Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
File: 4_GcxeONj5wdZUcXdmX4khHeyJk.mft (raw, json)
Hash identifier: aNp6J0aSQtstXB1st3XbH5w3SvL9YV29iQlMW5jBFlU=
Subject key identifier: 24:27:F1:94:E4:69:A5:5E:49:38:DF:02:27:3B:C7:10:25:9D:56:8A
Authority key identifier: E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
Certificate issuer: /CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Certificate serial: 01958C97430BBB93EBE16630AE1F725174FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
Manifest number: 0D03
Signing time: Wed 12 Mar 2025 23:01:18 +0000
Manifest this update: Wed 12 Mar 2025 23:01:18 +0000
Manifest next update: Thu 13 Mar 2025 23:01:18 +0000
Files and hashes: 1: 4_GcxeONj5wdZUcXdmX4khHeyJk.crl (hash: nVW2Itp36qf+v8nGUKBQMkwYLXcSjgWSTPcA+xrqVqc=)
2: nCO98tc8B201HK59o3LGsGaIbRQ.roa (hash: 5XD9s6utrTJgO6HcLNBLSP37yElvartuHWVrwWT7jxg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:97:43:0b:bb:93:eb:e1:66:30:ae:1f:72:51:74:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e3f19cc5e38d8f9c1d6547177665f89211dec899
Validity
Not Before: Mar 12 23:01:18 2025 GMT
Not After : Mar 13 23:01:18 2025 GMT
Subject: CN=2427f194e469a55e4938df02273bc710259d568a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e3:97:f7:54:4b:53:84:19:3d:68:fd:3a:86:bd:
d9:ac:c8:86:1d:f5:9b:1f:60:5e:64:c2:b0:3b:29:
37:7f:95:40:ee:8f:83:bc:17:e1:a3:5a:b1:b9:de:
67:9b:2c:93:75:47:54:51:8e:c2:7b:9b:27:0d:fd:
ac:bf:e6:86:11:36:8f:1b:c4:42:0e:5b:11:06:dd:
9c:3d:2c:e9:29:b9:22:67:4e:0d:d1:88:41:0a:f3:
43:a5:b9:c0:08:72:db:25:54:e5:96:9b:dc:6e:a4:
c1:c8:c4:05:25:01:ee:db:4d:95:49:03:8b:b7:b8:
a4:46:ff:9a:62:e1:cf:51:49:7b:db:e2:df:4c:f2:
97:81:6a:78:de:89:4d:8d:35:d6:52:5d:53:a0:7a:
24:53:22:a5:68:49:c2:70:86:83:cf:92:13:74:49:
6a:a9:a7:9c:9d:b1:8c:d2:de:5e:4a:f2:fc:6c:8e:
73:9c:27:19:60:08:55:9b:b1:9a:54:4a:17:bb:f6:
dc:a0:ac:dc:74:ca:df:66:33:65:39:86:81:7b:eb:
f4:ea:fa:04:5d:64:df:1c:94:de:28:e0:9e:9b:a5:
eb:03:aa:86:7c:02:e9:6c:26:32:77:3b:4b:28:2f:
38:dc:f4:21:18:4b:b5:7f:51:0a:61:96:bd:3b:aa:
fe:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:27:F1:94:E4:69:A5:5E:49:38:DF:02:27:3B:C7:10:25:9D:56:8A
X509v3 Authority Key Identifier:
keyid:E3:F1:9C:C5:E3:8D:8F:9C:1D:65:47:17:76:65:F8:92:11:DE:C8:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/4_GcxeONj5wdZUcXdmX4khHeyJk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/1a85a8-e4f8-498b-a5ae-a4be172c76ba/1/4_GcxeONj5wdZUcXdmX4khHeyJk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:50:c9:93:f6:10:40:c6:00:fc:62:50:43:33:c4:af:f7:da:
02:10:60:44:71:20:cd:ca:f6:df:d0:cc:78:8c:8e:a5:2c:25:
b5:7b:1c:e8:49:7e:b0:72:4e:dd:f5:e9:d6:fe:e5:a1:79:fd:
24:a4:b8:72:8c:d0:86:0b:43:24:fe:65:1c:b0:c4:cd:83:81:
cb:ba:df:fe:82:b1:de:25:16:e4:09:99:e5:a8:e1:d7:90:59:
4d:1a:3f:67:75:0d:83:9c:ec:eb:c8:81:0b:4c:3b:28:f5:8d:
6b:bf:e4:e7:fc:11:3a:c0:cc:f2:12:b8:10:04:87:6a:91:40:
9b:07:5c:09:d3:c3:59:9d:33:7e:79:63:39:12:0b:8a:6c:90:
16:08:16:ec:fe:10:9a:9f:55:a2:d4:88:47:db:46:b3:5f:ae:
89:98:56:92:1e:eb:01:d0:30:93:5d:f6:5a:5f:07:95:8b:ce:
e5:cc:c5:52:27:c3:7d:31:5e:9e:0e:74:80:07:0a:93:1f:6e:
ea:e0:f6:ba:db:cc:ea:c3:cb:63:e0:94:10:df:47:01:85:da:
46:12:e1:b2:82:c6:bd:e0:f7:83:d8:b0:6a:0e:0c:d9:a1:10:
0c:7f:01:15:2c:06:64:b7:38:53:84:04:9f:73:23:09:f1:85:
d5:40:54:7d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:44:59 2025 by rpki-client