Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
File: gBbMsax3x8AqTt5gbfH375c6C_k.mft (raw, json)
Hash identifier: O/qxABmZ17bXbnhXY3IdemKZAdHfVGr7XUZ3V/ULDJU=
Subject key identifier: 61:BA:F9:E7:30:86:9C:25:63:94:0C:A6:AF:54:50:44:87:9E:84:24
Authority key identifier: 80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
Certificate issuer: /CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Certificate serial: 01967944913CE5D4C7EEE11737A30A23A215
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
Manifest number: 0FBD
Signing time: Sun 27 Apr 2025 22:00:58 +0000
Manifest this update: Sun 27 Apr 2025 22:00:58 +0000
Manifest next update: Mon 28 Apr 2025 22:00:58 +0000
Files and hashes: 1: Ax6Vm0VTZQY0FLe1VYl0Sd0_sqo.roa (hash: X5Han0rbC/tYWBQcqeDkAJUru7qclM/G19tIpVV4C6g=)
2: gBbMsax3x8AqTt5gbfH375c6C_k.crl (hash: bqsL299IvJ2G1t2rWnKzlE/4tbye2qNdtKR1bphCRzo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 22:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:79:44:91:3c:e5:d4:c7:ee:e1:17:37:a3:0a:23:a2:15
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Validity
Not Before: Apr 27 22:00:58 2025 GMT
Not After : Apr 28 22:00:58 2025 GMT
Subject: CN=61baf9e730869c2563940ca6af545044879e8424
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:9e:42:ad:28:45:cb:6a:9a:b3:e3:2f:7d:a6:
34:6d:26:d1:f3:57:50:e9:1c:9d:96:cf:b8:77:20:
33:95:1a:73:c7:37:5e:a6:bd:48:9e:4a:6b:fa:c5:
7d:d7:dd:99:73:20:7a:28:e8:f3:24:81:72:05:84:
94:47:b7:54:d9:c8:4b:2d:30:12:87:1c:cf:8b:e7:
8c:c3:d8:bc:02:1b:54:b2:eb:85:cb:15:8a:a0:c6:
d5:11:df:6a:e5:ae:da:63:8e:5f:23:b4:a2:f1:4c:
39:de:3b:49:61:81:87:73:d2:a5:33:72:3c:77:0b:
36:c0:a6:f8:41:01:df:85:a5:5c:bc:d0:55:22:a3:
55:07:a3:17:7c:d0:e3:af:eb:ed:d0:55:f6:05:dc:
32:1b:ca:bb:eb:ec:99:87:69:9b:8b:19:90:49:89:
e6:b5:f8:7a:15:3a:1a:a6:d3:f8:2b:72:4b:b7:ef:
85:66:78:b4:ac:85:9f:ff:03:ff:1b:cb:c5:1a:d0:
95:4a:ca:52:fa:70:f0:bb:92:ad:40:41:9a:10:4c:
1e:53:b0:54:ee:4d:f1:5d:c3:67:32:23:1e:b5:f6:
9e:ff:19:e3:fb:70:a7:04:4d:7c:4e:8d:08:20:b2:
df:83:00:45:22:40:bf:a1:e0:f1:db:49:c6:18:9d:
29:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:BA:F9:E7:30:86:9C:25:63:94:0C:A6:AF:54:50:44:87:9E:84:24
X509v3 Authority Key Identifier:
keyid:80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:ef:dd:e2:41:bb:6b:3e:f9:b2:73:46:23:bd:84:da:01:83:
b9:84:38:1b:26:cc:94:20:35:dc:a1:05:18:f4:bf:1b:3b:78:
