Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
File: goZyzXNrV-Hj38fdc2872KYWuoE.mft (raw, json)
Hash identifier: TLTfwhmxBX3Gp4ZNsl+FIOXlP2p9jXlxdaLTaAZUu9c=
Subject key identifier: D2:47:8B:85:40:EB:64:D3:50:CD:93:C3:63:C5:BC:1A:46:3C:47:B3
Authority key identifier: 82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
Certificate issuer: /CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Certificate serial: 01974D7BF0B6EAAF0B1448A043590BB68016
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
Manifest number: 157E
Signing time: Sun 08 Jun 2025 03:00:57 +0000
Manifest this update: Sun 08 Jun 2025 03:00:57 +0000
Manifest next update: Mon 09 Jun 2025 03:00:57 +0000
Files and hashes: 1: f-v99B7kzDMwcYPXZ1yHUB7PuHk.roa (hash: PLEFeVBVmPy00pfwBVn43bz19/5DH4Ktxjb7rCdDKxc=)
2: goZyzXNrV-Hj38fdc2872KYWuoE.crl (hash: v2nOuwCBIaXE50ZsOZx3FgP8WV2fQbFKj9CtrCCLmgw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4d:7b:f0:b6:ea:af:0b:14:48:a0:43:59:0b:b6:80:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Validity
Not Before: Jun 8 03:00:57 2025 GMT
Not After : Jun 9 03:00:57 2025 GMT
Subject: CN=d2478b8540eb64d350cd93c363c5bc1a463c47b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:0d:12:80:49:23:b1:58:6d:16:29:2c:72:a2:
7a:2a:df:9f:b9:3b:c5:80:08:63:43:1e:40:f9:66:
3d:94:11:c9:73:95:a9:36:47:61:bd:84:0f:15:80:
d3:db:10:b6:11:ff:8f:dd:e1:51:26:5b:94:5f:ac:
5b:46:01:4c:fe:63:94:19:8d:9a:4e:fc:67:ff:7c:
79:ef:3f:63:16:bf:9b:48:15:cb:3d:73:be:5e:a4:
76:b0:22:79:08:9b:47:ae:40:4d:da:3d:f1:a5:84:
89:a2:31:43:75:99:58:c7:57:7d:42:76:cb:b1:b1:
86:23:62:01:98:b0:3b:38:5a:2e:0f:6f:43:5b:7e:
12:79:77:c8:43:a1:6b:56:92:96:5b:16:0f:07:f0:
b8:db:91:e3:a4:5a:86:b6:7b:dd:57:6b:48:95:4e:
af:ea:cc:a4:15:66:c0:2b:ef:38:ea:98:03:13:ad:
47:a7:5b:50:c8:1d:ba:63:a0:91:63:4d:ad:b0:70:
e8:fa:5f:38:4d:1a:51:8f:7c:20:86:76:2f:6a:89:
f1:89:de:93:79:4d:18:94:03:ea:8e:2f:20:6b:39:
b3:da:d3:d1:2f:e8:e1:46:2a:ce:58:5f:6b:81:b4:
d9:51:37:97:88:02:da:c9:dd:10:d1:6e:8a:55:37:
2c:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:47:8B:85:40:EB:64:D3:50:CD:93:C3:63:C5:BC:1A:46:3C:47:B3
X509v3 Authority Key Identifier:
keyid:82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:30:74:90:dd:1a:55:d7:46:e8:aa:ec:2b:4d:73:d3:df:18:
b4:0d:60:2c:d9:e3:54:cd:8e:27:7f:96:e4:d0:81:fa:7a:09:
b1:af:dd:8b:d2:c1:88:bd:48:16:d8:51:86:a8:dc:da:69:65:
89:e7:b0:18:f3:95:54:62:e2:03:b0:c7:d5:32:ae:fc:ce:2f:
ec:92:9c:77:1f:30:25:68:e8:ba:9f:31:bc:cc:50:19:47:a0:
2e:2a:23:4b:29:ad:af:a9:37:ee:36:2f:91:b9:d6:1c:20:d5:
25:b6:f0:9b:e8:97:f7:fe:85:74:d5:70:09:2e:08:9f:d1:a7:
af:d3:17:77:f5:cc:62:c7:ee:cb:b5:39:01:b9:5a:67:a8:f9:
fd:dc:61:13:8e:f3:51:27:66:19:9c:c3:82:30:9d:55:d6:4a:
86:6d:03:d4:d3:55:dd:ac:46:4f:fa:25:31:d5:b0:72:d3:51:
c8:8f:30:22:b8:49:e6:86:da:17:71:84:b7:44:5b:24:67:3b:
12:39:20:9f:60:40:29:55:42:20:5e:ba:7a:ef:9d:43:af:5e:
8d:df:b1:7e:25:cd:2f:fa:06:15:91:35:e2:38:8c:8f:db:60:
db:7f:d0:3c:86:69:fa:35:1c:54:44:f1:1e:07:7f:32:d2:b5:
b5:fa:7f:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:42:01 2025 by rpki-client