Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
File: gswXHj3IRnEeBW4uNiQdrJlKYA0.mft (raw, json)
Hash identifier: ULKU6B+/C3aPsyMZTcBWSRrpLM0mlaTegHKYO0Rr6Wg=
Subject key identifier: 0D:44:D9:BB:4F:92:46:EE:8C:BD:ED:81:7A:01:87:D1:1B:0F:DF:6D
Authority key identifier: 82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
Certificate issuer: /CN=82cc171e3dc846711e056e2e36241dac994a600d
Certificate serial: 01974C6A0273E1A6E373B714197BF01EFEC3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
Manifest number: 1580
Signing time: Sat 07 Jun 2025 22:01:45 +0000
Manifest this update: Sat 07 Jun 2025 22:01:45 +0000
Manifest next update: Sun 08 Jun 2025 22:01:45 +0000
Files and hashes: 1: JjOh7wV3uoOnT6pZLsppbv_LAZ8.roa (hash: QPSPPNn3Qn++fdP63nXuDi3yMhHz0vKFIROySBvf1mk=)
2: gswXHj3IRnEeBW4uNiQdrJlKYA0.crl (hash: pViYwainFSayIkH4FvHYO+8dAC1H2kl08bWf5nht2x4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:6a:02:73:e1:a6:e3:73:b7:14:19:7b:f0:1e:fe:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82cc171e3dc846711e056e2e36241dac994a600d
Validity
Not Before: Jun 7 22:01:45 2025 GMT
Not After : Jun 8 22:01:45 2025 GMT
Subject: CN=0d44d9bb4f9246ee8cbded817a0187d11b0fdf6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:95:2a:8f:c0:25:85:cf:59:fd:46:d6:4a:97:
10:ed:bc:d0:b8:da:08:76:ac:b1:f7:1e:93:77:49:
b4:85:24:1a:8d:81:f8:34:25:d9:9e:ba:a7:e9:6d:
1f:66:e3:cd:f5:c1:e5:2e:24:9d:03:55:29:6e:b1:
e2:c0:a3:42:b7:e8:8f:ce:95:e9:59:e2:7d:21:13:
a8:2e:a2:5d:d5:7d:51:af:a8:31:ae:20:9d:32:77:
94:e6:a2:54:34:99:83:78:21:14:f3:aa:36:3a:fa:
71:42:de:06:a3:e5:0f:c5:37:58:ad:8c:5a:40:eb:
17:69:2f:17:37:2b:11:fd:e8:09:50:65:94:87:4a:
f5:a4:b4:92:c1:2a:ef:0c:15:8e:73:0a:71:65:a3:
e2:75:a0:72:10:62:7c:1e:00:15:bb:90:fa:f4:0c:
1f:d6:14:b0:a5:2b:f0:26:55:ab:7f:9c:b4:65:79:
86:2b:54:87:f9:f3:63:ef:a6:f2:2f:90:5b:3c:af:
18:1a:39:88:1e:25:b4:82:79:b6:a9:f1:a4:71:d6:
14:f9:e8:28:8a:0d:da:e5:34:76:9e:c3:7b:f4:e7:
73:9f:bb:91:b3:d8:7b:8d:d7:8e:c4:ef:10:29:cb:
8b:6e:1d:1e:6b:f8:b8:aa:c3:7a:56:f4:39:dd:81:
cd:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:44:D9:BB:4F:92:46:EE:8C:BD:ED:81:7A:01:87:D1:1B:0F:DF:6D
X509v3 Authority Key Identifier:
keyid:82:CC:17:1E:3D:C8:46:71:1E:05:6E:2E:36:24:1D:AC:99:4A:60:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gswXHj3IRnEeBW4uNiQdrJlKYA0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/2210c7-9959-44f7-ada6-efd3ae985ee4/1/gswXHj3IRnEeBW4uNiQdrJlKYA0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:ab:de:ec:31:d7:b8:68:a2:98:11:65:4b:90:fb:6e:3a:fa:
26:da:21:f4:e2:b5:cc:37:95:9c:2c:e8:1f:e7:1e:e0:b6:8a:
8c:1b:a6:d1:09:d0:6e:b3:30:f5:f7:44:7f:48:27:0e:f8:f0:
d3:0a:87:7c:eb:6d:f6:55:ca:16:a7:77:6a:c6:c7:7b:e2:8c:
93:40:17:0f:13:78:60:e4:0d:01:2b:34:5f:01:4d:af:d7:b6:
f9:98:1d:ad:fa:0c:5a:2a:77:e4:b1:a2:85:21:da:8a:74:d4:
b6:90:0a:be:5d:47:d7:4c:4c:d9:20:3c:79:65:25:dc:b3:2f:
d4:4f:60:e5:94:32:72:60:a1:8b:2a:4d:bf:b6:67:1d:0b:54:
7c:fa:75:52:28:b5:6b:28:8c:44:e6:2c:7b:b7:7e:fe:5c:be:
81:a8:83:9d:e3:97:a2:6f:ff:01:48:14:16:a6:e9:bf:35:ac:
fc:8f:30:0b:72:12:2b:21:35:de:b1:ea:4f:2a:10:29:1c:ae:
c7:60:21:43:7e:83:94:21:a8:fc:cb:d3:08:f8:57:e1:10:53:
07:6c:1a:6e:a1:0a:6d:3d:c6:1d:79:8a:8c:f8:25:df:53:55:
80:f9:4d:e7:bb:30:d8:fd:27:d1:74:6c:78:c1:1e:41:b8:5b:
85:95:0e:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:39:42 2025 by rpki-client