Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
File: gzVETFgRYcWIroS-AZZbyOg3gLg.mft (raw, json)
Hash identifier: HPmwvVH2mJmbheiVLM30Kbxva5PuwPdACyLCjxmRX0c=
Subject key identifier: 10:3E:05:A4:62:B4:D4:5D:01:32:EA:5B:BE:C4:BA:D0:AC:A7:2B:24
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 0196549290655CA5CE9963D5F6B71003C3C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
Manifest number: 1228
Signing time: Sun 20 Apr 2025 19:00:13 +0000
Manifest this update: Sun 20 Apr 2025 19:00:13 +0000
Manifest next update: Mon 21 Apr 2025 19:00:13 +0000
Files and hashes: 1: 52xHcZKMiLkJfC48D6ah-VZ8yTA.roa (hash: jrz3bp7KHkqbn8SdD2JCqFdwlcK3RRhyL/xchThJ/cc=)
2: gzVETFgRYcWIroS-AZZbyOg3gLg.crl (hash: bxp6sJtsiAKA8ooN0i5opVkuEfz9rFgkUDl2vGf2RKc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 19:00:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:92:90:65:5c:a5:ce:99:63:d5:f6:b7:10:03:c3:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Apr 20 19:00:13 2025 GMT
Not After : Apr 21 19:00:13 2025 GMT
Subject: CN=103e05a462b4d45d0132ea5bbec4bad0aca72b24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:02:12:e1:b9:0a:df:1b:77:d9:22:72:32:49:
6c:75:60:6f:dc:e3:83:11:b3:c2:3f:e6:60:b7:99:
96:7d:d7:8e:06:9d:25:cf:06:23:97:8a:6a:d1:53:
9e:41:24:b1:c2:2f:f2:04:3d:6e:31:8e:96:9d:6b:
82:98:3a:fc:05:c2:da:a3:d8:2a:9f:ae:03:2e:94:
a8:da:b2:04:32:8f:b6:b8:48:31:23:da:67:bf:80:
fa:4d:7c:36:66:a0:fa:44:6c:e2:dd:bd:dd:8b:0c:
f2:9e:8a:9b:d8:c4:df:07:86:b8:be:39:4f:c5:2e:
bd:71:cf:5b:e8:e6:25:c1:07:bd:31:59:9c:9b:d4:
d4:e5:30:42:d9:d8:15:83:c9:3c:00:35:6e:d1:b9:
71:29:6d:0f:e4:08:79:ad:c5:65:2e:52:e0:5c:d2:
74:6e:f2:bb:0d:44:58:d5:3d:46:53:30:79:80:0a:
cf:06:c7:d2:22:a3:05:d5:0c:cb:49:bc:0d:18:b4:
0a:b4:25:cd:c3:f0:bd:79:5a:25:da:d8:7f:b9:25:
68:61:26:67:1d:3e:b7:db:44:f1:5f:25:6f:f6:2a:
f4:89:bf:20:23:db:1a:d0:e7:6f:be:18:95:8c:6a:
1e:88:f1:27:51:91:ee:af:b3:e2:b7:be:67:59:10:
b0:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:3E:05:A4:62:B4:D4:5D:01:32:EA:5B:BE:C4:BA:D0:AC:A7:2B:24
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:0e:5b:05:a9:14:93:db:a1:1f:ab:1e:0a:6d:00:4d:a0:89:
d3:89:63:95:c9:dc:ca:18:88:82:33:12:f8:17:13:53:fe:9f:
8c:ae:b1:b2:ed:59:b0:5f:ad:ca:66:48:a3:fa:ad:d3:31:68:
1c:3e:b2:32:f1:14:50:1b:13:bd:18:a5:24:5f:f6:e2:74:e9:
d7:d7:3f:08:8f:d3:d4:7a:9a:54:34:d8:6d:1c:4e:d4:90:12:
63:b7:bf:2b:2a:bf:79:d7:29:4b:c4:06:13:1b:d2:b6:01:0f:
1a:ea:22:c0:ce:0c:5e:19:10:1a:94:b4:16:d4:81:9d:b4:95:
c8:65:93:fa:7a:53:d8:51:5c:23:9a:3d:d0:20:ed:6f:83:aa:
a3:7d:21:41:55:ba:46:4d:fa:51:36:f0:d7:45:39:63:7f:6f:
47:ab:88:fa:cc:e7:cd:5c:83:9a:23:6d:f3:ed:55:76:9a:d1:
bd:36:b2:8c:66:51:67:32:75:fe:8f:0b:b4:89:48:ce:37:13:
25:fb:8b:dc:c1:64:fb:99:91:1e:c5:c8:b8:17:c2:7d:1a:42:
ce:64:7d:ea:4d:96:0c:9a:50:8f:03:99:ad:15:9d:01:49:37:
bb:91:b0:ef:9e:63:f8:19:a8:a7:a0:80:3c:12:37:69:4b:c3:
8a:d4:8f:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 03:30:31 2025 by rpki-client