Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
File: GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft (raw, json)
Hash identifier: rjYRm1kmyzpfHHnIpBXrimn5L2mPEYl4+IYZCl5KnP0=
Subject key identifier: B0:16:68:76:39:2D:43:48:C7:20:72:FA:DB:3E:A6:E0:12:55:24:66
Authority key identifier: 18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
Certificate issuer: /CN=18886007da1730b0770d8604db73d12fd264f3f9
Certificate serial: 0196948452031FD3F7D43A1B7EFA16F71444
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
Manifest number: 05F9
Signing time: Sat 03 May 2025 05:00:21 +0000
Manifest this update: Sat 03 May 2025 05:00:21 +0000
Manifest next update: Sun 04 May 2025 05:00:21 +0000
Files and hashes: 1: 5lbTUO-rP5txsV_jlKv3vzS10Vc.roa (hash: VgScyBVTOIb/scuSoZmb+259XQHu/6r7pBA0Gc4Wdqs=)
2: GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl (hash: 3p1KG15vZ8f0/iA6nhQBwB2BijBAA7afgV+avuijxTo=)
3: RR-wG56YXYGUEbsQFd9GOjHnKvM.roa (hash: eG7mgkU6tN6hBwmEUuDYJD2Lxu/DlOxJUe50nzg9em4=)
4: TdRFPSiE6z0QGX9lW2WUDs-qrvc.roa (hash: uIOA5ClG5A+YjWezToN8AYQViV6aWN3VOQLxA91W/R8=)
5: W9jLQPfJ-gf7W45fE6xy024pvso.roa (hash: myRMJIwFBs9jjITp4SZwdlJzPIPHFfsrLal6I49sinM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 04 May 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:94:84:52:03:1f:d3:f7:d4:3a:1b:7e:fa:16:f7:14:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18886007da1730b0770d8604db73d12fd264f3f9
Validity
Not Before: May 3 05:00:21 2025 GMT
Not After : May 4 05:00:21 2025 GMT
Subject: CN=b0166876392d4348c72072fadb3ea6e012552466
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:49:41:83:ca:86:b2:c4:48:fb:29:3b:44:a0:
96:b0:45:57:45:ff:36:56:da:ac:a6:26:20:7c:b7:
b7:d4:f4:da:2a:2a:43:ca:e8:64:14:2a:b8:ad:19:
85:47:a8:d9:7a:68:3f:f8:0c:9b:02:ac:fc:80:b1:
e7:56:11:89:da:da:6f:94:5a:3b:09:5a:83:2d:4b:
37:7d:6e:31:fd:01:5f:30:fe:16:86:4f:3e:ae:69:
18:a2:ca:c6:56:d3:30:dd:e0:0c:7a:f5:cc:28:74:
21:c1:e9:18:d2:9f:5f:f4:33:1c:4e:68:68:75:33:
26:58:fd:07:28:7d:68:00:14:f3:7e:50:f9:f6:82:
82:18:5b:eb:89:72:cd:bc:9c:a7:ff:ce:69:f5:2c:
ee:e4:de:c1:1c:35:32:b8:c5:aa:0b:de:d4:e5:29:
75:c3:51:bd:d3:f2:ea:00:d9:f4:8e:28:65:87:b8:
44:14:0d:93:d7:0e:71:b1:80:bd:56:f8:19:99:8b:
fc:93:9a:0b:e1:49:34:68:2a:1f:a8:d7:5e:fe:97:
24:6d:4f:bb:b6:5d:20:e6:81:52:10:cb:f9:8a:32:
63:03:a9:11:1a:6b:74:4d:52:83:a6:01:b4:32:7a:
3f:07:2c:5c:ab:a6:53:88:cf:0f:5a:b8:3f:87:8d:
50:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:16:68:76:39:2D:43:48:C7:20:72:FA:DB:3E:A6:E0:12:55:24:66
X509v3 Authority Key Identifier:
keyid:18:88:60:07:DA:17:30:B0:77:0D:86:04:DB:73:D1:2F:D2:64:F3:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GIhgB9oXMLB3DYYE23PRL9Jk8_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/293328-9245-403b-8a4a-169c836bd6b0/1/GIhgB9oXMLB3DYYE23PRL9Jk8_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:09:25:a8:1e:fe:1a:aa:27:80:3e:02:59:39:c0:ca:53:82:
a8:d7:17:c7:b3:27:de:5b:81:ce:f4:cb:76:08:9d:9d:ec:b5:
8b:cd:9a:eb:94:2b:5e:ff:51:b8:1e:8e:8b:4f:4b:fc:a6:ac:
6b:a7:e3:13:db:34:09:98:43:2f:24:5a:a6:b2:00:a3:5c:78:
97:e2:01:07:ff:fa:40:86:9d:31:b8:48:07:81:41:31:89:2c:
c9:58:85:a5:f0:2b:94:af:71:d9:02:77:b5:50:80:13:68:ea:
2b:cc:bf:b9:14:4e:2a:6c:d9:db:92:ad:b5:8f:38:98:e1:02:
23:bd:ea:30:f6:9f:8e:64:72:d7:69:eb:85:69:77:aa:d2:1c:
a0:50:84:ca:a7:cc:e2:b4:f2:68:60:42:86:30:ac:e2:13:66:
2a:8d:64:1e:b5:d6:4e:fc:99:5f:79:ce:44:58:46:07:8e:09:
86:79:08:63:f4:96:f7:94:b9:a5:c8:b4:16:71:41:64:a8:c0:
56:85:ba:e2:99:59:71:4f:5b:6c:dd:1d:0d:81:ed:2e:76:4b:
46:01:7a:75:a3:f3:d3:01:a5:46:e9:38:25:72:87:51:7a:3f:
1b:49:5f:d8:ca:b3:72:2f:ac:0e:53:f2:a9:28:36:bb:46:e4:
98:6c:27:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 3 12:34:57 2025 by rpki-client