Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
File: Gk0JI-wQZndgrYguavmhVpnAXvg.mft (raw, json)
Hash identifier: c/VJJ4IvW/kU/728VA/9I+CV+ckiLHbzXBFeZVjI2K0=
Subject key identifier: A0:40:20:36:B5:67:62:58:26:48:88:4D:F0:4C:BE:B7:2A:DA:24:43
Authority key identifier: 1A:4D:09:23:EC:10:66:77:60:AD:88:2E:6A:F9:A1:56:99:C0:5E:F8
Certificate issuer: /CN=1a4d0923ec10667760ad882e6af9a15699c05ef8
Certificate serial: 0196760CB8E327B2D3D6BCE5FA3215E276E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
Manifest number: 0DA4
Signing time: Sun 27 Apr 2025 07:01:07 +0000
Manifest this update: Sun 27 Apr 2025 07:01:07 +0000
Manifest next update: Mon 28 Apr 2025 07:01:07 +0000
Files and hashes: 1: Gk0JI-wQZndgrYguavmhVpnAXvg.crl (hash: YfoXQh6QtimU3hoIPyg5LA6CWPHsLjbam9QG4pOo500=)
2: ZdLIbn9HJxp8pdvNeDczvn0TQ4Q.roa (hash: rg+IefpKLZ6BZTDP0ZlvyqCjjEypkuxTFlnDiZulEgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:76:0c:b8:e3:27:b2:d3:d6:bc:e5:fa:32:15:e2:76:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4d0923ec10667760ad882e6af9a15699c05ef8
Validity
Not Before: Apr 27 07:01:07 2025 GMT
Not After : Apr 28 07:01:07 2025 GMT
Subject: CN=a0402036b56762582648884df04cbeb72ada2443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:8e:25:fb:48:56:19:ff:47:10:f9:6f:fc:40:
a4:fc:ee:23:8a:03:5d:ac:83:2a:90:f5:98:0d:e0:
26:6c:3a:a2:f2:14:cc:69:d6:89:e2:1f:22:bc:88:
63:4b:c8:4a:5b:7e:6e:18:c8:54:6a:a1:be:4f:75:
96:95:ff:32:21:5d:9d:8b:d3:5a:9e:2b:80:1e:b6:
4b:b1:a0:08:33:41:b2:28:e0:c0:86:64:a3:4c:5a:
18:12:dd:54:96:14:81:fd:7f:55:ae:ef:da:4a:55:
77:b7:21:0d:38:c6:f7:52:89:7f:86:d1:49:52:c6:
93:53:c4:ee:e9:a5:bc:c3:fc:81:30:7d:af:e1:db:
a0:3e:d2:8f:aa:1a:e0:be:56:35:5e:ae:5e:a0:e3:
1c:c6:4d:a5:d5:be:db:f4:ed:12:99:f0:b8:40:ed:
2c:e9:5c:c0:da:e1:72:1b:96:6b:30:0f:d8:71:82:
d2:ce:a5:19:24:b3:f3:3d:08:aa:96:a4:70:d7:39:
d6:11:b7:72:45:b8:96:09:7a:11:70:2f:19:55:23:
4e:3c:38:9f:65:03:13:c5:69:be:c9:f4:65:81:66:
d5:4c:cc:06:fa:07:9e:37:a0:39:69:ef:f6:8c:17:
b2:42:3c:fe:27:a5:ad:e6:d6:01:c3:81:f2:35:44:
7e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:40:20:36:B5:67:62:58:26:48:88:4D:F0:4C:BE:B7:2A:DA:24:43
X509v3 Authority Key Identifier:
keyid:1A:4D:09:23:EC:10:66:77:60:AD:88:2E:6A:F9:A1:56:99:C0:5E:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:1c:64:9b:2a:d9:8f:21:c6:fb:9f:fa:67:38:76:5c:25:68:
a3:dc:cb:45:50:93:09:ae:8b:20:35:f2:52:16:16:0e:46:39:
d8:77:09:b3:1d:68:e0:4a:22:87:4e:01:30:42:9d:fe:20:6b:
94:4a:92:a1:c9:34:2d:ba:43:35:10:4d:f9:d7:78:30:19:e0:
a8:4d:c1:c8:1a:2e:09:5a:61:38:ba:6f:38:19:64:b4:5d:9b:
71:a1:19:28:44:9d:e8:0d:b3:30:f4:06:84:09:bf:77:f1:ff:
5e:33:48:32:e3:f7:bd:1a:ff:d7:3c:e8:e3:11:f3:1d:98:30:
0a:91:08:82:4a:e8:92:0c:4c:0c:90:3c:bf:d5:c0:3c:08:57:
0b:11:b6:bc:dc:ee:a5:ac:a3:91:02:26:4a:b1:24:9b:df:6a:
53:64:37:37:fa:ed:e0:36:e1:23:ce:02:72:6a:98:4b:d6:85:
fa:a8:e2:ba:d0:2d:0a:b7:dd:70:97:bd:39:f2:ef:6f:4b:2c:
f8:90:82:11:5f:d1:c4:f3:9f:a5:92:36:21:76:83:1e:a3:66:
d7:02:ea:c0:54:47:3c:e4:f1:b6:75:e1:d0:ff:29:c3:8f:51:
22:dc:c5:fd:6e:91:94:a8:43:89:8c:34:cb:fe:49:3b:79:8e:
fa:cd:73:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 16:38:09 2025 by rpki-client