Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.mft
File: GzKDA753IAE7cIOOSOupO0IDh90.mft (raw, json)
Hash identifier: /POPveo1b2hrhiiu+QQpP0x7ws1qET8skFb8bdO7RRI=
Subject key identifier: 6C:1B:BC:92:A0:A7:8D:6E:F8:FA:13:4F:C4:38:45:9B:09:81:F7:8C
Authority key identifier: 1B:32:83:03:BE:77:20:01:3B:70:83:8E:48:EB:A9:3B:42:03:87:DD
Certificate issuer: /CN=1b328303be7720013b70838e48eba93b420387dd
Certificate serial: 019678D60553D07CC2BBB9F613CB2F87316A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GzKDA753IAE7cIOOSOupO0IDh90.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.mft
Manifest number: 04BB
Signing time: Sun 27 Apr 2025 20:00:14 +0000
Manifest this update: Sun 27 Apr 2025 20:00:14 +0000
Manifest next update: Mon 28 Apr 2025 20:00:14 +0000
Files and hashes: 1: GzKDA753IAE7cIOOSOupO0IDh90.crl (hash: U00lVxbkIgNfWSCXilB6YNzFaHVBzVotunpyFKneMKM=)
2: aLfo3q6L0mVOuK0za6OIf6mWxIg.roa (hash: 7LeZnYMqXpBceqMPtLfdcEQrWgVh8yNUNh6lUyY5uzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.mft
rsync://rpki.ripe.net/repository/DEFAULT/GzKDA753IAE7cIOOSOupO0IDh90.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 28 Apr 2025 14:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:78:d6:05:53:d0:7c:c2:bb:b9:f6:13:cb:2f:87:31:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b328303be7720013b70838e48eba93b420387dd
Validity
Not Before: Apr 27 20:00:14 2025 GMT
Not After : Apr 28 20:00:14 2025 GMT
Subject: CN=6c1bbc92a0a78d6ef8fa134fc438459b0981f78c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:5e:cc:32:55:d5:91:1e:35:b8:5b:a0:2d:c7:
6a:47:56:4c:38:2f:61:6f:c9:f0:7b:80:a1:1e:77:
f5:86:20:57:02:df:6e:59:75:61:ad:47:20:e9:28:
32:61:2f:bb:ef:3a:c9:a6:a4:6e:af:fe:e9:c1:07:
58:b0:a7:80:39:4e:8c:f7:f6:01:59:44:71:ca:86:
02:69:03:24:7c:f8:9f:f1:f7:f5:1d:ac:d1:40:0c:
cc:f6:2c:4f:eb:37:a7:04:d8:b3:ae:33:96:25:a0:
c5:41:da:38:fe:74:73:79:03:f2:e3:34:69:20:0f:
45:da:9c:2b:0e:1a:e3:8f:ba:0f:f0:7e:ee:9d:d8:
bf:cb:e8:98:ea:9d:30:5f:81:b0:85:3d:dc:63:7a:
a0:ee:1f:7f:fc:88:8a:56:f1:89:41:41:01:c5:2d:
3a:07:3f:77:b3:b8:02:a7:a1:bc:ee:29:b1:7b:cb:
8a:ce:81:92:5e:67:4d:6b:ac:46:d9:03:d3:f8:bb:
ff:d5:8c:78:db:d0:94:36:3a:02:4b:8c:59:dd:e7:
31:4c:22:f0:78:30:37:16:d1:cf:a0:19:e3:27:b0:
36:c8:76:04:6d:05:a3:f1:1a:c4:37:39:83:49:93:
fc:40:92:dd:b5:33:98:9f:20:96:31:60:8d:fc:09:
b4:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:1B:BC:92:A0:A7:8D:6E:F8:FA:13:4F:C4:38:45:9B:09:81:F7:8C
X509v3 Authority Key Identifier:
keyid:1B:32:83:03:BE:77:20:01:3B:70:83:8E:48:EB:A9:3B:42:03:87:DD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GzKDA753IAE7cIOOSOupO0IDh90.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/eb3207-8410-4046-a449-760ba7436c24/1/GzKDA753IAE7cIOOSOupO0IDh90.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:68:2b:17:8d:1e:36:4b:c0:8e:8d:b5:d8:8a:ef:0c:c0:d6:
9d:8d:2a:59:30:18:b8:68:2a:2f:83:62:4e:7b:68:c7:38:d8:
00:4c:8e:95:d2:b8:97:b1:7f:d6:37:18:f6:ae:69:04:03:e0:
90:d2:65:03:b1:84:45:eb:c9:b8:8f:f2:1a:9e:88:01:31:0f:
a0:c4:4d:cf:cb:be:5b:2d:35:bd:f5:c6:fa:1a:a8:07:2c:3c:
2d:8b:33:a8:21:97:f9:30:57:d1:ef:e5:2c:48:aa:5e:09:25:
0c:84:05:34:8d:f8:52:70:0e:d7:88:29:14:1b:cd:f0:8c:3a:
80:23:1a:e3:1d:0a:47:cc:ae:2f:50:13:00:75:13:cc:c0:f3:
ad:d3:ad:7b:b3:89:15:6a:52:7c:e0:a3:18:79:d1:fd:de:88:
64:1e:56:60:88:1d:49:4e:3d:39:7d:7d:4f:a4:c9:a2:ce:47:
7b:5a:54:dd:98:00:36:f1:23:29:c4:09:c4:bf:ab:b1:49:49:
03:20:22:e7:42:b5:5d:5d:13:b2:49:e0:0f:b4:2d:8a:db:02:
33:58:87:0f:ef:cc:0e:5b:4f:08:f6:63:f0:02:46:28:dc:f3:
48:d4:0a:77:ac:85:a6:5d:d7:fd:5f:08:43:b2:05:3a:4e:30:
17:39:29:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 27 23:55:32 2025 by rpki-client