Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
File: gswXHj3IRnEeBW4uNiQdrJlKYA0.mft (raw, json)
Hash identifier: cmmmLV80eciseTtgLcfgRiuvE1h5WYd7xqpj2vPAupw=
Subject key identifier: B2:E3:AD:AA:EB:EA:D4:48:CA:28:DD:68:C2:77:2C:A9:15:99:3B:5C
Authority key identifier: 82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
Certificate issuer: /CN=82cc171e3dc846711e056e2e36241dac994a600d
Certificate serial: 01964D7EC91E9378279E23A45485026D876B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
Manifest number: 14FC
Signing time: Sat 19 Apr 2025 10:01:16 +0000
Manifest this update: Sat 19 Apr 2025 10:01:16 +0000
Manifest next update: Sun 20 Apr 2025 10:01:16 +0000
Files and hashes: 1: JjOh7wV3uoOnT6pZLsppbv_LAZ8.roa (hash: QPSPPNn3Qn++fdP63nXuDi3yMhHz0vKFIROySBvf1mk=)
2: gswXHj3IRnEeBW4uNiQdrJlKYA0.crl (hash: nhY7TOV/zUCTteluCr3IkbPZ+N9VOJkKjvnwSj+TV1w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 04:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4d:7e:c9:1e:93:78:27:9e:23:a4:54:85:02:6d:87:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82cc171e3dc846711e056e2e36241dac994a600d
Validity
Not Before: Apr 19 10:01:16 2025 GMT
Not After : Apr 20 10:01:16 2025 GMT
Subject: CN=b2e3adaaebead448ca28dd68c2772ca915993b5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:c1:d0:11:c8:7a:ad:e0:9a:cc:5e:ec:7a:87:
c0:8b:0f:52:c4:a2:c0:7d:b2:6b:9e:cf:5e:a6:f8:
a6:e6:b8:f3:de:f9:1e:c3:e7:bf:64:ed:f0:fa:64:
09:c3:0d:76:ae:11:ad:85:8f:5b:d5:f9:ad:6b:6d:
79:cf:c0:9e:58:63:e1:a8:5a:04:38:a5:17:ca:5f:
0f:a3:0b:dc:cb:74:34:5a:8f:a6:ae:21:96:5f:ca:
7d:ea:9d:5f:49:dc:b3:73:4a:bf:13:e9:7f:a5:b8:
71:25:cd:85:a3:42:34:70:1a:22:01:27:0b:88:d8:
77:64:a5:f1:c8:a6:ea:4a:fe:48:26:82:af:eb:5e:
45:c7:08:60:a6:5f:8f:b8:e6:12:38:95:23:2d:2d:
34:3d:42:77:99:93:e7:04:35:27:05:c1:84:b1:99:
6d:a5:2c:fd:2b:13:c3:31:fc:2d:da:ef:b1:b4:f1:
11:eb:32:35:cc:69:cc:d7:93:2b:21:a8:61:86:be:
b0:cd:58:92:f8:78:ae:66:59:54:eb:90:5a:f1:3b:
e0:03:77:88:ac:f1:7b:e9:f0:b2:76:1d:bc:a6:94:
84:10:e1:75:5f:9b:9a:d0:73:19:5b:e9:26:48:b1:
5a:65:fe:e6:f7:f7:e4:e9:a9:fc:8b:65:49:85:fc:
1a:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E3:AD:AA:EB:EA:D4:48:CA:28:DD:68:C2:77:2C:A9:15:99:3B:5C
X509v3 Authority Key Identifier:
keyid:82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:6a:89:77:58:4d:ef:6d:4a:3d:ca:d9:50:13:21:78:2d:2a:
0e:5d:c6:a3:8f:46:be:29:dd:5a:4c:9d:f7:57:13:87:c3:63:
91:9c:37:0b:47:31:a5:f6:e6:7c:ba:00:51:35:d8:64:66:b5:
62:2f:28:da:f0:11:21:c9:09:2e:73:fb:81:0e:d0:72:04:cc:
b4:4c:f1:05:b4:0b:a4:4f:82:a8:36:9d:d2:61:a0:50:a9:39:
07:62:04:6f:49:92:61:df:10:f4:15:78:ac:92:c6:c8:80:dc:
55:26:7e:2a:07:0d:09:39:59:47:fc:e9:ac:f2:ea:10:e1:39:
dd:1b:48:b8:a5:be:32:97:e4:fa:6e:be:bf:f5:da:c3:64:9d:
6d:47:ae:1a:c1:3a:62:7a:f4:d8:8a:54:86:b0:62:b4:5b:d6:
54:1d:d4:57:e0:12:cb:99:4c:f1:b2:d5:09:ca:96:47:9e:a2:
f8:35:d2:6f:26:df:b7:fc:f5:c8:7a:e2:da:4b:65:b8:73:7e:
54:ff:c7:cf:ac:eb:88:9e:17:e5:c9:09:b3:41:4b:f8:1b:26:
6d:9d:6d:77:9f:54:eb:8a:75:38:d7:e4:76:7a:30:19:9e:ec:
dc:97:4b:a5:52:6e:5c:0a:8b:fc:ff:83:62:79:7b:04:24:ea:
35:2f:5d:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 12:21:34 2025 by rpki-client