Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
File: G2t-l-0j1mqR-4qRv9nGdxEpsas.mft (raw, json)
Hash identifier: 2cdoJdVxqKgnlP8pGVZ4sSlVnN4ql0ZM7EYERCISfzI=
Subject key identifier: 34:1A:56:A4:31:91:E8:48:8D:32:1A:4D:82:04:B7:93:04:10:8E:1E
Authority key identifier: 1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB
Certificate issuer: /CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
Certificate serial: 01965982B102D14BB4EB15CC4750CD4FFD0E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
Manifest number: 0DF9
Signing time: Mon 21 Apr 2025 18:00:59 +0000
Manifest this update: Mon 21 Apr 2025 18:00:59 +0000
Manifest next update: Tue 22 Apr 2025 18:00:59 +0000
Files and hashes: 1: G2t-l-0j1mqR-4qRv9nGdxEpsas.crl (hash: 7bOsMX4bsa/+/JdQAd+OFWSu+MK06oKTxCTGpZTgfN4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 18:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:59:82:b1:02:d1:4b:b4:eb:15:cc:47:50:cd:4f:fd:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b6b7e97ed23d66a91fb8a91bfd9c6771129b1ab
Validity
Not Before: Apr 21 18:00:59 2025 GMT
Not After : Apr 22 18:00:59 2025 GMT
Subject: CN=341a56a43191e8488d321a4d8204b79304108e1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:b9:4d:36:94:93:df:fd:da:3b:30:81:26:77:
5f:93:f1:60:fc:dc:5e:3d:29:9c:c4:51:63:c1:a7:
06:4f:f9:0a:86:b9:6f:cf:1a:26:10:2a:8a:0b:dd:
6e:a5:7c:a4:66:e2:6e:66:4e:3e:f8:ae:8f:2d:03:
6d:b2:aa:6f:7b:70:6d:99:96:e2:0c:75:e1:4b:4d:
b8:69:b9:22:52:03:85:07:ce:87:2e:be:d3:90:53:
f3:5e:65:b9:f0:0e:ab:9a:74:b2:c0:ef:76:80:40:
b7:7d:53:23:69:59:1d:d9:3a:d5:af:2e:28:7a:db:
90:bd:0d:88:e6:6c:f5:03:00:05:a3:60:fa:0c:d1:
09:14:11:3e:f6:24:8f:33:45:d2:27:e4:19:af:dd:
81:97:5a:a5:b2:ac:e0:ac:7b:bc:0c:2b:eb:12:2a:
e4:ea:64:6e:b8:6c:34:cf:97:da:3d:49:8d:31:02:
c7:6d:0e:f3:ae:10:9f:ff:6a:ab:86:85:d5:af:8f:
ce:67:97:c4:1d:f9:5d:60:ac:6b:8b:71:62:ae:a1:
03:1c:b3:8c:72:e0:51:58:1e:5a:eb:3e:73:c3:7a:
38:2f:25:31:2f:51:5a:6f:97:85:8a:f4:c4:cc:14:
42:83:ee:26:95:44:0c:b3:25:20:30:8a:e3:a0:5f:
86:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:1A:56:A4:31:91:E8:48:8D:32:1A:4D:82:04:B7:93:04:10:8E:1E
X509v3 Authority Key Identifier:
keyid:1B:6B:7E:97:ED:23:D6:6A:91:FB:8A:91:BF:D9:C6:77:11:29:B1:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2t-l-0j1mqR-4qRv9nGdxEpsas.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/bb0e00-a24d-4935-8c07-1361550cb3d5/1/G2t-l-0j1mqR-4qRv9nGdxEpsas.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:ca:f2:ef:39:33:a5:32:b8:12:58:01:c3:9b:a9:a7:84:a0:
ea:5c:81:11:ff:61:b1:ae:de:68:5d:f8:49:00:64:b2:2a:19:
ae:64:a1:aa:af:df:d9:8d:21:a4:00:7a:f0:ab:ae:94:ed:87:
4f:30:f4:c6:77:6e:ef:35:05:0d:d0:76:e1:69:c0:ee:e8:b7:
97:db:2b:35:e1:03:86:f9:8d:a9:b1:65:ee:58:d5:0d:61:76:
7a:12:a4:73:e4:ab:2e:73:e6:2f:e3:3c:00:e6:9e:30:da:19:
df:ee:08:18:46:6c:2d:ab:c0:23:7d:b8:be:50:58:09:4a:9c:
02:4d:1c:9f:23:2f:b3:5b:2a:f8:21:bd:6c:0a:5a:00:3f:a4:
14:81:fd:f9:2d:02:10:3a:75:d2:c2:18:4d:0a:d0:a8:4b:70:
77:cf:fe:b3:71:1d:33:71:bf:df:97:ba:32:55:aa:90:9b:4a:
88:7c:12:b1:cc:df:07:7b:aa:33:3b:12:44:07:9e:23:6a:58:
93:83:bc:f2:c5:69:39:7b:c2:bd:14:ba:3c:97:97:06:9a:be:
ec:71:55:40:88:b7:48:a6:da:3a:8e:4d:fe:aa:ae:20:03:08:
a3:f8:2c:14:84:46:80:dd:eb:64:df:e3:a6:7d:f3:cc:51:22:
f8:39:d8:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 22:45:41 2025 by rpki-client