b2:a8:56:4f:b6:b2:2a:72:71:eb:80:f9:8a:df:8a:db:a3:cc:
b5:c2:ec:31:97:3e:e9:ef:e6:c2:f0:6d:6d:f8:6d:88:96:2b:
80:68:0f:08:f4:89:22:00:d0:0a:15:3c:36:02:86:6c:a6:91:
ab:bd:37:50:92:b0:50:03:66:5f:1d:2b:f0:52:e8:62:ab:bc:
e7:9c:5c:03:88:07:83:79:91:85:cc:b2:fb:47:72:32:81:92:
3c:64:15:2c:d0:3e:ac:32:df:d8:e5:cf:40:37:73:0d:d9:87:
c9:42:7f:f3:51:13:32:1e:af:8e:7a:f1:a6:76:f8:22:98:ee:
a5:8a:aa:9c:cb:04:96:5b:a2:c3:eb:d8:4a:7c:37:2b:2c:d9:
e4:23:18:71:7d:9f:bd:d9:17:6d:db:6b:3d:d7:12:54:63:4c:
eb:b1:53:f8:c4:58:0f:51:45:cd:b8:7d:44:90:9f:4e:eb:db:
06:d9:f9:5e:54:48:01:6b:e4:bd:94:4d:73:7d:93:d4:e4:5a:
6b:ca:4a:3e:4c:58:52:4d:b6:70:ec:f3:28:9b:49:ea:bf:9e:
db:d1:fb:e2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZ5RJE85dTH7uEXN6MKI6IVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwMTZjY2IxYWM3N2M3YzAyYTRlZGU2MDZkZjFmN2VmOTcz
YTBiZjkwHhcNMjUwNDI3MjIwMDU4WhcNMjUwNDI4MjIwMDU4WjAzMTEwLwYDVQQD
Eyg2MWJhZjllNzMwODY5YzI1NjM5NDBjYTZhZjU0NTA0NDg3OWU4NDI0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtp5CrShFy2qas+MvfaY0bSbR81dQ
6Rydls+4dyAzlRpzxzdepr1Inkpr+sV9192ZcyB6KOjzJIFyBYSUR7dU2chLLTAS
hxzPi+eMw9i8AhtUsuuFyxWKoMbVEd9q5a7aY45fI7Si8Uw53jtJYYGHc9KlM3I8
dws2wKb4QQHfhaVcvNBVIqNVB6MXfNDjr+vt0FX2BdwyG8q76+yZh2mbixmQSYnm
tfh6FToaptP4K3JLt++FZni0rIWf/wP/G8vFGtCVSspS+nDwu5KtQEGaEEweU7BU
7k3xXcNnMiMetfae/xnj+3CnBE18To0IILLfgwBFIkC/oeDx20nGGJ0pQQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGG6+ecwhpwlY5QMpq9UUESHnoQkMB8GA1UdIwQY
MBaAFIAWzLGsd8fAKk7eYG3x9++XOgv5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0JiTXNheDN4OEFxVHQ1Z2JmSDM3NWM2Q19rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC9hYmMwZjgtMWYxZi00YzY1LWJiODUt
YTk2NmFlODU2OTI2LzEvZ0JiTXNheDN4OEFxVHQ1Z2JmSDM3NWM2Q19rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jZC9hYmMwZjgtMWYxZi00YzY1LWJiODUtYTk2NmFlODU2OTI2
LzEvZ0JiTXNheDN4OEFxVHQ1Z2JmSDM3NWM2Q19rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWO/d4kG7
az75snNGI72E2gGDuYQ4GybMlCA13KEFGPS/Gzt4sqhWT7ayKnJx64D5it+K26PM
tcLsMZc+6e/mwvBtbfhtiJYrgGgPCPSJIgDQChU8NgKGbKaRq703UJKwUANmXx0r
8FLoYqu855xcA4gHg3mRhcyy+0dyMoGSPGQVLNA+rDLf2OXPQDdzDdmHyUJ/81ET
Mh6vjnrxpnb4IpjupYqqnMsElluiw+vYSnw3KyzZ5CMYcX2fvdkXbdtrPdcSVGNM
67FT+MRYD1FFzbh9RJCfTuvbBtn5XlRIAWvkvZRNc32T1ORaa8pKPkxYUk22cOzz
KJtJ6r+e29H74g==
-----END CERTIFICATE-----
Generated at Mon Apr 28 06:15:27 2025 by rpki-client