Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
File: GHpwT0heEd7avFYmTl2AwUh-CEI.mft (raw, json)
Hash identifier: PXRqwxmX3HAkqZqhubB1WJ9Env+5BmgjZ6SF47TB5W0=
Subject key identifier: 51:D3:F4:E3:FA:46:45:BF:A3:77:13:5E:E7:15:1D:AE:9B:9D:97:61
Authority key identifier: 18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
Certificate issuer: /CN=187a704f485e11dedabc56264e5d80c1487e0842
Certificate serial: 0196786879529BA63D1E5DA72C03D5E7560E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
Manifest number: 4A
Signing time: Sun 27 Apr 2025 18:00:34 +0000
Manifest this update: Sun 27 Apr 2025 18:00:34 +0000
Manifest next update: Mon 28 Apr 2025 18:00:34 +0000
Files and hashes: 1: 7aycDRTYf8P211UyjMoRLngFRos.roa (hash: 1hSkTrGl1NaKOimvmkvsZcL4F2FAkgvJlT6iCyQWKdc=)
2: GHpwT0heEd7avFYmTl2AwUh-CEI.crl (hash: +bGW9cXvENy6ytrjX6ulj0jaUiLKeHnVLNRA2Cefvps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:68:79:52:9b:a6:3d:1e:5d:a7:2c:03:d5:e7:56:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=187a704f485e11dedabc56264e5d80c1487e0842
Validity
Not Before: Apr 27 18:00:34 2025 GMT
Not After : Apr 28 18:00:34 2025 GMT
Subject: CN=51d3f4e3fa4645bfa377135ee7151dae9b9d9761
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:e6:36:04:1e:ff:b0:45:0a:0f:ca:c8:20:2e:
8e:09:0a:31:01:1e:61:1a:2f:6f:d0:52:50:ac:2d:
00:f8:e0:70:09:e5:69:c8:a0:dc:a8:ec:bf:58:f9:
0d:ed:07:62:57:aa:b0:af:45:e5:68:26:0e:05:10:
ea:a1:89:38:78:9d:41:42:a3:d5:88:cc:84:0d:29:
c2:16:75:72:18:9f:14:fb:3d:0e:29:02:ca:d9:fb:
7c:74:ea:4b:60:fa:6a:4b:e7:1c:5e:ed:fc:c3:31:
44:43:6a:b9:a9:64:ab:c0:41:73:26:bd:54:46:98:
e2:f6:d2:48:66:f3:65:c4:df:31:f4:6a:14:bd:82:
d9:88:c1:24:b7:45:a8:4b:da:ef:b5:6d:36:2d:74:
a0:f5:24:e6:d7:fa:07:97:99:38:90:f1:e8:1a:1a:
f9:72:d4:73:d7:e8:94:7f:16:17:da:e2:6b:0e:0f:
e9:f6:90:95:bc:f5:d5:06:bb:ef:41:33:32:ef:eb:
1f:8e:09:78:da:70:c3:9a:b3:b1:92:a7:65:2a:ee:
b4:9e:17:b8:5a:e3:30:b7:bc:a1:dc:51:ef:fe:41:
1f:31:3f:9b:ad:b3:67:b1:e9:b0:35:3e:b8:15:45:
d0:94:c2:b5:33:eb:39:ab:68:49:bf:e9:c4:7b:d4:
bd:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:D3:F4:E3:FA:46:45:BF:A3:77:13:5E:E7:15:1D:AE:9B:9D:97:61
X509v3 Authority Key Identifier:
keyid:18:7A:70:4F:48:5E:11:DE:DA:BC:56:26:4E:5D:80:C1:48:7E:08:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GHpwT0heEd7avFYmTl2AwUh-CEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/698bec-a0f0-42f7-99fa-28516bb7505c/1/GHpwT0heEd7avFYmTl2AwUh-CEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9d:60:08:ba:30:e8:46:63:cd:a9:94:db:b6:8e:fd:31:3c:27:
21:ab:71:93:5c:50:83:75:80:6d:c0:93:4f:a3:02:28:53:d5:
36:5d:ad:02:21:e5:f7:80:d4:62:c8:05:b8:fa:03:4b:62:6e:
ed:71:54:e2:85:9b:da:b5:d2:b8:0c:25:10:75:52:7d:41:49:
f4:5c:2a:25:a6:e6:4c:d6:50:ca:72:1f:7a:fc:73:34:cf:c6:
7b:83:8c:05:76:b3:f3:fc:0c:dc:50:b1:1a:33:4d:2d:0c:13:
17:93:3f:d2:b0:37:02:c9:aa:6c:dc:3b:f8:41:24:51:51:02:
c7:6e:9e:be:49:13:09:69:24:78:2f:f5:30:99:e3:40:2a:42:
db:d3:53:f0:59:0e:fe:f7:c6:bd:dd:95:c3:51:9a:bc:cb:62:
de:4c:8c:d7:64:d0:76:a1:7c:48:f9:ce:30:1d:70:98:47:43:
16:2d:2a:7e:e3:40:da:89:15:c9:7f:27:f1:3e:6d:a6:f4:e3:
48:e3:b9:a6:fa:93:ff:75:44:a9:ba:00:de:43:a9:a9:6a:76:
c7:99:4e:26:73:01:59:91:57:d4:88:f5:b2:e6:2e:06:85:4f:
c7:39:7c:fb:5c:5a:c2:d9:5c:bf:37:87:5f:83:93:38:b7:ef:
7d:b1:98:69
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:41:47 2025 by rpki-client