Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
File: gmAVLt1HazFwhARFKVhhW2Xdywo.mft (raw, json)
Hash identifier: k+Pm2vaEmWiiwjcvlE82Q+DGTsLadJVnflBOYg/Wom8=
Subject key identifier: 8A:95:78:45:32:C5:09:AB:68:D1:11:2F:87:A4:36:96:15:5C:0E:48
Authority key identifier: 82:60:15:2E:DD:47:6B:31:70:84:04:45:29:58:61:5B:65:DD:CB:0A
Certificate issuer: /CN=8260152edd476b31708404452958615b65ddcb0a
Certificate serial: 01964A468C5D9ADC95F9D20C779844807557
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
Manifest number: 14F7
Signing time: Fri 18 Apr 2025 19:00:59 +0000
Manifest this update: Fri 18 Apr 2025 19:00:59 +0000
Manifest next update: Sat 19 Apr 2025 19:00:59 +0000
Files and hashes: 1: ABnX77DVikk7gn2fQ6SCyXZp5CY.roa (hash: tGweD2UyMDN3jg0C7H8c7WDDk9iUdxSAoQTdTpfDf5g=)
2: gmAVLt1HazFwhARFKVhhW2Xdywo.crl (hash: dE3hQhTTcwt0ZJmlUmuuFpst/jrIL+t35e9MCX+c+38=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 19 Apr 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4a:46:8c:5d:9a:dc:95:f9:d2:0c:77:98:44:80:75:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8260152edd476b31708404452958615b65ddcb0a
Validity
Not Before: Apr 18 19:00:59 2025 GMT
Not After : Apr 19 19:00:59 2025 GMT
Subject: CN=8a95784532c509ab68d1112f87a43696155c0e48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:26:b9:1a:26:a8:ab:1b:fa:fd:a0:34:63:dc:
cd:4b:29:ff:d2:a0:54:48:9f:82:09:f8:23:7f:fc:
eb:72:31:0a:00:21:ad:ab:4c:9d:82:24:1f:5e:58:
ec:af:b4:c3:03:70:b8:61:e0:57:f3:76:9c:a3:82:
17:6f:8b:f8:d8:ea:07:6d:27:4c:28:e4:69:4b:a7:
03:b5:60:bb:86:cb:c9:4c:50:68:19:a7:4d:70:a7:
66:a0:af:00:fc:f0:0a:f2:1b:50:b1:2a:eb:71:22:
f3:4e:16:04:0b:b4:50:2f:57:b3:0e:a5:2e:d0:73:
a3:6c:d4:69:28:52:ba:e9:99:92:86:8d:3a:be:45:
a1:eb:f5:51:04:4b:1c:01:f1:c9:7d:34:58:0e:79:
9e:bf:01:9a:7f:ee:e5:64:cf:c0:17:59:41:89:0a:
bb:7b:9a:8a:69:6c:54:a5:53:9e:d0:7d:cb:d6:2b:
f5:2e:a4:99:52:90:29:92:af:36:2e:86:3d:9a:8d:
ee:84:ac:d4:0c:3f:a4:f8:a6:9c:fc:9d:9f:7e:98:
cd:c4:10:c5:ec:10:53:95:7b:47:ed:26:e5:91:19:
0d:a9:85:4d:d5:c9:37:68:32:48:e5:16:c1:b4:3b:
4a:11:0d:3f:e1:31:11:38:22:2a:e4:8e:f0:d4:22:
16:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:95:78:45:32:C5:09:AB:68:D1:11:2F:87:A4:36:96:15:5C:0E:48
X509v3 Authority Key Identifier:
keyid:82:60:15:2E:DD:47:6B:31:70:84:04:45:29:58:61:5B:65:DD:CB:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gmAVLt1HazFwhARFKVhhW2Xdywo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/49f40c-5448-4217-956f-ccf9b0f0e227/1/gmAVLt1HazFwhARFKVhhW2Xdywo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:61:a2:8d:78:18:b6:da:eb:26:96:55:8a:30:0b:1e:ee:f3:
e4:06:c3:a6:a1:71:b9:98:2d:5f:b4:de:55:25:4a:a6:c9:b5:
e8:f1:cd:0b:5c:c4:4a:68:88:04:14:38:3c:8e:6b:a3:55:f6:
ee:9c:30:c5:b8:fd:e7:f8:5a:b3:50:bd:5b:eb:a0:86:c7:25:
07:a7:9a:34:45:19:e7:c6:32:d4:65:02:15:f6:d0:71:e5:31:
d0:61:70:17:06:ca:80:41:c2:c8:83:eb:78:20:05:b9:81:79:
da:aa:02:80:8c:8c:1a:2f:c5:7c:dd:64:83:34:7b:e9:ba:87:
38:cf:6a:c8:44:51:49:c3:19:85:9d:46:67:7f:cb:0a:27:b2:
36:9c:1c:f5:42:ff:1c:82:c7:90:7f:a2:49:f1:29:12:65:0e:
3a:ca:d6:47:84:b3:3a:0c:90:d8:46:24:e5:df:8c:04:76:91:
0e:2d:da:4c:46:a7:fe:a1:de:c8:b5:ef:08:36:21:30:90:1a:
8a:25:1c:bd:93:f6:2b:13:ba:ec:aa:77:22:b2:f4:7d:f3:a7:
dc:dc:79:1f:c5:6f:4d:90:e6:47:f1:b1:ab:b5:7e:1d:ad:38:
8e:27:70:f3:cd:f3:a2:f2:20:90:e3:57:eb:02:77:05:a8:ab:
47:5e:6a:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 19 01:31:13 2025 by rpki-client