Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
File: gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft (raw, json)
Hash identifier: 2an/g557Qd97BLIMGAwkOvA6SST+zkqNtMWY6Jyf0jc=
Subject key identifier: CF:D5:6B:EE:7B:F8:63:FE:9F:68:AC:4F:97:24:DC:81:58:6D:86:88
Authority key identifier: 81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE
Certificate issuer: /CN=819b97b20ccb4f696518e47c437259a8913e72ae
Certificate serial: 019653EEA876995BC6A2BE0C5FC169501E22
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
Manifest number: 0F4B
Signing time: Sun 20 Apr 2025 16:01:11 +0000
Manifest this update: Sun 20 Apr 2025 16:01:11 +0000
Manifest next update: Mon 21 Apr 2025 16:01:11 +0000
Files and hashes: 1: gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl (hash: 8fg6D9/A/kVazM6SGWgzsD1XI8JHX/V2/HMRgkC7mQo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:53:ee:a8:76:99:5b:c6:a2:be:0c:5f:c1:69:50:1e:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=819b97b20ccb4f696518e47c437259a8913e72ae
Validity
Not Before: Apr 20 16:01:11 2025 GMT
Not After : Apr 21 16:01:11 2025 GMT
Subject: CN=cfd56bee7bf863fe9f68ac4f9724dc81586d8688
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:a7:95:53:ed:2f:71:7e:f0:2f:b5:16:1f:c7:
b0:ed:c4:c1:02:b5:a6:49:dd:ce:36:c4:3a:93:31:
83:27:fd:1e:1f:45:4c:8e:bc:ba:b8:d0:8f:50:86:
27:ca:ec:b5:4b:6d:4a:12:87:cd:6a:89:e3:16:c1:
ef:73:ed:d4:75:20:f9:e4:81:58:1b:6f:10:ab:2b:
c6:ed:61:86:1c:3e:9e:70:b0:2a:58:d2:76:a7:4b:
f3:77:3a:43:ed:e0:37:b0:97:00:e4:da:bf:c4:11:
0f:1e:2f:74:1b:14:7d:c4:5a:d4:b6:59:c6:b8:b1:
9c:02:f4:37:4c:6e:d7:86:40:f3:a1:d1:be:ea:7a:
dd:0c:cf:8f:2e:41:80:2d:c1:9a:6b:84:0b:a9:03:
01:b3:e4:54:22:c1:98:de:33:c4:ad:03:96:96:81:
70:1d:ee:7f:5c:ed:77:a8:5e:b1:3f:7a:b7:f8:37:
0c:f5:04:66:c0:83:f3:0d:5f:3f:6f:9e:f7:d9:e5:
f0:c0:7a:32:2c:c6:35:36:63:7f:f2:be:3b:33:3b:
ed:97:e1:fe:e8:51:ee:7a:da:9b:b4:dd:14:4b:99:
96:1e:57:80:0a:d7:0c:4a:d6:be:2a:aa:2b:a8:18:
76:3a:52:36:80:8e:5c:e0:7f:1e:3d:7f:32:f2:c2:
e4:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:D5:6B:EE:7B:F8:63:FE:9F:68:AC:4F:97:24:DC:81:58:6D:86:88
X509v3 Authority Key Identifier:
keyid:81:9B:97:B2:0C:CB:4F:69:65:18:E4:7C:43:72:59:A8:91:3E:72:AE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gZuXsgzLT2llGOR8Q3JZqJE-cq4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/774f37-0e57-49e6-8865-a64ba4b8fa19/1/gZuXsgzLT2llGOR8Q3JZqJE-cq4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:63:8f:39:96:04:b6:49:d1:51:02:cf:02:02:f0:05:6a:07:
ff:38:2d:af:f3:02:79:c2:7b:8d:02:c5:b5:59:3a:8e:d4:02:
6b:c8:d3:9d:10:ca:89:2e:3e:8c:dc:80:22:18:ce:e8:94:bc:
9e:f8:53:dd:23:09:69:47:43:e8:54:f5:24:67:17:85:37:0e:
51:e7:75:41:59:b4:0d:01:f5:68:30:a2:5d:3c:ab:77:56:eb:
88:c7:77:1d:c1:8e:2a:8c:c9:ba:85:48:9a:b1:50:5b:8d:05:
26:e1:35:9c:4c:a0:c5:04:00:ad:af:87:2c:c2:00:77:aa:77:
97:53:32:a0:4e:fd:ce:eb:2d:30:fe:51:50:ac:b4:de:3e:af:
8b:4c:3c:6f:24:ff:f8:ed:3b:52:5e:86:b8:45:7a:ab:56:e0:
b2:0f:72:f0:e5:06:ba:d3:3e:4e:87:b0:da:bb:ca:09:4f:9e:
f9:cd:f4:68:79:c3:a6:e5:a7:31:e8:7b:1b:ba:9d:ea:ff:f9:
80:b7:82:9c:eb:c6:cf:79:4f:b4:27:f4:78:f2:4e:f4:67:07:
fd:4e:3d:14:90:0f:50:4b:ad:de:ac:53:14:c0:9f:13:80:eb:
e3:12:1b:70:aa:da:5b:3b:01:7f:73:3e:0f:e8:84:f3:ed:2e:
71:8c:e0:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 18:54:53 2025 by rpki-client