Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
File: GDDmA-nKjAXUwbxisLdue9nRiQk.mft (raw, json)
Hash identifier: F0eDBrbZw2pFt6wJH4qC+pCgxG+IJQJLz2QoOa9W3sk=
Subject key identifier: 97:B8:E8:A2:92:7B:30:45:21:C4:CE:79:F7:B2:D7:EE:BB:51:19:6F
Authority key identifier: 18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
Certificate issuer: /CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Certificate serial: 019655DC933AE3004398C82E86030710070E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
Manifest number: 1503
Signing time: Mon 21 Apr 2025 01:00:41 +0000
Manifest this update: Mon 21 Apr 2025 01:00:41 +0000
Manifest next update: Tue 22 Apr 2025 01:00:41 +0000
Files and hashes: 1: GDDmA-nKjAXUwbxisLdue9nRiQk.crl (hash: y9ZpzP62mI1WBQmeXIUR5PgRAGAOhFSkjI1zi4epBWw=)
2: o4yUZzbKz_wfUkXyIRtz_sPdHfw.roa (hash: BiVeXsHTenn/poTYlXrG4Bvxv5uxzXwbjeteQc7yW9U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 22 Apr 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:dc:93:3a:e3:00:43:98:c8:2e:86:03:07:10:07:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1830e603e9ca8c05d4c1bc62b0b76e7bd9d18909
Validity
Not Before: Apr 21 01:00:41 2025 GMT
Not After : Apr 22 01:00:41 2025 GMT
Subject: CN=97b8e8a2927b304521c4ce79f7b2d7eebb51196f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:d2:57:7e:d5:bd:79:d2:70:c8:99:aa:68:60:
61:31:59:bb:f7:04:60:07:8d:78:52:ed:45:2a:ce:
b8:62:3a:41:5f:18:2f:7b:6a:67:85:cd:b2:23:11:
e8:6e:38:be:19:90:43:4c:ec:dd:14:94:35:f2:26:
bd:30:cd:e8:97:6b:85:12:47:2e:48:e3:b4:58:6a:
3d:71:6e:d5:62:f0:84:41:37:30:85:80:95:8b:b4:
32:88:85:05:cf:5e:97:c0:96:16:db:c5:cb:ce:2f:
fa:70:31:7e:64:cc:c2:12:9a:7b:04:ae:31:92:38:
17:e4:6b:6d:1a:d4:9c:20:34:41:f9:2c:55:8f:eb:
ed:55:18:bb:8e:9b:49:93:98:fa:a2:89:6d:31:04:
74:0d:bf:8a:8f:ac:26:95:6a:f5:7c:df:91:db:51:
dd:3e:cf:5c:73:c4:ed:71:99:0e:e9:52:15:ba:9d:
23:58:ba:b0:f5:88:f1:02:a6:6c:c7:58:91:03:9e:
8d:49:e3:57:0f:c9:bb:00:58:fb:11:8a:8a:8f:d1:
ee:bc:f0:8a:84:5e:af:59:d8:36:fb:1a:c3:1c:3b:
47:76:ed:c6:dd:b7:f8:2d:59:eb:7d:59:5a:a7:6e:
c2:f9:c8:c0:15:9e:9a:75:71:7b:5d:56:f0:ff:77:
82:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:B8:E8:A2:92:7B:30:45:21:C4:CE:79:F7:B2:D7:EE:BB:51:19:6F
X509v3 Authority Key Identifier:
keyid:18:30:E6:03:E9:CA:8C:05:D4:C1:BC:62:B0:B7:6E:7B:D9:D1:89:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GDDmA-nKjAXUwbxisLdue9nRiQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/76/2191d7-fda0-4b07-8a8f-1789e64d3210/1/GDDmA-nKjAXUwbxisLdue9nRiQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:f6:04:2e:2a:43:ba:9c:0e:cc:2c:e5:d3:98:c2:40:27:00:
71:92:f5:a6:43:22:23:c0:01:09:38:2b:52:79:57:c3:a7:21:
30:85:f2:81:d7:48:f2:cc:29:3e:13:e2:62:26:fc:3b:bb:9d:
63:63:75:87:6a:32:98:ce:79:52:1b:23:02:02:58:1e:e2:40:
94:93:a9:6d:51:c9:c3:7d:fa:da:04:1e:6b:f4:e5:74:53:cb:
92:82:4f:2f:f7:95:c2:a3:a2:d9:b3:85:27:5a:99:29:14:b1:
a1:75:bf:61:a1:0a:fc:ab:ec:31:48:e8:31:21:29:33:c1:b0:
ad:f7:55:bd:67:52:2f:1e:41:51:cb:80:8b:79:40:80:f5:18:
30:07:bc:03:e7:eb:75:c0:e0:8c:d1:0e:99:e7:8f:69:2f:15:
fe:6a:e7:5a:1a:30:89:8f:96:81:86:e4:03:aa:6d:52:da:e6:
78:40:df:dd:8b:3a:4c:75:f5:e0:6e:1e:58:29:82:86:14:da:
ef:00:bf:39:21:9d:fc:19:d6:27:0b:4e:48:16:a1:81:65:d3:
36:d9:ec:d5:4b:4f:d1:b3:07:93:f3:0b:f2:cf:83:a7:80:2a:
88:60:c7:8f:44:a3:b6:40:bf:98:9d:7a:28:18:cb:4e:e8:a0:
08:49:40:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 02:44:13 2025 by rpki-client