5:a2:e2:3a:85:7a:94:89:ab:6c:e1:17:2e:
a8:d5:1e:2a:d6:4c:bf:bc:a0:7e:4b:c8:a3:b4:62:
e4:53:77:55:88:09:a9:4f:6b:c0:69:5a:fd:7c:41:
6c:ef:e3:1a:73:c6:d3:39:f2:cb:c7:4e:90:35:25:
48:3a:9f:cd:4b:83:70:ff:b3:24:91:f4:97:3b:45:
fc:06:1a:0d:7b:0a:32:2d:44:42:5f:2a:3e:48:c3:
3a:52:85:e3:77:cf:d3:be:be:0d:38:fe:9f:c1:88:
2a:e5:01:fe:0c:83:70:c0:3a:bf:6b:1e:1a:4c:a4:
81:7f:3b:96:57:ec:2a:92:d6:2f:3f:09:1a:95:27:
2f:fa:0f:6e:38:46:84:55:c9:b0:ef:a7:31:6c:54:
8f:c9:5e:f1:86:9d:05:d5:e4:c5:c3:c3:3e:49:76:
b3:e2:aa:58:cc:9e:7c:29:ea:be:21:b2:76:26:4d:
ad:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:AF:1D:F9:23:02:F9:BD:41:7E:9C:43:C8:47:68:53:9A:7E:9B:DB
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:73:b5:b6:a8:53:97:c2:63:96:48:6f:cf:b5:e6:7e:2f:cb:
24:8c:07:7d:0f:65:dc:ff:4e:63:d5:89:9b:b2:ae:df:2c:68:
a7:bd:7b:0a:42:91:4e:f9:9f:56:38:6b:a3:ac:eb:a8:07:b1:
18:83:fe:e6:3b:ec:b8:35:a6:b3:b7:63:60:2b:ff:80:7d:db:
28:3c:d5:95:ee:ce:81:bd:1a:bd:6c:4f:9d:99:7f:20:64:f3:
1b:e0:ef:2d:93:50:63:2f:19:ee:96:e6:80:c5:46:56:19:1b:
35:62:de:12:03:18:53:9e:4f:56:3e:e3:ea:1f:23:82:18:37:
4e:40:ea:8d:84:4b:c5:f5:9c:c8:76:8f:24:a2:61:44:5f:aa:
f5:80:a6:b9:25:09:58:f4:0a:04:22:c3:17:30:46:3b:b0:b4:
19:f6:a7:b1:48:d9:c2:20:a0:8a:50:1e:61:30:ad:0c:f3:e7:
8f:9c:c9:48:56:df:02:12:45:ad:73:ba:2c:c2:b3:98:fc:2f:
90:d4:c2:1f:88:c3:6b:5a:01:58:1a:f6:25:4b:a6:64:f0:03:
63:a2:63:3a:2f:6b:1e:36:30:7f:18:f3:ef:48:84:e4:7b:c8:
20:9d:78:81:61:49:e6:fc:2c:46:5f:d0:24:8a:0e:60:a5:7b:
be:f8:b7:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 28 02:16:18 2025 by rpki-client