Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
File: GtTMzv5VxeIjqbMgW5OKPRyehtU.mft (raw, json)
Hash identifier: /JC5tdxxoDwCLsGyR5/PN3AFATbh6W5n7/DxZZDmu9Q=
Subject key identifier: 75:EF:09:FF:9F:8D:F5:65:E7:45:B9:76:DB:EE:7B:39:4B:65:76:56
Authority key identifier: 1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
Certificate issuer: /CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Certificate serial: 01965982D263D814F226AEDC6AA387344B10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
Manifest number: 11E1
Signing time: Mon 21 Apr 2025 18:01:07 +0000
Manifest this update: Mon 21 Apr 2025 18:01:07 +0000
Manifest next update: Tue 22 Apr 2025 18:01:07 +0000
Files and hashes: 1: 7lJrTTIO2zooVSl7zZp_UO3NA2A.roa (hash: ob9QTWC/tQoW4XviSigFRT+IWVM+wZzBVH2/SY3oV7I=)
2: GtTMzv5VxeIjqbMgW5OKPRyehtU.crl (hash: MbKzxdwxBqEazNZncw6ylQUbC8QrMf6qJ2JFr0px5Ok=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 18:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:82:d2:63:d8:14:f2:26:ae:dc:6a:a3:87:34:4b:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad4cccefe55c5e223a9b3205b938a3d1c9e86d5
Validity
Not Before: Apr 21 18:01:07 2025 GMT
Not After : Apr 22 18:01:07 2025 GMT
Subject: CN=75ef09ff9f8df565e745b976dbee7b394b657656
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:ce:51:bc:28:b3:4c:b9:3d:54:28:f6:f9:4f:
8a:b5:c4:68:6e:c0:21:3b:5c:39:0d:65:d9:94:22:
34:55:75:1d:c4:bb:8c:85:48:92:27:37:e6:44:75:
f7:84:83:74:13:10:92:01:2b:0e:4d:39:b1:a2:7a:
dc:a6:12:6e:17:a4:b4:3c:c8:da:82:7f:3f:b0:c6:
b6:9f:67:a9:85:58:6d:13:ad:05:3f:d9:8e:c0:9d:
42:68:35:7e:94:d3:ee:4d:60:b4:b8:0b:b0:5a:ae:
16:c2:80:d3:71:61:9e:7f:34:31:3b:aa:38:27:02:
1a:7c:4b:0b:5e:26:41:f6:71:26:8b:f9:99:1b:e7:
8e:57:ba:a7:d3:ec:44:dd:1d:4b:72:48:c1:ed:28:
fd:0e:85:61:09:d1:18:67:c0:e8:c7:5f:33:89:e3:
31:a5:7f:2e:f2:64:53:d8:50:21:d0:9d:75:25:cc:
c0:40:e0:70:c2:94:18:21:1f:c1:ad:a3:25:e0:d7:
6f:07:f1:79:d8:b0:bd:9b:61:77:78:ba:22:a1:15:
0a:0c:ea:20:a9:a4:e7:49:f6:22:86:a3:a5:e6:7a:
d2:b9:c1:a9:5e:66:7e:d6:32:4d:9c:a6:65:af:d1:
e6:8e:ca:c0:3e:1c:0a:8e:ab:b6:94:79:ba:5b:b7:
7e:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:EF:09:FF:9F:8D:F5:65:E7:45:B9:76:DB:EE:7B:39:4B:65:76:56
X509v3 Authority Key Identifier:
keyid:1A:D4:CC:CE:FE:55:C5:E2:23:A9:B3:20:5B:93:8A:3D:1C:9E:86:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtTMzv5VxeIjqbMgW5OKPRyehtU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/d23870-74c7-4a84-90ec-c32036750e36/1/GtTMzv5VxeIjqbMgW5OKPRyehtU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:aa:d0:99:97:79:a8:ae:05:08:59:f7:24:77:46:ca:0f:15:
