Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
File: gBbMsax3x8AqTt5gbfH375c6C_k.mft (raw, json)
Hash identifier: ONS4etvk/aSJQCUajNvbRh5MzGkEeyScdD+yCjmP/DI=
Subject key identifier: 29:9D:FA:D0:4D:23:65:6C:10:1D:79:3D:7F:B9:31:9C:BE:87:48:E9
Authority key identifier: 80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
Certificate issuer: /CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Certificate serial: 01965492E045FFF46A728D05C70877BBA51B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
Manifest number: 0FAA
Signing time: Sun 20 Apr 2025 19:00:33 +0000
Manifest this update: Sun 20 Apr 2025 19:00:33 +0000
Manifest next update: Mon 21 Apr 2025 19:00:33 +0000
Files and hashes: 1: Ax6Vm0VTZQY0FLe1VYl0Sd0_sqo.roa (hash: X5Han0rbC/tYWBQcqeDkAJUru7qclM/G19tIpVV4C6g=)
2: gBbMsax3x8AqTt5gbfH375c6C_k.crl (hash: HX5e+R48REhzKRWw34lKl4NF/ViotQCf816ZK0z5vow=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:92:e0:45:ff:f4:6a:72:8d:05:c7:08:77:bb:a5:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8016ccb1ac77c7c02a4ede606df1f7ef973a0bf9
Validity
Not Before: Apr 20 19:00:33 2025 GMT
Not After : Apr 21 19:00:33 2025 GMT
Subject: CN=299dfad04d23656c101d793d7fb9319cbe8748e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:5f:53:ec:c1:3a:46:b1:c5:5a:98:48:1e:cf:
b7:04:54:b8:02:e2:db:86:72:62:f7:3f:95:3c:3e:
b4:3f:e5:b2:6a:14:d6:80:5e:13:f7:4e:3d:3b:69:
9e:8e:8c:30:63:0a:4e:23:58:ac:ae:93:6a:cb:f2:
48:73:14:59:c5:4d:bc:3a:93:04:39:cb:ab:19:47:
26:a2:cb:6b:46:58:bd:b0:2d:4c:53:60:61:73:c3:
f1:73:d3:bf:d2:91:1e:93:5d:7c:a3:76:9c:5c:c3:
1d:a2:6c:d9:84:3a:e6:c5:57:51:fa:9e:98:65:f3:
f2:ff:02:f7:e0:c3:c1:ed:9f:cd:91:36:87:5e:7b:
1e:19:e6:9a:25:d0:8c:5b:fa:6b:c6:04:df:c7:bc:
1d:b9:00:c1:ad:94:c8:1b:a1:17:db:15:6a:40:85:
5f:9d:49:8b:a3:9b:49:1b:96:86:a0:af:f8:bf:6b:
3f:91:b4:db:48:67:73:02:54:ed:1c:90:bf:7a:1e:
fb:b9:d9:d8:0b:5d:b7:4e:f5:34:52:19:28:23:36:
5d:05:a6:5e:f7:ae:6b:ac:5e:5e:c3:13:5c:de:be:
5b:6c:de:dc:2d:aa:0a:35:08:17:0a:63:19:82:56:
0b:f9:e5:45:19:a1:8b:32:c2:36:c1:7a:91:44:62:
4c:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:9D:FA:D0:4D:23:65:6C:10:1D:79:3D:7F:B9:31:9C:BE:87:48:E9
X509v3 Authority Key Identifier:
keyid:80:16:CC:B1:AC:77:C7:C0:2A:4E:DE:60:6D:F1:F7:EF:97:3A:0B:F9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gBbMsax3x8AqTt5gbfH375c6C_k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/abc0f8-1f1f-4c65-bb85-a966ae856926/1/gBbMsax3x8AqTt5gbfH375c6C_k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:09:28:54:7f:92:8d:8a:87:a6:5d:5e:c7:44:6e:a5:e0:55:
81:ca:d8:f2:9f:e2:52:09:b2:45:c2:a5:c5:be:dc:f5:9f:df:
54:74:63:6d:cc:66:27:a4:14:56:a0:9a:88:d0:9b:78:98:f2:
72:ba:25:41:10:2a:92:b0:2e:26:42:63:18:48:a1:a9:8e:a4:
6f:d0:fb:69:21:a8:cf:ae:15:4c:dd:84:bb:d0:99:0d:1e:bd:
8f:68:23:c4:4e:57:bc:f3:98:32:1e:67:6e:a2:f1:d2:d9:64:
80:c5:bc:ef:c4:73:a8:13:10:92:0b:a6:9e:c7:90:f7:ef:14:
c4:6c:01:9a:20:2c:35:e5:ae:ff:5a:81:09:28:59:20:14:86:
52:61:22:5b:9d:8f:b2:c1:06:dc:8e:f2:ee:4b:20:cc:ec:46:
16:47:20:5d:aa:8c:98:78:71:03:4d:7a:88:06:40:53:82:d0:
4c:bb:6d:8a:11:e4:30:08:c6:c0:d1:43:47:47:58:14:ab:bc:
53:29:9e:68:07:c4:ea:58:a9:1f:8f:a9:b9:96:80:a5:44:27:
46:19:02:5d:88:24:6e:ae:91:69:ec:ca:e0:45:6f:2b:ff:98:
2d:c6:73:3d:5a:56:fc:0d:de:94:1c:f2:af:3a:e6:a1:fd:e1:
4e:76:ec:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:25:34 2025 by rpki-client