Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
File: Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft (raw, json)
Hash identifier: thnGvDAf0CyNQlZKKl1SIn5D0sXZV8GI5YpgQUJdLlI=
Subject key identifier: 52:14:2B:15:55:30:E8:CF:94:88:71:AD:8F:90:7A:63:CC:D6:78:93
Authority key identifier: 1A:88:F4:29:ED:C8:6A:A8:7B:B3:A1:77:17:CE:A7:1C:70:87:3A:F2
Certificate issuer: /CN=1a88f429edc86aa87bb3a17717cea71c70873af2
Certificate serial: 019657261C36430632CEB2010FDD7F70216A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
Manifest number: 1151
Signing time: Mon 21 Apr 2025 07:00:37 +0000
Manifest this update: Mon 21 Apr 2025 07:00:37 +0000
Manifest next update: Tue 22 Apr 2025 07:00:37 +0000
Files and hashes: 1: Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl (hash: u1tx51nWwrBAP+mOLKlJgNZsdpn34+E1s32EQ4tbVB8=)
2: UujBfWNQbvUkl0lkMK4V-9QiUlw.roa (hash: FohKwxny7khcmiCsTnlSJI6D8Cw6gmfD+vVquMBYGNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 07:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:57:26:1c:36:43:06:32:ce:b2:01:0f:dd:7f:70:21:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a88f429edc86aa87bb3a17717cea71c70873af2
Validity
Not Before: Apr 21 07:00:37 2025 GMT
Not After : Apr 22 07:00:37 2025 GMT
Subject: CN=52142b155530e8cf948871ad8f907a63ccd67893
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:6b:57:73:0d:85:34:b1:a7:2b:dd:a7:df:fe:
a5:f4:5c:3c:87:20:25:2c:c1:4f:2e:1d:61:1d:c9:
06:fe:12:80:4a:df:d3:7d:e0:8e:0d:e0:e2:e6:7f:
7a:df:e9:a1:96:91:e5:e9:a1:6a:fd:d1:7c:0d:2d:
6d:cd:25:e3:c2:5f:f0:98:16:4b:f8:60:ea:01:14:
85:17:3b:d6:bc:09:91:a0:dc:bb:31:d5:1c:49:41:
5b:58:0d:db:6b:29:ba:91:3c:9c:01:dc:73:45:f9:
de:27:e2:f8:f4:7d:60:58:5f:bc:fe:f5:dc:ec:75:
94:61:1d:22:fd:71:d3:99:3e:07:3a:ae:ad:28:c1:
cb:e5:9a:c3:86:b6:56:56:04:07:c9:bf:71:a9:94:
d5:82:59:8f:c7:4d:c3:5b:d6:d9:b4:05:54:a8:e1:
a4:3b:e4:4b:d5:4a:c3:bd:f9:a0:92:d1:e0:95:bb:
ae:10:a6:75:4c:db:86:a8:d0:bf:0e:b9:e8:0b:a0:
bb:0b:54:ac:6f:b5:e9:fe:ad:3a:d0:6a:52:a4:dc:
72:a6:ce:eb:49:26:44:44:46:e5:e6:dc:2a:ac:4f:
56:31:02:bb:49:4e:0e:52:30:72:e2:99:1c:61:30:
40:ec:66:01:a8:3d:cb:45:f2:3d:9e:af:cb:3f:20:
0b:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:14:2B:15:55:30:E8:CF:94:88:71:AD:8F:90:7A:63:CC:D6:78:93
X509v3 Authority Key Identifier:
keyid:1A:88:F4:29:ED:C8:6A:A8:7B:B3:A1:77:17:CE:A7:1C:70:87:3A:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/70db9b-e07a-4fbf-9eba-06d498f620a3/1/Goj0Ke3Iaqh7s6F3F86nHHCHOvI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:11:d3:84:4e:28:a9:5a:25:19:64:a5:69:09:b7:c7:ad:10:
05:6c:dd:66:c3:a1:63:84:d4:b7:bb:dc:8f:95:d9:26:14:f6:
da:7a:54:17:1d:ec:7d:89:2d:55:aa:95:d9:71:66:d9:91:aa:
4d:15:63:1c:6a:36:ed:c2:17:a9:e7:3f:55:75:a7:0c:9f:94:
4d:43:d5:e9:e9:eb:a2:aa:95:19:80:5a:8f:ed:23:54:45:ce:
01:bb:75:85:88:22:ef:53:87:6e:14:7c:72:d8:0d:98:01:ff:
89:1f:23:a3:8c:c7:74:c2:36:85:9c:fe:90:a1:90:05:67:d1:
fe:30:97:a8:48:58:f5:3d:fa:a8:73:fe:b9:4e:0a:69:57:74:
be:79:43:18:cb:6e:53:b8:74:8b:2e:22:7d:ff:e6:0c:5d:ed:
c2:f1:d2:63:1d:75:69:60:7e:1a:8d:1e:c6:eb:0f:d4:21:17:
64:8e:4c:4a:55:a9:82:ff:2e:9d:de:3d:d1:b0:34:70:c6:42:
d7:c4:d5:b9:de:a4:55:9e:c9:cd:25:8b:94:21:4c:a3:fa:50:
fb:8d:04:58:f4:84:04:d4:66:55:89:f0:62:ec:2c:01:34:f7:
7b:86:bc:89:7f:0a:2f:a2:69:33:7a:34:5f:cd:5c:a1:b3:29:
bd:33:4f:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 15:39:55 2025 by rpki-client