Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
File: JGJNNpZGiPmJxkSsIBH0Fl086wc.mft (raw, json)
Hash identifier: 6XN5+0IuvzBSqG1PVRp2z4OLytDL+eG9EX9DTCPL3ZM=
Subject key identifier: 4F:F3:AB:0C:72:22:7F:22:7B:D1:8E:08:B8:75:3D:ED:D7:D4:36:E8
Authority key identifier: 24:62:4D:36:96:46:88:F9:89:C6:44:AC:20:11:F4:16:5D:3C:EB:07
Certificate issuer: /CN=24624d36964688f989c644ac2011f4165d3ceb07
Certificate serial: 0196760CA48F81F34600CABDB852A88DFFB2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
Manifest number: 0867
Signing time: Sun 27 Apr 2025 07:01:02 +0000
Manifest this update: Sun 27 Apr 2025 07:01:02 +0000
Manifest next update: Mon 28 Apr 2025 07:01:02 +0000
Files and hashes: 1: JGJNNpZGiPmJxkSsIBH0Fl086wc.crl (hash: mYavjhI9NqDJFn7LqJf472ul0R8hRjcPRi8d0L4T9ys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 05:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:a4:8f:81:f3:46:00:ca:bd:b8:52:a8:8d:ff:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=24624d36964688f989c644ac2011f4165d3ceb07
Validity
Not Before: Apr 27 07:01:02 2025 GMT
Not After : Apr 28 07:01:02 2025 GMT
Subject: CN=4ff3ab0c72227f227bd18e08b8753dedd7d436e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1d:f5:f5:3a:ed:03:28:5c:82:1c:66:d6:05:
75:f8:01:4f:1b:e7:cd:44:24:55:68:e3:ab:5a:8c:
e1:01:b6:b3:28:f3:0b:41:0f:de:cf:1a:17:a6:4c:
51:11:57:ca:5b:9a:f3:b2:24:5e:89:15:0d:c4:97:
27:ca:01:4a:f6:51:06:cb:52:1f:81:b5:ee:bd:49:
85:89:a6:87:4f:79:45:33:10:53:18:ab:41:85:93:
5d:dc:03:97:63:7a:53:37:60:bb:89:46:ab:fa:13:
c2:ab:52:56:1f:5d:dc:0c:15:63:64:0e:99:d6:94:
21:c1:0c:a9:c7:6c:99:f1:16:0f:5d:e8:45:94:74:
71:18:5a:e2:31:e5:4e:4d:bf:b8:00:d6:ad:b0:7a:
d2:61:b8:f6:1a:b7:a7:78:0b:bf:c9:39:38:57:24:
28:44:dd:3d:eb:39:c7:47:c8:49:ed:40:54:38:99:
04:72:2a:7c:80:05:ff:b6:e8:38:4f:b4:e5:41:c6:
b8:5e:4e:1e:96:39:df:04:86:22:55:54:0a:0a:e6:
03:ef:42:86:30:bd:43:bd:a4:70:cd:0f:29:bd:71:
d6:a3:80:56:91:ab:68:82:10:ae:64:23:31:9e:d1:
c7:0d:44:dd:b9:7a:05:ae:7a:3d:56:18:71:2c:4b:
13:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:F3:AB:0C:72:22:7F:22:7B:D1:8E:08:B8:75:3D:ED:D7:D4:36:E8
X509v3 Authority Key Identifier:
keyid:24:62:4D:36:96:46:88:F9:89:C6:44:AC:20:11:F4:16:5D:3C:EB:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JGJNNpZGiPmJxkSsIBH0Fl086wc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/739291-2d5c-4c1d-9079-027e8c09146b/1/JGJNNpZGiPmJxkSsIBH0Fl086wc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:8a:e6:ad:58:2c:dd:bf:86:9a:e1:eb:2a:ef:bd:9b:aa:5d:
5e:90:ff:a6:8f:55:af:ef:7a:dd:e9:a8:9d:2f:b4:ab:2e:f6:
5e:32:86:a2:73:f5:14:cd:57:53:49:ae:44:cd:e3:06:23:4f:
fb:47:9f:3f:d3:47:f5:7b:2b:7a:d3:ed:b6:fa:99:d8:e0:41:
c5:8d:0f:24:9a:f5:e8:51:4a:d4:40:0e:c0:4d:6a:56:a9:cb:
bd:95:37:b5:91:29:38:29:7b:4d:14:ba:eb:b1:5c:5b:e3:7a:
1f:64:ec:02:bd:36:65:e8:c1:61:1e:20:ba:c6:a2:0b:2b:33:
a1:87:4f:40:b6:77:b4:fb:68:83:b8:64:b7:ff:4e:7d:ce:5a:
54:80:e5:6a:c5:28:e7:f3:51:49:68:df:b9:ea:07:e3:42:f0:
61:2d:0d:d8:22:dc:6f:6f:ec:11:04:92:93:a0:1f:bd:14:f6:
ef:e5:27:8a:93:bc:9b:7b:86:1f:fe:31:97:1e:e3:84:e3:2c:
72:d4:21:6a:25:64:a1:a0:fd:b8:c9:44:43:14:bd:c8:85:50:
7e:fc:41:a8:38:83:9e:ae:03:83:26:86:2a:d8:0c:42:27:ba:
22:84:25:5d:7e:c1:dd:75:9a:8c:84:ba:d6:cd:6f:da:02:19:
33:3b:2f:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 15:03:49 2025 by rpki-client