Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
File: gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft (raw, json)
Hash identifier: 5E/ojfIYJJED9Wei4hq8QOemsnvPw1/mVH3tzPqfnYk=
Subject key identifier: 7F:50:4A:12:22:42:CC:5B:72:09:DF:19:2A:5B:38:0A:8F:BF:AA:E1
Authority key identifier: 83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
Certificate issuer: /CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Certificate serial: 019658DD763DFB8AA673BA98A2AC995A950E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
Manifest number: 0E62
Signing time: Mon 21 Apr 2025 15:00:30 +0000
Manifest this update: Mon 21 Apr 2025 15:00:30 +0000
Manifest next update: Tue 22 Apr 2025 15:00:30 +0000
Files and hashes: 1: bNgvelwVPVFr3h5RMUdr0LrSObg.roa (hash: 8+lwoJWYw+/prpcpMbrRUmfEGjzLktOqFPr4MMdHS+M=)
2: gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl (hash: cVfeHGEGrS65fGvIBt9n4wSHHp1+I7t4CA3ICGf86PA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 10:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:58:dd:76:3d:fb:8a:a6:73:ba:98:a2:ac:99:5a:95:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8336ca151ed4c323d498f06dd7c5ae394ceac59f
Validity
Not Before: Apr 21 15:00:30 2025 GMT
Not After : Apr 22 15:00:30 2025 GMT
Subject: CN=7f504a122242cc5b7209df192a5b380a8fbfaae1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:9a:55:e1:ca:6c:8c:b5:94:4a:6b:05:e5:17:
67:a3:03:66:9b:c0:41:fe:00:07:70:42:c8:95:fa:
7b:88:60:80:fc:c1:90:11:50:d2:24:7d:27:05:4f:
41:d2:f2:6c:c5:1c:c0:21:89:b8:d3:25:f8:4e:ff:
73:5e:be:ae:96:5b:9c:84:08:31:33:11:e0:2e:72:
a3:e8:2c:51:5d:49:fb:19:f3:b2:9d:08:0f:56:01:
49:18:ab:b7:87:f6:bd:3c:92:d1:da:61:52:0b:b8:
30:4d:5d:fb:ed:23:bd:3b:b8:cd:1e:24:7a:ac:29:
03:8b:40:a2:ea:c1:d7:32:7d:8d:7f:3e:68:ca:5e:
82:a4:ec:0c:49:88:83:92:b1:17:93:23:77:c9:e0:
88:c4:97:ce:5c:de:94:a0:57:8a:a4:7e:25:21:10:
76:67:f6:4f:4f:7c:e6:13:80:d7:6a:cf:d8:bc:97:
b3:34:c8:9f:83:44:59:fd:b9:b1:7d:39:d3:b2:63:
02:a3:82:bd:7c:43:a0:27:07:02:39:df:80:84:01:
05:a2:1c:81:a9:f9:a7:cb:43:e4:34:b4:23:de:59:
32:c2:6a:e2:47:cb:67:c5:b4:7d:69:2a:9b:f0:97:
e7:09:80:be:75:a9:7c:b7:6e:89:5d:de:ba:e3:10:
b3:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:50:4A:12:22:42:CC:5B:72:09:DF:19:2A:5B:38:0A:8F:BF:AA:E1
X509v3 Authority Key Identifier:
keyid:83:36:CA:15:1E:D4:C3:23:D4:98:F0:6D:D7:C5:AE:39:4C:EA:C5:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzbKFR7UwyPUmPBt18WuOUzqxZ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/1face1-9e28-4d89-bf52-91795319845c/1/gzbKFR7UwyPUmPBt18WuOUzqxZ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
af:f8:64:96:08:9f:7f:40:8b:77:23:d9:3a:1e:f7:67:11:28:
86:f6:5a:c3:a2:15:9c:0b:b8:65:e3:89:9e:8b:af:ed:ca:1d:
f3:b6:f5:49:a2:7e:8a:28:05:fa:54:f8:ce:5e:46:4c:04:a4:
fc:e6:89:f0:a1:39:5c:5d:f1:08:29:04:7d:a5:c5:a5:71:a6:
f9:d1:e1:13:07:e4:59:77:89:55:73:a1:72:8c:a5:b7:47:3c:
5e:31:78:34:fa:9e:aa:dc:a4:8b:8f:6a:b3:68:ec:ee:be:e7:
65:c2:13:cb:0e:92:23:ac:b0:f2:aa:e4:fa:94:9d:3f:3d:50:
b9:52:a4:a8:fc:ab:e0:21:52:4c:2e:d1:2b:a4:3e:17:c6:65:
cf:9e:97:47:2b:b5:35:6d:50:e3:54:04:62:56:48:58:02:5c:
08:d8:40:a6:be:c5:27:46:f0:c0:85:20:4e:2b:fb:10:4d:87:
21:b0:6b:c3:d6:dd:c0:23:07:53:a9:65:bd:79:53:7d:5f:29:
41:ac:06:da:2a:5f:a5:03:86:2e:7b:cb:39:53:a7:0b:75:45:
e2:40:f5:32:bc:be:94:6b:06:77:2b:ef:8e:6a:77:d8:7f:90:
89:be:70:1b:63:e8:8a:41:b3:e1:19:a9:e2:b9:32:c4:b1:a1:
2b:9c:4d:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 17:18:28 2025 by rpki-client