Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
File: GTWdi0RPJzSynpueCQG-CLAPQOM.mft (raw, json)
Hash identifier: NODO+OJou1DM3SQ9+jvp1lv/VrVJMc76pk0jrzzhYUA=
Subject key identifier: 57:E4:55:6C:C9:66:6D:5A:ED:A2:43:A1:49:A2:64:73:B5:E6:A0:FF
Authority key identifier: 19:35:9D:8B:44:4F:27:34:B2:9E:9B:9E:09:01:BE:08:B0:0F:40:E3
Certificate issuer: /CN=19359d8b444f2734b29e9b9e0901be08b00f40e3
Certificate serial: 01967567A62AC644CFC005A0BF0F8B7254A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GTWdi0RPJzSynpueCQG-CLAPQOM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
Manifest number: 108D
Signing time: Sun 27 Apr 2025 04:00:49 +0000
Manifest this update: Sun 27 Apr 2025 04:00:49 +0000
Manifest next update: Mon 28 Apr 2025 04:00:49 +0000
Files and hashes: 1: GTWdi0RPJzSynpueCQG-CLAPQOM.crl (hash: 7k3UhaWUPSiglkUFlqx6xoutZ4g8KjeWL0RC47/wriQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
rsync://rpki.ripe.net/repository/DEFAULT/GTWdi0RPJzSynpueCQG-CLAPQOM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:75:67:a6:2a:c6:44:cf:c0:05:a0:bf:0f:8b:72:54:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19359d8b444f2734b29e9b9e0901be08b00f40e3
Validity
Not Before: Apr 27 04:00:49 2025 GMT
Not After : Apr 28 04:00:49 2025 GMT
Subject: CN=57e4556cc9666d5aeda243a149a26473b5e6a0ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:5c:82:9f:9e:7d:cf:e2:60:da:ec:c4:86:02:
16:2e:68:12:23:b3:d6:cd:cb:c6:d7:0a:72:6c:4b:
45:86:8c:88:b4:e4:0b:ee:cc:a6:df:d1:89:6e:03:
35:04:7c:92:43:1f:2a:74:2d:4e:e5:bc:64:0a:52:
ed:e4:6a:aa:a0:3c:d2:13:6c:b3:c6:6b:33:01:dc:
6c:bb:9d:77:ef:52:15:51:c2:dd:d2:de:23:33:de:
b2:92:c4:51:72:00:e3:5f:69:52:55:5f:ed:a7:03:
d2:1f:82:61:e5:04:66:69:4c:4e:67:5e:a8:12:7f:
75:f4:63:ae:c5:27:8d:a2:61:ab:73:35:02:0e:b4:
7b:f9:4a:39:90:72:23:e3:b5:72:02:e3:30:0a:6f:
78:fe:c4:01:79:7a:79:ce:fe:a8:a7:62:29:6e:17:
30:22:dc:3d:e0:82:50:37:29:ba:63:d2:5e:d9:b5:
df:d1:02:b8:ea:0f:19:42:d9:f1:79:51:62:ea:f7:
d7:86:c9:12:97:c1:76:55:7f:0f:e5:03:50:90:aa:
bb:af:2f:51:9e:49:65:93:24:43:a4:93:25:ce:9c:
d0:9f:18:db:cf:e1:10:29:dc:c5:a3:a5:c1:ee:41:
9d:93:0b:8e:9b:e2:ae:ed:4d:48:8f:f5:d0:67:35:
87:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:E4:55:6C:C9:66:6D:5A:ED:A2:43:A1:49:A2:64:73:B5:E6:A0:FF
X509v3 Authority Key Identifier:
keyid:19:35:9D:8B:44:4F:27:34:B2:9E:9B:9E:09:01:BE:08:B0:0F:40:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GTWdi0RPJzSynpueCQG-CLAPQOM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/3a944b-b428-4547-b7fb-38f7c6ac9b66/1/GTWdi0RPJzSynpueCQG-CLAPQOM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:c4:ee:9f:22:34:ac:46:d0:a6:50:a3:78:ca:51:2f:09:8f:
a6:ea:e8:17:55:96:83:71:b2:98:9f:22:be:4e:fa:e9:00:68:
3b:5b:d0:6a:d2:55:73:7d:2f:c7:92:15:78:d0:76:32:e6:4a:
9c:15:3d:ca:72:bf:c1:bc:60:fe:fb:2e:a2:56:06:79:93:2c:
66:f0:92:f1:49:3b:bb:6e:53:2c:71:37:84:49:b3:d3:25:98:
8f:7a:09:50:63:56:2f:43:64:cc:7d:c6:65:7c:88:b3:ed:98:
32:4e:72:c4:df:69:f8:88:c5:f0:8c:ce:77:85:55:cc:ab:87:
a6:8e:d2:93:87:a2:81:63:b5:b0:43:ca:a1:68:fb:8a:03:76:
27:cc:23:1a:18:70:93:4f:4a:03:5a:7e:0a:dd:be:23:a2:51:
55:77:12:ec:04:b0:4e:74:29:48:1b:1c:ef:10:b5:a6:8e:b6:
9a:a2:41:0f:8a:19:06:86:a1:8d:07:d0:4e:7a:05:c5:7b:76:
e7:1f:ff:05:7c:72:b2:50:ee:68:99:69:5e:f6:8b:c2:9d:39:
fb:24:10:90:fa:39:69:41:c2:09:ba:fd:d5:76:55:07:ca:7e:
84:c0:bb:7e:e1:87:c2:fc:92:78:36:d4:af:cb:ea:a6:dc:30:
58:70:59:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 11:33:43 2025 by rpki-client