Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
File: GOk3wQPbBG8iVT75lDj6KVkkDaU.mft (raw, json)
Hash identifier: yYwM0lV6WG1giozUGy45LlfsG1kELWMiUtbcxxaTBmc=
Subject key identifier: 65:3B:60:81:FE:9F:4F:E8:68:9A:3E:08:C9:02:27:74:C2:B4:16:1C
Authority key identifier: 18:E9:37:C1:03:DB:04:6F:22:55:3E:F9:94:38:FA:29:59:24:0D:A5
Certificate issuer: /CN=18e937c103db046f22553ef99438fa2959240da5
Certificate serial: 01961434048C30FBD1025EAF53BCB50D7ADC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
Manifest number: 14DD
Signing time: Tue 08 Apr 2025 07:01:15 +0000
Manifest this update: Tue 08 Apr 2025 07:01:15 +0000
Manifest next update: Wed 09 Apr 2025 07:01:15 +0000
Files and hashes: 1: 2Hcj0ac-2VPUQm6MAjkwJIIrflI.roa (hash: qp66s4r7nxhRRHNo4vHow9LReUAp/h/x3jaDV1HCAjY=)
2: GOk3wQPbBG8iVT75lDj6KVkkDaU.crl (hash: tU9PxOf8W44TAsdD5ejpjZOOmTCDYEhaqK/e+xOLfkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.crl
rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 09 Apr 2025 07:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:14:34:04:8c:30:fb:d1:02:5e:af:53:bc:b5:0d:7a:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=18e937c103db046f22553ef99438fa2959240da5
Validity
Not Before: Apr 8 07:01:15 2025 GMT
Not After : Apr 9 07:01:15 2025 GMT
Subject: CN=653b6081fe9f4fe8689a3e08c9022774c2b4161c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:10:b5:75:73:79:5e:e5:94:f9:bc:17:17:20:
a9:8e:dd:c4:d8:02:62:88:76:b0:49:19:b6:96:6b:
9e:cc:d9:ea:8a:dd:50:b1:aa:2f:6a:7c:44:49:73:
43:0f:1b:e2:13:83:46:ba:c3:41:a0:df:df:63:83:
6d:9a:f1:ad:47:ce:5b:06:38:49:6f:0b:db:53:11:
a8:c5:b0:8f:a8:97:3d:d8:b4:3a:68:e8:26:98:73:
f4:63:89:07:d1:d1:50:da:8a:3a:4e:5e:4c:24:25:
e4:f9:39:26:28:53:fc:dd:47:2a:49:4e:d2:92:ea:
e4:0a:6c:39:11:80:54:80:03:78:83:31:ed:14:8e:
ed:97:10:90:e8:8e:22:71:84:10:53:53:ab:38:19:
65:6d:61:9b:58:9b:40:4d:64:84:27:f8:8f:ee:d1:
fe:49:13:98:47:33:fc:9b:e7:02:46:a8:9d:5c:c3:
21:72:15:b8:ea:62:df:93:d8:ce:89:a5:fa:4d:59:
10:af:dc:04:ae:f9:bd:df:68:41:2c:17:1a:38:c6:
b4:df:3a:45:89:0b:a8:25:db:05:81:11:c9:50:b5:
07:cf:6a:12:04:4a:de:ee:d7:27:b2:89:13:1c:f9:
3b:5a:09:79:99:5a:22:19:86:d0:e5:fe:aa:93:a2:
28:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
65:3B:60:81:FE:9F:4F:E8:68:9A:3E:08:C9:02:27:74:C2:B4:16:1C
X509v3 Authority Key Identifier:
keyid:18:E9:37:C1:03:DB:04:6F:22:55:3E:F9:94:38:FA:29:59:24:0D:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GOk3wQPbBG8iVT75lDj6KVkkDaU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/62/7aedad-b4cf-469c-aebf-cae6a709d14a/1/GOk3wQPbBG8iVT75lDj6KVkkDaU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:d8:33:23:43:4d:5e:00:2c:41:90:cb:f4:7c:f7:18:41:23:
22:03:9a:59:15:3c:c8:ee:fb:d3:d3:b0:d7:17:a1:d7:ff:b4:
86:5c:6c:31:94:4f:5d:04:cf:c8:6d:7e:0e:1d:51:60:4c:89:
2e:4b:15:4c:99:2e:fc:62:91:3d:05:70:f3:6e:86:04:f6:9e:
0e:8e:c2:eb:ed:3b:0b:92:fb:71:e9:6e:3a:81:e2:e3:e4:f5:
2c:98:d9:aa:8c:72:38:2a:50:f2:5f:0b:e8:3b:95:02:fa:d1:
03:5e:ba:77:6e:9e:63:aa:41:26:57:c2:91:d2:a5:e1:0b:fa:
b0:6b:28:a2:e5:a7:e6:cc:56:22:fe:71:68:a2:63:e7:a6:64:
04:31:c3:73:a8:50:68:e3:b2:0d:3e:12:0f:a7:cc:4b:b3:c8:
d7:41:74:59:d0:7b:17:a2:fe:b6:3f:b9:de:e3:b2:0e:17:d2:
a2:e4:04:e5:b2:10:89:d5:b6:2e:fd:90:ac:a6:2e:12:c4:72:
89:f1:40:06:05:09:57:34:4d:87:8f:80:34:49:de:c8:9d:41:
5f:e2:2a:b3:89:6d:0a:5d:4c:ed:51:a2:71:62:38:1a:eb:ee:
bb:ff:6b:9d:51:3b:f3:84:67:b2:e9:b3:9f:44:c9:23:40:25:
41:92:74:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:44:28 2025 by rpki-client