Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
File: gzVETFgRYcWIroS-AZZbyOg3gLg.mft (raw, json)
Hash identifier: FecDZOtWFaTVJIpr1OhpVh+U6etBvCe5ujxgo1rSZIs=
Subject key identifier: CB:33:91:65:A6:16:5A:EA:39:FD:77:9F:B1:EC:C7:8C:D9:F0:28:E9
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 01967D20AFE25C592864BBE0946537476D67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
Manifest number: 123D
Signing time: Mon 28 Apr 2025 16:00:16 +0000
Manifest this update: Mon 28 Apr 2025 16:00:16 +0000
Manifest next update: Tue 29 Apr 2025 16:00:16 +0000
Files and hashes: 1: 52xHcZKMiLkJfC48D6ah-VZ8yTA.roa (hash: jrz3bp7KHkqbn8SdD2JCqFdwlcK3RRhyL/xchThJ/cc=)
2: gzVETFgRYcWIroS-AZZbyOg3gLg.crl (hash: +yVX5bukQXIhOovB2DWLeMaOUhQHJuDwiE6R02x9BTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 29 Apr 2025 15:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:7d:20:af:e2:5c:59:28:64:bb:e0:94:65:37:47:6d:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Apr 28 16:00:16 2025 GMT
Not After : Apr 29 16:00:16 2025 GMT
Subject: CN=cb339165a6165aea39fd779fb1ecc78cd9f028e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:47:73:c8:8a:b0:2a:d2:c0:bb:70:8e:61:de:
76:87:41:7a:5e:f8:8d:c8:40:12:b1:14:72:09:a3:
67:44:7a:1d:b4:7f:cd:61:eb:0a:e3:8b:2c:c0:eb:
39:56:d0:d0:99:80:f5:c5:9f:08:57:49:25:b7:2b:
a3:f3:fd:3d:a8:dd:70:8b:d2:c4:8e:77:e6:08:e6:
28:bd:bf:3c:45:74:cb:58:4d:3d:6d:e5:a0:64:9d:
f6:3b:a2:d3:a8:7c:e0:58:8a:a6:6a:81:c2:bd:5e:
b7:47:81:a7:69:54:d5:34:4e:a1:d1:87:a5:80:3d:
fc:97:e8:b5:84:78:a5:46:e0:a8:6f:2f:18:48:99:
8a:aa:e0:eb:31:58:1f:f1:fd:6c:25:df:bc:0e:53:
25:cb:0f:4c:3b:2f:75:7c:87:59:7f:ff:2a:c3:ad:
de:f2:c1:9c:03:ab:40:ce:ca:f4:50:0f:fd:42:24:
8c:c7:c0:b7:02:57:90:19:66:34:ac:ad:32:cd:fa:
10:d9:b2:9c:77:05:57:07:85:7b:fd:96:15:9e:70:
db:4c:5f:b2:a0:16:a9:ec:08:09:42:50:52:c1:c7:
e9:6a:fe:50:84:b4:6d:a8:a7:fa:3a:f3:25:cd:cc:
02:53:e5:a8:17:bc:ba:b7:41:4a:02:ae:b2:63:ce:
e1:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:33:91:65:A6:16:5A:EA:39:FD:77:9F:B1:EC:C7:8C:D9:F0:28:E9
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:f0:6d:35:a2:1b:70:72:61:ea:61:b0:dc:6a:dc:d7:cb:c2:
1d:f0:9e:b5:50:91:06:83:eb:88:54:c5:77:82:97:80:04:e6:
e7:f6:60:b6:57:b6:3f:f7:2f:57:f0:7f:3c:53:1c:5e:c2:6d:
51:b3:6c:73:ac:84:5a:41:ff:0b:aa:8b:7e:1b:04:99:f2:68:
b6:61:04:d8:37:0e:17:2a:65:68:0f:9b:e5:b8:2b:a1:87:48:
3a:9a:26:5d:38:f1:81:f1:f1:91:6f:2b:28:7b:a6:ac:f3:c1:
44:93:bd:c9:25:5d:39:b1:ba:66:b0:03:68:1f:01:cd:cd:72:
77:e0:ff:a3:d8:a4:c6:a0:23:18:6c:be:d8:9e:ad:48:3b:ca:
8d:02:eb:29:ba:be:88:2a:59:a2:5e:fd:10:c7:7a:46:98:5f:
67:98:e0:92:88:2f:2d:c4:a9:a4:b4:08:07:ac:9f:77:0d:69:
73:af:6c:e5:1d:73:1b:d2:a1:52:e8:04:7f:0b:2f:c2:55:93:
0d:98:c7:84:ed:8b:1c:57:bb:e8:fc:58:80:8c:fd:40:e6:a6:
18:84:00:02:f8:e6:37:0b:96:da:59:b7:f9:b0:ce:a0:ff:9e:
1a:5e:41:08:cd:f5:e9:0c:f0:58:fe:ce:2b:22:19:99:45:ed:
4e:28:0b:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 29 00:22:14 2025 by rpki-client