Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
File: goZyzXNrV-Hj38fdc2872KYWuoE.mft (raw, json)
Hash identifier: uEUWEfA8yS22TLaQbJrKs/xRLOCyX4xS7TfBd81N2i4=
Subject key identifier: 05:9A:00:52:B0:55:1E:E6:72:22:57:97:F0:F6:99:99:59:28:21:3A
Authority key identifier: 82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
Certificate issuer: /CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Certificate serial: 0196545C36FAE2AE4EB891EAE594746783E6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
Manifest number: 14FD
Signing time: Sun 20 Apr 2025 18:00:51 +0000
Manifest this update: Sun 20 Apr 2025 18:00:51 +0000
Manifest next update: Mon 21 Apr 2025 18:00:51 +0000
Files and hashes: 1: f-v99B7kzDMwcYPXZ1yHUB7PuHk.roa (hash: PLEFeVBVmPy00pfwBVn43bz19/5DH4Ktxjb7rCdDKxc=)
2: goZyzXNrV-Hj38fdc2872KYWuoE.crl (hash: ZlQ2yYaHD2LwZqVZOueJ+KPaTF66BVSCwMMpOv3duu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 18:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:5c:36:fa:e2:ae:4e:b8:91:ea:e5:94:74:67:83:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Validity
Not Before: Apr 20 18:00:51 2025 GMT
Not After : Apr 21 18:00:51 2025 GMT
Subject: CN=059a0052b0551ee672225797f0f699995928213a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:cd:af:6e:34:48:09:c1:ab:65:22:0e:9f:b0:
5c:75:5a:ec:b6:61:6f:09:a4:0b:b7:b3:8b:9f:3b:
e2:7a:90:f1:99:4e:0f:21:9f:e5:e5:61:ad:04:41:
6a:20:7b:e9:0a:ca:01:5a:2f:a8:6d:fc:05:d4:81:
fc:fd:95:ee:a2:ef:b9:d1:c6:f4:6e:ef:3d:a0:2d:
fb:4a:bd:73:b7:84:cc:e0:dd:c6:b5:c9:06:8e:07:
39:57:4e:b7:65:e5:29:e1:5c:09:91:90:da:f9:96:
29:16:98:ce:85:78:cd:fe:84:98:77:56:82:74:ee:
9d:ed:e1:67:3a:7d:e6:82:ef:e9:a9:46:6a:de:a6:
0c:d8:21:12:5e:09:15:92:a3:50:99:c5:4b:51:95:
79:68:d2:a9:39:83:18:6d:83:ef:c8:3d:f7:98:3d:
09:4b:e4:08:e5:31:f2:63:17:62:5c:4a:4d:1e:76:
57:8b:cb:0a:cb:6b:12:a6:d9:55:56:d6:d9:87:a7:
13:31:2a:d7:a0:51:71:af:81:8c:53:a0:20:5e:5f:
e8:27:1b:d9:9e:c0:7e:bd:53:ca:b3:d0:a3:17:d5:
3f:af:e3:a7:62:02:71:08:e6:b9:e9:41:9d:27:6e:
60:0b:27:9b:7f:56:6c:e2:76:3a:c3:6a:b0:1a:f7:
65:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:9A:00:52:B0:55:1E:E6:72:22:57:97:F0:F6:99:99:59:28:21:3A
X509v3 Authority Key Identifier:
keyid:82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
78:38:73:ee:89:d1:d3:27:62:7d:96:5b:b7:61:37:14:5e:b0:
4d:bd:96:3b:f7:37:c2:ef:1b:5f:4d:b7:80:4a:7f:80:5c:a6:
10:a9:db:63:14:e6:7c:03:21:d5:7e:1d:d6:0f:d4:51:d2:b2:
fd:73:b1:de:ab:d0:03:31:2d:0f:4d:a7:4c:7e:d0:78:96:40:
b9:04:2b:78:ce:3e:3e:ad:4c:00:0d:bc:c8:ef:04:c8:b2:79:
19:c3:fb:25:1c:eb:d4:9b:5e:34:b0:67:c9:e4:d6:d9:c6:3e:
fa:e3:74:95:7f:46:d1:ea:8b:05:79:be:de:bd:bc:f9:13:a6:
7f:c9:13:16:3a:6d:d5:91:66:36:be:bd:d2:51:aa:20:4d:3a:
67:1d:5c:9c:bd:04:4e:f5:9c:8f:5b:bb:9a:16:a8:3b:f2:27:
e2:af:a5:90:6a:8b:3c:7d:77:83:38:1d:1f:fc:3d:25:c4:e9:
d8:33:47:da:72:b4:7b:a7:9e:59:c3:e4:bc:84:9c:e3:a1:90:
f6:7d:42:dc:21:5f:9f:66:ed:ce:7c:dd:bb:3a:ec:2e:3d:c3:
a8:3f:95:58:f7:34:41:c8:bf:72:15:2c:e8:d4:96:c2:67:ab:
c2:7c:65:fd:1e:9d:8b:27:0b:94:b3:04:1f:89:8b:37:84:08:
93:bd:c7:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:56:20 2025 by rpki-client