Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.mft
File: GXXTHyIv7CWL1HYY_flMURzl4G4.mft (raw, json)
Hash identifier: fylH7o+IchOxhgCWlbc0Qzo/v88a3z9nDitrBAdUz3s=
Subject key identifier: AE:70:DA:57:56:C0:8D:5C:EC:25:6A:9D:8E:05:BD:3E:35:24:DA:6C
Authority key identifier: 19:75:D3:1F:22:2F:EC:25:8B:D4:76:18:FD:F9:4C:51:1C:E5:E0:6E
Certificate issuer: /CN=1975d31f222fec258bd47618fdf94c511ce5e06e
Certificate serial: 01965915046F273370DF5AA9C39144B439D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GXXTHyIv7CWL1HYY_flMURzl4G4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.mft
Manifest number: 0C43
Signing time: Mon 21 Apr 2025 16:01:11 +0000
Manifest this update: Mon 21 Apr 2025 16:01:11 +0000
Manifest next update: Tue 22 Apr 2025 16:01:11 +0000
Files and hashes: 1: GXXTHyIv7CWL1HYY_flMURzl4G4.crl (hash: 9+TxN9uaZxX43cOT9+Xfr3l85NYUQZYim+jRdmFQTRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.mft
rsync://rpki.ripe.net/repository/DEFAULT/GXXTHyIv7CWL1HYY_flMURzl4G4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 16:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:15:04:6f:27:33:70:df:5a:a9:c3:91:44:b4:39:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1975d31f222fec258bd47618fdf94c511ce5e06e
Validity
Not Before: Apr 21 16:01:11 2025 GMT
Not After : Apr 22 16:01:11 2025 GMT
Subject: CN=ae70da5756c08d5cec256a9d8e05bd3e3524da6c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:88:e2:a2:f7:f6:89:9b:af:fa:73:f1:5a:1f:
37:b8:33:78:47:ae:59:7b:46:7c:27:b5:4a:c0:b8:
28:18:ca:e9:f8:d0:96:2b:4e:f7:20:34:83:bd:e5:
e3:85:ad:49:3a:28:d5:00:70:73:b4:3c:11:d3:61:
37:a8:9b:ba:92:2d:b5:ec:ac:0f:27:ba:36:0d:19:
78:32:ad:dd:54:97:34:e5:58:28:c2:33:e2:c9:14:
6b:63:e3:b7:e4:b7:d2:61:d4:98:d6:80:5e:9f:d4:
4d:d0:86:e3:44:de:be:51:5e:f0:8a:9f:48:3e:00:
73:32:f2:0f:af:95:56:fe:2e:c2:79:01:49:a3:45:
8d:1a:01:9b:b8:db:8c:f8:dd:09:cd:99:7c:ea:b6:
f9:f9:a5:76:1b:61:fa:ee:a2:60:7c:a8:3d:3c:09:
3c:d9:9e:5e:fe:a2:cc:ea:74:ac:97:7d:c0:28:71:
99:5d:1a:34:87:db:53:9f:a3:92:76:50:1a:f3:35:
6d:d6:63:6c:13:31:ed:f0:0b:14:dc:67:bc:1a:b5:
7a:85:79:9a:3c:32:c8:a9:48:5c:6c:3d:80:8b:24:
48:c5:f9:d3:5f:2f:d1:90:7f:7c:45:6a:df:aa:eb:
9b:13:d1:db:53:f8:d7:fa:79:d6:aa:f1:38:14:c6:
0a:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:70:DA:57:56:C0:8D:5C:EC:25:6A:9D:8E:05:BD:3E:35:24:DA:6C
X509v3 Authority Key Identifier:
keyid:19:75:D3:1F:22:2F:EC:25:8B:D4:76:18:FD:F9:4C:51:1C:E5:E0:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GXXTHyIv7CWL1HYY_flMURzl4G4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/6ccaa9-9bf6-45c1-b9ac-615f66fdedec/1/GXXTHyIv7CWL1HYY_flMURzl4G4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:ff:f8:50:89:66:56:89:a8:9a:ec:2d:d8:0e:ec:1c:db:17:
cb:e9:a3:27:44:98:ad:41:a6:47:06:6f:21:c1:d5:76:f5:d5:
f5:65:c4:75:af:0e:92:19:f2:6b:dd:ca:e7:b1:76:60:35:db:
df:66:7d:9a:91:36:14:ae:7e:79:98:ea:e3:c9:aa:be:16:30:
5d:32:fb:55:53:6e:24:a9:36:a1:8d:b8:ab:1f:d5:a9:5e:f3:
db:90:33:45:0c:06:16:ae:f0:ed:64:a1:a3:4d:d5:23:b2:9e:
af:05:89:99:3f:82:df:90:d8:dd:92:9c:19:32:d0:6b:1d:c9:
49:6a:7e:44:26:59:2e:a9:0a:56:cf:f7:04:5e:65:4b:92:03:
0e:9f:8a:2b:82:f8:48:c0:e0:79:a7:28:13:d0:f1:3c:68:e0:
3a:2f:fc:3a:32:a8:cf:24:d1:03:b0:09:3b:90:9a:b7:29:db:
c5:bb:cf:4d:bb:7c:c4:d2:42:90:4e:77:a0:55:fe:4e:0b:bf:
bb:de:9f:2b:8d:e3:4c:f1:62:b1:f8:72:81:58:dc:df:e7:a4:
dd:5c:96:06:e8:9e:19:80:49:d3:a3:c2:ff:f2:9f:80:ba:e3:
ea:8f:47:9c:33:bc:04:ff:c0:47:12:d5:30:c7:4d:db:df:42:
58:d6:45:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 22 02:20:00 2025 by rpki-client