Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
File: goZyzXNrV-Hj38fdc2872KYWuoE.mft (raw, json)
Hash identifier: GADWahKzqIo5qNQzO5xXa2JahGQw0AglKi+7n+YfP2w=
Subject key identifier: 1C:23:D5:89:FE:BE:F0:4E:F2:B4:8E:74:BD:2C:F9:A1:35:9C:89:89
Authority key identifier: 82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
Certificate issuer: /CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Certificate serial: 0197703E82C2FDFE08C26937835AF432BFDB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
Manifest number: 1590
Signing time: Sat 14 Jun 2025 21:00:34 +0000
Manifest this update: Sat 14 Jun 2025 21:00:34 +0000
Manifest next update: Sun 15 Jun 2025 21:00:34 +0000
Files and hashes: 1: f-v99B7kzDMwcYPXZ1yHUB7PuHk.roa (hash: PLEFeVBVmPy00pfwBVn43bz19/5DH4Ktxjb7rCdDKxc=)
2: goZyzXNrV-Hj38fdc2872KYWuoE.crl (hash: CvDUsUFhR1yhsuvhxZaAP4LuLFQIZfSSeFSfCfh6JKs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Jun 2025 19:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:70:3e:82:c2:fd:fe:08:c2:69:37:83:5a:f4:32:bf:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Validity
Not Before: Jun 14 21:00:34 2025 GMT
Not After : Jun 15 21:00:34 2025 GMT
Subject: CN=1c23d589febef04ef2b48e74bd2cf9a1359c8989
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:28:2e:17:5a:4d:da:3d:d8:66:c5:10:fd:18:
f2:cf:12:d6:07:55:ba:64:20:7a:1f:37:d4:cd:95:
4e:7b:db:30:fe:b5:50:47:cb:c7:eb:4e:2e:f7:d7:
4d:42:41:82:1b:9a:91:8e:a6:49:4d:ab:c0:43:bb:
fb:ec:df:1c:48:54:64:7a:3f:90:4c:d5:5c:d3:00:
bb:77:0d:89:07:93:47:7f:f2:41:a1:41:af:48:b9:
9e:b0:7e:6b:ed:0e:81:e9:00:50:7e:60:27:ce:f8:
56:8c:68:61:a8:90:5c:9d:b0:53:0b:b6:df:71:8b:
ff:44:84:3e:0d:c9:a7:8d:27:ca:ec:20:01:3f:ae:
8f:2e:51:f2:e0:bd:c9:9f:bf:fc:17:73:50:01:ab:
fb:d1:69:9b:90:ac:e7:9a:30:6c:2e:5f:71:95:fe:
3f:a3:18:6f:7f:db:22:e8:ce:f5:9d:34:84:c1:23:
a8:5b:93:ec:53:f2:87:4e:4b:b0:db:66:2b:26:67:
b1:76:9d:d8:df:08:ba:95:22:02:d0:7c:73:ec:da:
8b:9d:71:7f:3c:f1:aa:9f:00:bb:a8:c6:52:ec:e0:
8f:bc:92:12:2d:cd:6c:57:25:d3:7e:12:19:fb:82:
a3:7e:4b:fb:80:5e:4a:75:3c:32:8d:b1:39:c4:ca:
0c:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:23:D5:89:FE:BE:F0:4E:F2:B4:8E:74:BD:2C:F9:A1:35:9C:89:89
X509v3 Authority Key Identifier:
keyid:82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:dc:73:4f:a5:2e:b1:da:d0:be:42:2d:b5:02:68:77:60:6d:
5e:3e:8d:33:cf:aa:81:6d:d4:40:4a:20:91:5d:dc:c3:5b:c1:
0a:56:45:e8:f3:6e:eb:3d:64:35:99:f8:a4:61:e0:4c:7e:f4:
a4:65:69:f5:a8:b3:66:e5:70:8e:54:ed:a9:09:32:b2:a6:64:
5b:6d:b8:60:26:ba:25:3b:72:a7:c9:5c:df:87:bf:f8:f6:29:
05:6b:be:20:d9:70:33:17:2a:b0:61:55:90:bb:0b:b1:83:46:
40:07:2b:12:56:1f:28:0d:36:f2:52:c0:27:f7:9d:77:28:76:
51:fa:78:e9:b1:f1:44:f0:9b:24:53:bb:a2:4f:19:71:cb:e0:
8d:4f:de:ce:c9:1a:b9:92:2c:be:e9:63:ee:4c:44:44:6a:43:
c1:37:e5:13:69:e0:ea:01:cf:a3:16:0b:2d:29:37:98:c9:bb:
38:f9:c5:4f:fc:43:0d:9d:88:18:fd:65:be:99:50:21:0b:5c:
e5:f9:6b:22:c4:7f:2f:c0:4e:69:f7:20:07:b0:f5:ce:d8:dc:
4b:87:6b:38:dc:cb:70:fc:67:51:4b:32:57:8c:82:87:3f:ef:
70:8f:28:b9:d3:c1:08:f0:e5:5d:d9:56:ff:4b:e6:3b:76:1c:
b4:0e:db:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 15 03:09:56 2025 by rpki-client