Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.mft
File: gKMz0T3JFfT7-2GyWkh36ROOfx0.mft (raw, json)
Hash identifier: 0xGkLe2JEniy46k6N237s3chvR4i3wQKcisXpqxHYYg=
Subject key identifier: 68:CF:52:F0:F6:C3:CD:F2:24:22:D2:C8:F6:D1:F9:12:8E:AF:D9:A2
Authority key identifier: 80:A3:33:D1:3D:C9:15:F4:FB:FB:61:B2:5A:48:77:E9:13:8E:7F:1D
Certificate issuer: /CN=80a333d13dc915f4fbfb61b25a4877e9138e7f1d
Certificate serial: 0196561349EF634C2A0C9CF6600B260DF49F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKMz0T3JFfT7-2GyWkh36ROOfx0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.mft
Manifest number: 14FC
Signing time: Mon 21 Apr 2025 02:00:26 +0000
Manifest this update: Mon 21 Apr 2025 02:00:26 +0000
Manifest next update: Tue 22 Apr 2025 02:00:26 +0000
Files and hashes: 1: EV9I607bk7yKT2_ZGGPzpK_T3Kw.roa (hash: +4JZ98C4BqbbLLfwtggPDHTa1SBuwVe0r20VBr9Sh7Q=)
2: gKMz0T3JFfT7-2GyWkh36ROOfx0.crl (hash: ehREvjxMrshQIhFM4tFN74NGIe6sNpH1ghxiCltZAd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKMz0T3JFfT7-2GyWkh36ROOfx0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:49:ef:63:4c:2a:0c:9c:f6:60:0b:26:0d:f4:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a333d13dc915f4fbfb61b25a4877e9138e7f1d
Validity
Not Before: Apr 21 02:00:26 2025 GMT
Not After : Apr 22 02:00:26 2025 GMT
Subject: CN=68cf52f0f6c3cdf22422d2c8f6d1f9128eafd9a2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:76:45:be:ba:af:b3:a8:af:c3:cd:4d:c8:f9:
62:1d:a2:fb:32:aa:09:7d:82:6c:e0:e7:1f:d9:19:
d1:5f:25:3a:b5:b4:97:73:f7:4c:77:00:cd:0c:ff:
c5:a7:11:1a:ca:4b:75:d1:e6:fb:f7:9d:29:30:92:
d6:93:be:1a:98:73:11:cb:12:cf:44:6b:94:d5:b6:
a4:73:0c:1e:6d:0c:27:36:0d:8a:11:82:8d:71:b7:
d7:61:7d:64:71:a1:c1:3f:8e:76:09:4f:ff:1d:92:
b0:12:5a:d2:8e:d0:1d:ab:8e:78:71:fe:88:7a:97:
4e:ff:1f:9c:0d:4d:43:c4:48:26:4a:fc:52:94:bb:
78:96:a2:ff:57:20:21:57:d7:d4:01:37:0b:50:8d:
e6:51:d9:c9:38:1d:b8:24:03:91:2d:41:b2:1b:14:
68:70:65:ad:35:9a:0b:4a:94:fb:4b:4d:bd:c0:34:
1a:e4:f6:0a:2c:bd:f8:5e:c5:92:0b:43:57:21:f8:
ad:62:8c:14:5c:bc:6e:72:f3:f0:69:35:42:4f:5c:
8c:e5:60:a6:71:b3:35:24:7f:e9:f4:93:46:0b:b5:
45:b1:d4:f9:2f:8e:06:80:50:b5:6d:1c:7a:81:7b:
14:69:34:2e:0f:26:f7:50:68:2e:8c:08:88:41:f4:
60:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:CF:52:F0:F6:C3:CD:F2:24:22:D2:C8:F6:D1:F9:12:8E:AF:D9:A2
X509v3 Authority Key Identifier:
keyid:80:A3:33:D1:3D:C9:15:F4:FB:FB:61:B2:5A:48:77:E9:13:8E:7F:1D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKMz0T3JFfT7-2GyWkh36ROOfx0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/139b38-5b24-407d-b17e-4ca35430dca3/1/gKMz0T3JFfT7-2GyWkh36ROOfx0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:a2:41:be:20:c2:c9:f5:80:8f:2a:48:36:96:0a:92:4c:31:
f8:1a:a7:8f:6c:a9:2f:5c:da:fb:23:2f:5d:6f:fb:8b:77:05:
9d:f6:82:7f:93:8e:13:fd:ba:1f:a2:fe:67:dc:ab:a0:46:c0:
15:14:6a:f4:89:19:39:24:ed:13:e6:a9:77:11:f6:75:d1:64:
5f:ad:57:a2:40:fc:52:d6:93:fe:b1:94:9c:ae:e1:a4:63:6e:
ff:a9:91:93:91:f8:be:a1:4f:a0:8b:cc:51:45:b6:48:5f:9d:
43:8a:65:61:d5:a6:3d:93:a1:fa:56:aa:af:e4:8a:28:f3:50:
b0:00:01:29:d9:0a:b3:05:c8:57:bb:b8:2b:2e:cb:9e:a2:d8:
42:7e:21:9b:64:60:da:21:74:4f:a6:e7:0d:28:61:ab:25:1e:
44:e3:8a:cd:ba:d3:03:22:c9:97:13:61:23:2d:3c:9b:b4:7f:
92:21:ad:cb:d8:9e:61:ca:91:32:bd:a4:35:68:a8:7b:3a:0c:
f7:f4:75:bd:c5:c4:3b:ef:e2:55:d2:b5:54:6b:03:7f:e3:1c:
c8:12:16:75:c1:2b:f7:4b:6d:38:91:11:3b:23:bd:3f:f7:75:
79:4e:98:be:31:ec:f4:f8:1b:9f:92:8a:18:4c:a8:b8:58:79:
c1:54:10:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 05:36:03 2025 by rpki-client