Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
File: gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft (raw, json)
Hash identifier: 1CtghItyAJwrRZ0nQFqw578Ai3OvdYyY8hL8m0DjDSI=
Subject key identifier: 61:25:4F:2E:25:9E:A3:13:46:0E:F0:4A:4B:96:3C:37:48:07:6D:BA
Authority key identifier: 81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5
Certificate issuer: /CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5
Certificate serial: 01965613E61FA2724CDE7E9538C2AC4A5E1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
Manifest number: 1241
Signing time: Mon 21 Apr 2025 02:01:06 +0000
Manifest this update: Mon 21 Apr 2025 02:01:06 +0000
Manifest next update: Tue 22 Apr 2025 02:01:06 +0000
Files and hashes: 1: OWKqkK-Ww3RQmH16xNxVWiLvO8I.roa (hash: GAxHkIIERYjerOgQkJ6KzahFSgbI1tnYkcltOUuSvzI=)
2: gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl (hash: Aqj3w+mpe+qj/xPKXKHVfw6og5zk4HtbUuKUhHZjP8g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:56:13:e6:1f:a2:72:4c:de:7e:95:38:c2:ac:4a:5e:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a021d540ed7d82c690adc04fbd9dd6ee50e8d5
Validity
Not Before: Apr 21 02:01:06 2025 GMT
Not After : Apr 22 02:01:06 2025 GMT
Subject: CN=61254f2e259ea313460ef04a4b963c3748076dba
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:5d:00:d3:cf:76:bf:99:94:4d:a0:03:a4:8e:
b4:59:88:06:e0:25:37:bb:a4:df:89:0d:27:af:93:
50:03:60:29:e9:72:75:f8:59:37:f8:b2:65:76:0a:
2c:10:34:48:89:a5:7f:a7:91:b3:36:0e:39:3f:56:
28:0f:8e:18:35:5a:2b:34:79:07:8c:3a:2c:ee:e4:
5e:f9:a4:4a:f4:35:db:e3:56:48:c0:fb:f2:70:b1:
4a:65:72:e6:b3:2f:34:57:26:7b:73:30:e9:44:25:
cf:27:6e:20:9d:6f:4b:b3:3c:5d:05:ba:36:52:e2:
51:16:d0:73:6c:de:f6:a0:95:bb:bd:ee:57:88:be:
6e:59:55:ee:6b:e5:49:02:e1:7f:4a:d9:21:4d:39:
c5:ea:e3:32:a0:e0:1c:dc:d4:a2:10:1f:cb:91:99:
94:8a:b3:2d:10:1f:ed:71:30:73:b6:0c:d5:5c:bf:
62:e7:30:a0:19:39:20:63:6c:96:7a:6a:4a:21:13:
f4:b5:b8:f4:f2:d9:b4:28:54:77:1c:11:0d:cb:dc:
5b:0a:1f:85:56:12:d9:4b:47:bb:71:70:ca:f4:21:
17:9a:bf:67:95:b7:7a:0e:62:62:b1:0b:60:8e:61:
b3:63:65:c0:31:f4:8c:3e:c7:01:9f:d3:6c:de:70:
e5:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:25:4F:2E:25:9E:A3:13:46:0E:F0:4A:4B:96:3C:37:48:07:6D:BA
X509v3 Authority Key Identifier:
keyid:81:A0:21:D5:40:ED:7D:82:C6:90:AD:C0:4F:BD:9D:D6:EE:50:E8:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaAh1UDtfYLGkK3AT72d1u5Q6NU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e2b946-1b4a-4214-9234-ad027327f9d8/1/gaAh1UDtfYLGkK3AT72d1u5Q6NU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:ac:7b:9f:ef:6a:1d:c3:05:8c:bd:28:56:4c:12:98:1e:cd:
82:d5:da:b8:aa:a0:f4:98:2f:ae:f0:c2:33:27:5f:3f:58:e6:
55:f6:55:3d:e3:f1:ef:65:4e:62:ec:86:19:1f:4b:7b:f5:81:
dd:48:34:5c:2a:45:91:57:6f:52:8f:67:06:b3:54:58:d9:de:
44:db:32:0a:e8:12:49:55:ea:52:09:6a:c4:8a:3d:9a:32:a1:
09:42:01:a7:7d:81:c6:95:d9:67:6d:1b:67:0e:e2:1b:14:4d:
45:fa:d1:b0:48:8d:77:75:fd:e8:ce:11:eb:7f:5a:f9:35:d1:
dc:30:5e:a8:3e:d8:3e:39:5a:a7:c0:0b:5f:2f:92:a8:1c:98:
2c:ee:e2:6a:e1:b5:53:25:df:f1:bb:2a:4a:da:6d:6b:a8:89:
72:24:19:0e:59:fa:89:98:83:6c:f7:5e:a0:de:6b:f7:5b:41:
57:db:aa:4f:c0:89:84:19:31:b3:28:90:6e:b2:3e:46:9c:a8:
a6:d8:f9:a1:fa:a2:7b:8a:83:40:5e:5e:5d:a8:26:ae:53:09:
7e:e3:38:21:39:25:84:06:cf:30:60:bb:b5:42:7f:c5:50:53:
46:c7:f0:4f:b6:7d:c4:9d:30:50:22:95:2e:f8:28:17:21:40:
8b:22:89:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 06:45:56 2025 by rpki-client