Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
File: gCNZN6302riSXVgEWjNxgWyYBTE.mft (raw, json)
Hash identifier: gu5CqPS/+OKaMhp9IBlBe5chpztC+mJ8uJ37JVTOJMk=
Subject key identifier: 71:E0:A5:12:44:E3:43:C4:C8:87:FF:B9:65:0B:FB:1F:89:0A:4F:2A
Authority key identifier: 80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31
Certificate issuer: /CN=80235937adf4dab8925d58045a3371816c980531
Certificate serial: 01958BF253B1A35DDE1ADF71460AA7BCD9E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
Manifest number: 067A
Signing time: Wed 12 Mar 2025 20:01:08 +0000
Manifest this update: Wed 12 Mar 2025 20:01:08 +0000
Manifest next update: Thu 13 Mar 2025 20:01:08 +0000
Files and hashes: 1: gCNZN6302riSXVgEWjNxgWyYBTE.crl (hash: qxM0zRlwj6B9qsD2TORmQBzcshARO++4+PO44IvaeUM=)
2: xGfGnzNZn4HUZigqa5Ok1nkmfsE.roa (hash: XpFkMfmlY0imCtGtKPRW/lTcymGc5XbfGzDPyUvzl8w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:53:b1:a3:5d:de:1a:df:71:46:0a:a7:bc:d9:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80235937adf4dab8925d58045a3371816c980531
Validity
Not Before: Mar 12 20:01:08 2025 GMT
Not After : Mar 13 20:01:08 2025 GMT
Subject: CN=71e0a51244e343c4c887ffb9650bfb1f890a4f2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:10:2d:1d:55:70:85:e7:1a:85:69:3e:d8:6f:
f4:51:6f:fe:42:eb:a7:2c:c9:20:d6:8b:ae:9d:b4:
66:18:48:d4:2f:c1:17:56:c4:8c:e8:97:7d:fe:1f:
99:85:0f:45:ce:71:f6:fa:cd:76:17:cb:32:25:61:
8a:c7:20:07:eb:36:2a:08:17:a4:3c:21:b0:ed:73:
93:66:dc:67:93:0e:c2:04:32:83:1a:4b:50:5b:19:
66:c5:81:15:5d:59:8d:0e:a9:93:91:3c:1e:a4:4f:
bb:d3:09:a3:24:1f:14:92:37:9e:c3:26:24:6e:60:
39:8a:2d:15:3b:25:f2:8d:4f:ea:00:ca:d1:14:ac:
9c:01:f1:ab:e4:c6:1f:b9:0c:9a:f5:0a:6a:98:55:
98:5e:64:2c:c1:d4:ef:21:35:fb:28:96:98:b8:db:
4b:cc:53:cf:48:05:45:8c:dc:b0:56:37:f3:48:02:
fa:99:19:8c:62:89:75:70:96:b5:0f:55:83:d2:f3:
1d:44:60:12:42:e5:ef:eb:b0:b1:b1:c4:85:7a:a4:
f6:8b:84:94:a0:5b:4d:aa:eb:58:a7:11:f1:25:35:
e0:1a:be:f9:d3:9a:de:23:61:73:5d:c5:ed:7b:09:
ed:a0:42:f8:81:25:47:44:6f:bf:1d:74:6e:b9:6a:
7b:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:E0:A5:12:44:E3:43:C4:C8:87:FF:B9:65:0B:FB:1F:89:0A:4F:2A
X509v3 Authority Key Identifier:
keyid:80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:23:3a:fe:c7:a9:5f:1a:a3:7b:42:88:15:51:42:8d:2c:47:
86:ca:b1:a3:b7:58:a9:db:ba:b0:3c:70:a3:69:c3:26:cf:bd:
4a:07:6f:10:c6:ac:a4:0e:a9:88:a1:a5:88:65:a8:d8:d6:1b:
e3:3d:ee:3d:a8:c5:19:7b:c8:b8:2b:3e:1d:fa:14:72:d7:7e:
98:91:9c:31:dd:ae:6c:c0:46:f4:5d:3a:41:84:2f:af:89:12:
fb:ec:53:cd:a8:2f:38:a5:51:27:ef:a7:14:e0:bc:41:e2:23:
34:8d:3a:9d:ce:d4:aa:ef:f5:13:10:d0:81:aa:d1:b5:92:7c:
9e:8a:9f:34:01:c3:a3:da:e2:7b:9c:0d:9b:94:38:31:f6:ff:
34:84:75:ed:6d:a8:f6:64:f7:56:cb:88:2a:90:5f:63:16:d7:
b5:20:c9:28:a0:d2:78:02:c4:db:f7:f7:f9:e1:74:fd:ec:cb:
a3:8d:04:66:01:f1:1f:10:b0:e2:27:cc:11:5d:b7:0d:a0:c1:
b4:74:39:30:1b:64:0d:f2:89:a4:54:a0:95:e1:7b:66:07:c2:
e7:0e:fa:67:59:4e:15:fb:1c:ba:c7:bd:20:f9:4e:9a:27:8c:
f8:a9:84:2c:b9:ab:ce:a8:53:94:ec:b3:2c:63:8f:6c:ec:a8:
5b:1f:71:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:15:42 2025 by rpki-client