Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/159860-f832-438a-9e6f-76a141cdd41f/1/gQfcA22dbCjx2Hq2TnjuSFqW_YE.mft
File: gQfcA22dbCjx2Hq2TnjuSFqW_YE.mft (raw, json)
Hash identifier: FAvi9F+idsHOZTkt9GtFl3ZtTar8LbdkfQN3Bvt8gy8=
Subject key identifier: 47:31:80:4C:47:60:03:BE:B2:80:A0:BC:77:A5:F3:98:E5:42:6F:47
Authority key identifier: 81:07:DC:03:6D:9D:6C:28:F1:D8:7A:B6:4E:78:EE:48:5A:96:FD:81
Certificate issuer: /CN=8107dc036d9d6c28f1d87ab64e78ee485a96fd81
Certificate serial: 01968BB87E715E4B7CFBE9F8BAAB41D83E02
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gQfcA22dbCjx2Hq2TnjuSFqW_YE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/159860-f832-438a-9e6f-76a141cdd41f/1/gQfcA22dbCjx2Hq2TnjuSFqW_YE.mft
Manifest number: 04D2
Signing time: Thu 01 May 2025 12:00:45 +0000
Manifest this update: Thu 01 May 2025 12:00:45 +0000
Manifest next update: Fri 02 May 2025 12:00:45 +0000
Files and hashes: 1: FS82XW-k77zMqGngn5r7_Yo2ofY.roa (hash: HKhziiZ0vfYbPizRPboCVEcmyagdxZmch8FNJ52Iiys=)
2: gQfcA22dbCjx2Hq2TnjuSFqW_YE.crl (hash: pk+wBgEVUC8N1JZvq22sImXQUV44oAeHi7VvQ9IEFlw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/159860-f832-438a-9e6f-76a141cdd41f/1/gQfcA22dbCjx2Hq2TnjuSFqW_YE.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/159860-f832-438a-9e6f-76a141cdd41f/1/gQfcA22dbCjx2Hq2TnjuSFqW_YE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gQfcA22dbCjx2Hq2TnjuSFqW_YE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 02 May 2025 07:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:8b:b8:7e:71:5e:4b:7c:fb:e9:f8:ba:ab:41:d8:3e:02
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8107dc036d9d6c28f1d87ab64e78ee485a96fd81
Validity
Not Before: May 1 12:00:45 2025 GMT
Not After : May 2 12:00:45 2025 GMT
Subject: CN=4731804c476003beb280a0bc77a5f398e5426f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:4a:6e:ce:02:ed:a4:c1:22:11:ff:e4:6e:cb:
78:9b:ec:7d:88:51:17:f9:39:9d:fa:a6:0a:d5:c4:
15:26:9c:e7:3b:51:3d:4a:37:5c:cb:38:15:a0:7d:
05:4f:35:e4:99:b9:ba:92:5c:2c:d5:b0:c1:6a:69:
ce:2f:14:71:41:12:eb:04:6c:db:ac:b5:4b:82:2a:
c6:b9:00:97:07:f2:49:be:1c:35:e8:53:c2:40:5c:
8a:19:5a:01:3d:22:d0:37:26:6c:e2:7d:ff:2b:af:
69:93:9a:82:89:30:d8:fa:23:ca:ae:d8:46:3f:cf:
33:05:12:5e:0b:92:76:f6:e9:20:67:68:af:a0:b4:
55:0c:24:c3:d9:f7:6c:85:a8:15:70:a8:45:31:e8:
22:cf:fd:dc:11:36:1b:88:6c:4d:9a:8a:51:6b:ad:
e1:2a:a1:f3:fa:60:7a:20:af:4c:95:69:dd:68:ab:
f0:90:2f:f9:25:5b:5c:13:be:07:b5:d5:46:61:27:
7e:77:74:f4:a1:af:cd:91:52:e2:be:13:b4:c0:3f:
ff:22:d1:19:95:fa:5e:ef:90:13:87:d6:ba:7b:c0:
f0:13:82:91:d7:dd:58:67:a8:b2:9c:d7:f9:ea:3e:
3a:f1:43:eb:c7:70:0a:c6:fe:cb:8f:55:a0:f8:17:
86:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:31:80:4C:47:60:03:BE:B2:80:A0:BC:77:A5:F3:98:E5:42:6F:47
X509v3 Authority Key Identifier:
keyid:81:07:DC:03:6D:9D:6C:28:F1:D8:7A:B6:4E:78:EE:48:5A:96:FD:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gQfcA22dbCjx2Hq2TnjuSFqW_YE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/159860-f832-438a-9e6f-76a141cdd41f/1/gQfcA22dbCjx2Hq2TnjuSFqW_YE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/159860-f832-438a-9e6f-76a141cdd41f/1/gQfcA22dbCjx2Hq2TnjuSFqW_YE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:63:de:fd:1c:80:1f:89:69:ee:20:da:46:a9:27:c1:26:ad:
09:a9:e2:94:d0:9c:4e:33:5c:80:5a:17:cc:44:14:a5:82:fb:
62:1a:d5:76:86:6a:d4:fd:80:d9:f6:d0:53:93:b3:03:8e:1c:
c6:6d:c2:91:d4:ae:a9:8c:f9:b6:af:cb:5c:66:a2:e1:07:f9:
47:c2:25:bc:74:0e:1e:fa:d0:c0:e9:82:36:3b:ee:d1:94:90:
dd:b9:4f:f6:68:32:b5:bb:03:72:30:4f:5a:9e:84:fe:13:e5:
0a:6a:32:c3:e4:e3:1b:bd:08:59:75:69:f5:d7:31:eb:d2:fb:
c4:ca:e5:b5:f4:9e:36:a0:b4:7e:aa:ba:4c:42:3a:f8:f4:1d:
77:57:82:46:20:82:7e:7b:59:75:62:49:73:cb:77:d1:1d:cd:
02:c3:7b:23:30:13:d6:47:a0:4c:eb:02:11:68:be:89:02:e4:
0f:ca:84:a3:9f:83:22:2f:e6:d7:2d:ff:bc:7a:46:74:df:8b:
58:65:fc:b6:b3:27:70:2c:ad:63:56:82:b1:2f:08:25:8e:6a:
82:e9:13:fb:67:95:be:96:42:d9:77:bf:ab:ea:b1:e7:5f:af:
e1:f2:88:19:b6:f0:c1:af:32:db:45:25:fb:a7:ff:4e:de:95:
f3:38:28:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 1 16:22:07 2025 by rpki-client