Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json)
Hash identifier: bU4VsA32ejj7r4usNXlVV3nWCcXtOyMKDYAwzeuaino=
Subject key identifier: 54:4B:A5:28:68:14:89:7D:39:58:DD:D9:E5:EC:C6:64:BB:1B:38:B0
Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840
Certificate serial: 0196944DF50EF991F2AA6C3DB50FE3208F5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
Manifest number: 151B
Signing time: Sat 03 May 2025 04:00:59 +0000
Manifest this update: Sat 03 May 2025 04:00:59 +0000
Manifest next update: Sun 04 May 2025 04:00:59 +0000
Files and hashes: 1: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: XK03DPjTacY+Axo373b1FjNa+RV5hJXkFyXPit5Oino=)
2: v5RCvCqHry4pLvPzMJDwat4R8VA.roa (hash: Nc/262spRPspG2StfvRWMrFBeCURy94KpD9ocUGZ6Ic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:94:4d:f5:0e:f9:91:f2:aa:6c:3d:b5:0f:e3:20:8f:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827313247c486fe434833c09087a00a900301840
Validity
Not Before: May 3 04:00:59 2025 GMT
Not After : May 4 04:00:59 2025 GMT
Subject: CN=544ba5286814897d3958ddd9e5ecc664bb1b38b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:b2:88:73:55:32:66:38:44:da:19:5d:cb:36:
06:e5:43:1f:ff:fd:2f:8e:be:2e:88:48:50:c1:4a:
f1:df:d8:a3:c1:b3:64:21:ac:31:c6:fe:ce:e5:5d:
00:b7:78:2d:31:01:4e:aa:8d:9d:81:da:9b:a7:84:
e9:e3:23:b1:50:52:50:3f:98:e5:15:96:48:6a:30:
f6:2b:0e:3c:29:7e:9a:61:39:e1:93:7f:fd:83:d5:
89:98:a3:30:70:76:ef:9a:28:0c:13:08:1f:7e:fb:
a0:c8:dd:67:20:9e:49:e7:4a:39:40:99:8a:fb:35:
25:6f:78:b7:bc:c4:c2:e0:e0:33:48:bf:fb:d6:b7:
fb:32:77:ad:6f:db:48:3e:fd:bd:3f:0c:fb:2e:24:
df:f5:99:1b:db:ab:c2:d5:b6:f9:bf:80:41:97:0f:
03:04:e1:c8:35:51:f4:96:ef:1e:2c:98:02:97:9c:
a9:4c:f0:07:01:12:c6:f9:ee:b3:20:d8:84:28:ba:
9d:d2:a9:87:7e:ee:4d:ed:84:93:ce:f6:3c:df:84:
ba:d5:43:80:56:b4:a6:b7:f6:02:e0:b0:98:96:26:
26:80:a5:3d:b1:d7:61:bd:b1:76:e1:cd:70:96:22:
e6:63:20:72:9b:b9:86:7f:56:cc:32:2c:46:7d:dd:
a2:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:4B:A5:28:68:14:89:7D:39:58:DD:D9:E5:EC:C6:64:BB:1B:38:B0
X509v3 Authority Key Identifier:
keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:a8:a5:97:25:0b:e4:da:fc:bc:e3:5d:43:a7:77:48:7d:2b:
c3:a2:c5:2b:81:d8:a8:8e:f6:4f:5a:43:c3:6b:39:c3:37:dd:
b2:31:c2:33:85:78:c9:2f:9f:1e:e3:00:59:8e:09:ac:69:8a:
18:32:d0:38:53:87:4e:cb:2e:98:8d:76:b7:97:84:3c:17:91:
40:37:cf:fd:87:94:c7:d6:89:2d:96:5c:61:24:43:65:fd:79:
23:23:a9:c3:ff:56:07:fb:ad:88:e8:72:ea:f2:b0:22:12:03:
7f:d5:51:c9:b3:ff:7a:12:7d:dc:66:c1:a9:d4:a0:08:bd:82:
51:4b:0e:93:6a:e8:ea:3a:b3:4e:37:03:3c:ae:92:68:10:e3:
c9:01:0e:1d:f2:93:04:ed:5d:8d:48:96:23:4f:c6:99:a1:08:
e5:5f:22:46:5c:8f:38:9f:5d:3f:d1:73:3c:c0:24:b7:c2:d4:
5b:24:15:c6:78:f3:63:9a:e7:b5:dd:f0:f3:97:5a:44:35:d3:
e3:96:b9:cc:08:2e:67:44:3c:ac:5b:25:a9:77:02:95:82:bf:
9b:48:b6:de:8a:67:1e:2c:1b:00:8e:d3:4f:ed:03:3b:0c:b2:
a3:0f:16:71:42:40:9f:0d:14:98:7b:77:8c:f8:ef:5b:c4:5c:
01:61:e9:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 13:30:14 2025 by rpki-client