Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
File: 1GRmfDSn27AvBTC85ILRGtQkh70.mft (raw, json)
Hash identifier: aIQDd0Xo0NBpMgGDHuz4FwYS2z1QTF1P+bW9Fp6z5XM=
Subject key identifier: 83:2E:59:A8:2F:06:1C:E3:8D:0E:C1:36:04:8A:93:2E:EF:EE:01:0F
Authority key identifier: D4:64:66:7C:34:A7:DB:B0:2F:05:30:BC:E4:82:D1:1A:D4:24:87:BD
Certificate issuer: /CN=d464667c34a7dbb02f0530bce482d11ad42487bd
Certificate serial: 019655DCBF336CC8C6FE6E9055E32B4B9EE7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
Manifest number: 07E9
Signing time: Mon 21 Apr 2025 01:00:52 +0000
Manifest this update: Mon 21 Apr 2025 01:00:52 +0000
Manifest next update: Tue 22 Apr 2025 01:00:52 +0000
Files and hashes: 1: 1GRmfDSn27AvBTC85ILRGtQkh70.crl (hash: 1ThUL08MGl5dbqNQeUzoj3Jp3i5Vwl/x71k4PXUBt2w=)
2: ngLzTXL9yL8qZxP4JODs6i0oJzI.roa (hash: D6+JXEaHb1tO3mpKT7yT9VZcfkQ3PmJxwgv/yQik0ys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dc:bf:33:6c:c8:c6:fe:6e:90:55:e3:2b:4b:9e:e7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d464667c34a7dbb02f0530bce482d11ad42487bd
Validity
Not Before: Apr 21 01:00:52 2025 GMT
Not After : Apr 22 01:00:52 2025 GMT
Subject: CN=832e59a82f061ce38d0ec136048a932eefee010f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:a4:f1:9a:19:1f:a9:3b:d2:10:a0:9b:cf:1e:
dd:b8:25:1f:84:73:60:5a:f0:6b:a4:f0:32:86:20:
52:29:92:c1:5d:1d:bc:09:76:db:de:15:12:96:d9:
1a:e2:9d:d6:f7:9c:d9:f5:9a:f5:5b:0e:08:32:3e:
aa:33:e7:20:fd:56:e5:9a:6f:2e:c6:a6:56:d3:5d:
a8:db:37:4d:90:26:68:70:81:71:53:d5:1f:8f:5e:
9b:c9:73:92:b7:0b:cf:dd:ec:1a:15:64:d9:4f:d1:
48:ef:5e:70:25:1d:4e:cc:da:ec:9f:67:e7:8a:1d:
48:83:a8:44:ff:1d:80:dc:4c:0f:dc:bf:a7:ad:64:
a0:6d:f2:94:62:81:50:4c:5b:73:f3:78:e8:46:2c:
bb:53:09:ab:0f:2f:6b:2e:c7:5e:91:29:f2:a0:8d:
e4:72:d7:49:e5:bb:dc:c7:93:fe:8d:19:8d:d6:a3:
a7:0f:68:1b:8f:21:bc:e5:1b:6c:5d:0b:d2:c1:70:
4d:9f:94:8c:f3:da:42:7f:75:58:5c:ac:62:ed:6e:
58:bf:98:5d:f7:ea:07:5e:8b:ac:06:ce:a9:25:d5:
cd:60:12:00:60:80:c1:51:aa:dd:2b:62:29:f6:04:
26:87:8f:ea:86:5b:46:03:25:32:5d:8d:71:08:e0:
e7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2E:59:A8:2F:06:1C:E3:8D:0E:C1:36:04:8A:93:2E:EF:EE:01:0F
X509v3 Authority Key Identifier:
keyid:D4:64:66:7C:34:A7:DB:B0:2F:05:30:BC:E4:82:D1:1A:D4:24:87:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GRmfDSn27AvBTC85ILRGtQkh70.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/bf4793-0c84-422c-9b8e-260de6cbf456/1/1GRmfDSn27AvBTC85ILRGtQkh70.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:de:ee:40:9d:d6:01:02:b7:a5:9e:3e:fa:e3:a9:db:e1:7d:
cc:fa:1a:5e:d8:f4:29:f4:4f:5e:80:8b:9e:11:7e:f4:49:13:
49:20:28:85:16:d0:89:b4:af:61:3b:8a:1b:3e:26:3e:38:2a:
7c:46:c9:c4:e7:1d:61:7c:89:36:56:68:61:36:f8:c0:8d:73:
35:44:50:12:7f:88:b5:49:66:b3:79:3e:69:33:8a:c3:7f:fa:
0c:b0:4f:91:53:e4:87:2b:cf:bc:f0:eb:01:5d:a0:69:c2:44:
0b:f3:b0:50:1c:ad:1f:9c:c2:28:c3:48:f0:29:9b:a2:b9:3f:
d0:d7:a4:1a:16:7b:5d:b1:5c:21:97:c8:62:c6:a4:a8:c8:00:
5f:29:10:75:8a:ee:00:47:79:f4:c5:15:69:39:05:b3:76:f6:
af:04:16:7d:a0:18:95:f2:d5:47:1d:3f:70:ab:39:9d:78:98:
63:c2:fd:92:38:d4:59:df:d4:fa:40:ca:8c:ef:4b:6f:20:07:
31:c2:95:76:c4:9a:17:c8:eb:de:c5:48:9b:b8:e5:f7:4d:67:
bf:a5:55:2b:ef:e0:be:c7:43:cb:9b:20:2c:9a:72:54:59:49:
67:4a:d8:5a:13:8a:eb:76:23:f8:fd:36:bf:a0:c9:04:43:6f:
1b:9a:cb:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:16:06 2025 by rpki-client