00:46:59:d4:2e:1f:fc:20:73:76:02:f0:dc:b0:15:5f:0c:5c:
e9:ae:fa:93:77:75:89:92:2e:88:1b:63:eb:f2:42:16:ba:50:
a6:b9:d9:39:9e:f0:e5:ef:34:5d:70:3c:90:14:05:24:38:89:
e7:80:5a:87:ab:26:e5:db:b8:b8:e7:ef:51:b5:50:51:47:3e:
a2:fe:32:0f:34:4e:0d:58:36:b2:d2:8f:a2:59:c5:e2:a3:5a:
96:fe:51:96:47:b5:58:39:f8:52:b6:b8:4b:20:22:61:96:89:
72:9b:7c:a3:fa:06:09:e6:31:63:f9:29:15:f4:df:dc:60:80:
d0:f9:28:76:d9:3f:72:86:54:ea:26:d6:07:dd:79:e6:ba:97:
3a:3d:db:73:54:65:db:95:75:cd:0a:79:f3:93:3f:f6:33:ba:
42:a1:4b:7a:ae:2b:ec:b8:e2:35:37:5a:39:a3:2f:07:a4:80:
eb:63:57:03:58:bc:4b:83:ce:68:1e:85:e0:20:aa:ff:f3:0f:
bb:92:77:9e:88:53:1d:6c:18:de:aa:66:03:61:b9:d9:f6:cf:
90:f6:48:3b:f7:1b:d0:47:27:04:3b:a9:32:57:99:01:72:4b:
77:4d:ba:71
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZZgtJj2BTyJq7caqOHNEsQMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFhZDRjY2NlZmU1NWM1ZTIyM2E5YjMyMDViOTM4YTNkMWM5
ZTg2ZDUwHhcNMjUwNDIxMTgwMTA3WhcNMjUwNDIyMTgwMTA3WjAzMTEwLwYDVQQD
Eyg3NWVmMDlmZjlmOGRmNTY1ZTc0NWI5NzZkYmVlN2IzOTRiNjU3NjU2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjM5RvCizTLk9VCj2+U+KtcRobsAh
O1w5DWXZlCI0VXUdxLuMhUiSJzfmRHX3hIN0ExCSASsOTTmxonrcphJuF6S0PMja
gn8/sMa2n2ephVhtE60FP9mOwJ1CaDV+lNPuTWC0uAuwWq4WwoDTcWGefzQxO6o4
JwIafEsLXiZB9nEmi/mZG+eOV7qn0+xE3R1LckjB7Sj9DoVhCdEYZ8Dox18zieMx
pX8u8mRT2FAh0J11JczAQOBwwpQYIR/BraMl4NdvB/F52LC9m2F3eLoioRUKDOog
qaTnSfYihqOl5nrSucGpXmZ+1jJNnKZlr9HmjsrAPhwKjqu2lHm6W7d+NwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHXvCf+fjfVl50W5dtvuezlLZXZWMB8GA1UdIwQY
MBaAFBrUzM7+VcXiI6mzIFuTij0cnobVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR3RUTXp2NVZ4ZUlqcWJNZ1c1T0tQUnllaHRVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9kMjM4NzAtNzRjNy00YTg0LTkwZWMt
YzMyMDM2NzUwZTM2LzEvR3RUTXp2NVZ4ZUlqcWJNZ1c1T0tQUnllaHRVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wZi9kMjM4NzAtNzRjNy00YTg0LTkwZWMtYzMyMDM2NzUwZTM2
LzEvR3RUTXp2NVZ4ZUlqcWJNZ1c1T0tQUnllaHRVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvKrQmZd5
qK4FCFn3JHdGyg8VAEZZ1C4f/CBzdgLw3LAVXwxc6a76k3d1iZIuiBtj6/JCFrpQ
prnZOZ7w5e80XXA8kBQFJDiJ54Bah6sm5du4uOfvUbVQUUc+ov4yDzRODVg2stKP
olnF4qNalv5Rlke1WDn4Ura4SyAiYZaJcpt8o/oGCeYxY/kpFfTf3GCA0Pkodtk/
coZU6ibWB9155rqXOj3bc1Rl25V1zQp585M/9jO6QqFLeq4r7LjiNTdaOaMvB6SA
62NXA1i8S4POaB6F4CCq//MPu5J3nohTHWwY3qpmA2G52fbPkPZIO/cb0EcnBDup
MleZAXJLd026cQ==
-----END CERTIFICATE-----
Generated at Tue Apr 22 02:19:37 2025 by rpki-client