Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
File: gCNZN6302riSXVgEWjNxgWyYBTE.mft (raw, json)
Hash identifier: NjfCzy4S66aYC+yoDfdA5OjoV8BepWtdtj6SygyEF/M=
Subject key identifier: 38:AF:F4:4D:59:C3:2D:89:FC:1E:50:F0:53:65:F5:69:F7:FF:89:38
Authority key identifier: 80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31
Certificate issuer: /CN=80235937adf4dab8925d58045a3371816c980531
Certificate serial: 019654C9FBC46D53F88590ED4343771F0130
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
Manifest number: 06E2
Signing time: Sun 20 Apr 2025 20:00:45 +0000
Manifest this update: Sun 20 Apr 2025 20:00:45 +0000
Manifest next update: Mon 21 Apr 2025 20:00:45 +0000
Files and hashes: 1: gCNZN6302riSXVgEWjNxgWyYBTE.crl (hash: glFjUHtGkO8vJWrzeJKgQNmQYKB/8kJB+TkPhc0utAE=)
2: xGfGnzNZn4HUZigqa5Ok1nkmfsE.roa (hash: XpFkMfmlY0imCtGtKPRW/lTcymGc5XbfGzDPyUvzl8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:54:c9:fb:c4:6d:53:f8:85:90:ed:43:43:77:1f:01:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80235937adf4dab8925d58045a3371816c980531
Validity
Not Before: Apr 20 20:00:45 2025 GMT
Not After : Apr 21 20:00:45 2025 GMT
Subject: CN=38aff44d59c32d89fc1e50f05365f569f7ff8938
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:ca:44:93:db:9e:9a:20:0d:9b:e1:4c:69:1b:
c1:4d:fd:be:49:ed:a9:23:1b:1f:09:b4:1f:d9:71:
32:16:38:c3:8c:23:bf:c5:a9:1a:02:ae:6c:a7:f8:
99:ab:4c:78:15:c2:f7:71:08:eb:15:d6:cf:d9:2b:
7e:25:b1:c2:49:b9:f9:22:66:19:96:4a:61:84:7b:
43:23:fd:fe:56:58:ee:5e:79:44:d1:8c:bb:a7:e1:
d5:12:af:f7:00:2c:71:13:44:c0:bc:b2:69:75:46:
b3:fc:7d:62:08:fd:d1:a8:d1:d1:9a:97:43:fb:ec:
a0:68:38:ac:3e:f2:50:d1:6c:88:f5:a6:39:94:a8:
4e:50:2c:03:d7:d7:7a:0f:95:0b:57:a2:f3:b3:8b:
31:91:6b:db:03:7a:27:ae:54:dd:b6:ea:e8:07:88:
24:d1:c9:46:ff:d0:57:85:7c:38:38:cb:f4:24:c7:
95:ba:3c:ce:06:c1:3b:23:86:d7:3b:c0:ee:fc:7a:
1e:6f:82:44:d5:a8:8b:b0:fd:d6:78:ee:4f:a7:98:
cb:8f:12:51:e6:38:d1:df:af:a6:69:8e:f3:c6:55:
ca:26:4b:6b:52:47:6d:81:23:87:02:51:7c:19:c9:
93:3b:3b:3d:bd:b5:0b:dd:c2:fa:95:f8:d1:32:6d:
bc:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:AF:F4:4D:59:C3:2D:89:FC:1E:50:F0:53:65:F5:69:F7:FF:89:38
X509v3 Authority Key Identifier:
keyid:80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:96:c9:e8:ba:c6:c3:11:c8:85:7f:2e:23:4b:ab:20:30:42:
7c:e1:a9:5c:e4:c8:40:89:4d:8c:65:cc:2c:d9:b8:1e:f9:b6:
d5:ba:a1:cc:88:58:55:a4:e6:bd:03:e2:6a:68:ea:af:39:47:
39:b2:5c:23:38:1b:15:97:06:b1:ef:8e:e6:08:e1:ec:dc:47:
75:12:d0:ec:a8:fd:24:a8:00:bc:72:9e:05:c7:c9:62:b2:2c:
61:31:3c:65:7f:3c:0b:74:e1:75:96:06:f5:07:7a:df:ec:b2:
cb:39:b2:77:f6:09:77:3d:5d:b3:c2:5e:73:76:5d:69:ca:a2:
a3:87:2a:b6:62:b6:4a:1f:19:ad:ce:17:f3:07:70:02:1d:f0:
47:f6:40:70:62:ad:d8:33:29:2a:e2:1e:4f:49:a1:c6:9f:67:
47:28:8a:38:63:e2:2c:72:03:07:cc:ad:e1:e1:b6:26:72:a1:
c2:19:7e:20:c9:fa:0a:a1:5e:ea:2a:a5:3a:a9:60:2a:04:d5:
e5:90:74:1a:bf:28:ca:55:70:4e:d8:33:b7:7a:a7:fd:cb:85:
7a:0c:87:55:51:47:81:81:8c:49:e7:56:70:d1:e0:11:13:1c:
3a:ff:43:6a:00:fb:f1:7c:8b:04:d6:80:7f:1c:53:ed:71:1b:
49:be:14:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:30:49 2025 by rpki-client