Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
File: gSBe85sNP11y-h2XHUGR4Lomhr8.mft (raw, json)
Hash identifier: 0gMiCJIHBnvsJUvCVtv+EihG4BjZvMDJm9ji3UMg9Mk=
Subject key identifier: 34:15:60:D9:E8:47:8E:90:FB:80:0A:EE:8E:04:C7:85:13:F0:90:6B
Authority key identifier: 81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
Certificate issuer: /CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Certificate serial: 01960A1E1EE16E335F771BA326F3811C0C6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
Manifest number: 0BBD
Signing time: Sun 06 Apr 2025 08:01:08 +0000
Manifest this update: Sun 06 Apr 2025 08:01:08 +0000
Manifest next update: Mon 07 Apr 2025 08:01:08 +0000
Files and hashes: 1: gSBe85sNP11y-h2XHUGR4Lomhr8.crl (hash: zW61ygQanleOaZt7AbzH9o07YiwbTH+jl4GGHiUOUZ4=)
2: tejhqyIYcfJnZD52AowM2BpZATQ.roa (hash: oI2/9MVukstCSiurn/ztv7Ci6tJsVocDaOvri7bb8FY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 07 Apr 2025 07:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:0a:1e:1e:e1:6e:33:5f:77:1b:a3:26:f3:81:1c:0c:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81205ef39b0d3f5d72fa1d971d4191e0ba2686bf
Validity
Not Before: Apr 6 08:01:08 2025 GMT
Not After : Apr 7 08:01:08 2025 GMT
Subject: CN=341560d9e8478e90fb800aee8e04c78513f0906b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:40:a0:2d:8c:20:04:01:ac:05:fb:f0:0c:45:
f4:1d:94:c8:5d:ed:5b:97:6a:87:8b:66:9b:60:d6:
16:35:85:96:5c:03:a9:44:7f:52:d1:27:30:3c:aa:
82:54:c2:06:88:07:f3:17:97:7b:d6:0e:a9:d4:29:
0c:04:0a:4b:64:82:66:fe:43:2a:85:6a:2b:d8:6c:
fe:98:13:31:b4:00:62:6c:0c:2d:71:28:c4:38:c5:
b5:14:b4:35:16:74:73:13:d2:10:fb:5c:d2:79:a4:
76:14:ca:ea:7a:ff:7c:e6:7e:6b:86:f0:86:03:b8:
5f:80:56:9b:07:04:6a:ca:d7:6f:de:f8:d2:81:6f:
63:52:ca:a6:35:68:8e:b2:fb:fa:47:f1:c0:f7:a6:
75:b9:db:7a:63:c5:a5:4a:7f:af:a6:dc:a9:09:de:
7b:5d:66:c6:3e:f9:f4:39:3d:ad:3e:36:2a:be:02:
5a:1e:d3:70:58:3f:cc:a0:0f:e2:96:79:33:d3:20:
b7:3d:b1:99:cf:66:45:9e:a8:5d:40:af:9f:c4:f8:
36:1f:fd:d4:3f:7d:81:4e:47:50:97:bf:12:a1:3f:
c0:c4:0b:ad:99:e2:67:9e:29:c4:f7:b0:d9:04:7e:
ab:0a:aa:76:70:00:84:6e:74:71:11:8b:e7:0f:80:
63:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:15:60:D9:E8:47:8E:90:FB:80:0A:EE:8E:04:C7:85:13:F0:90:6B
X509v3 Authority Key Identifier:
keyid:81:20:5E:F3:9B:0D:3F:5D:72:FA:1D:97:1D:41:91:E0:BA:26:86:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSBe85sNP11y-h2XHUGR4Lomhr8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/b56881-e919-445a-9923-89a9023261f1/1/gSBe85sNP11y-h2XHUGR4Lomhr8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:97:af:f7:ba:2a:ee:90:2b:2f:3d:01:9a:33:15:7e:b1:47:
6d:5e:21:a9:ce:46:91:63:e1:12:1f:23:52:fe:1f:bc:28:53:
4d:07:f2:b0:6b:5f:ec:18:3c:33:23:b1:f8:fb:e3:37:b3:0e:
fa:8f:a9:0b:5a:c4:a7:5e:a4:bc:a8:6f:0a:7e:2f:d1:b1:02:
4e:93:a5:44:47:0c:5e:7e:b7:4f:0d:6a:d1:36:83:c7:e2:1f:
f0:06:2b:e9:6f:77:cb:a6:b0:34:71:4a:a6:33:71:5d:4e:e9:
6a:80:af:51:14:a9:12:0e:33:7b:66:9b:bc:ad:4f:d1:15:d1:
d1:96:ca:d7:40:9a:89:83:7c:01:ec:92:39:0a:cf:21:4f:0b:
25:42:e0:3b:1d:53:8b:15:24:98:87:b6:3f:2f:01:98:76:21:
51:b6:de:3b:3c:30:67:39:98:07:69:d2:2a:7c:32:75:53:2f:
fe:4c:5a:f4:55:3e:bc:ce:50:75:4a:42:e7:11:15:34:fc:5a:
df:69:e7:74:8c:64:4f:18:d6:e0:18:cc:ab:a2:63:9c:ac:b2:
f5:e3:2f:1d:9c:c6:fc:6b:e9:e1:af:c6:75:97:09:a5:be:79:
58:3f:1b:59:59:2a:66:5a:9a:34:dd:f4:bf:db:81:94:5a:79:
3d:55:9a:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 17:03:28 2025 by rpki-client