Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
File: ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft (raw, json)
Hash identifier: dVh9MDwNjZ0ZiCcsLCaqgtJKhmZVcw18wfWDEHFwhTg=
Subject key identifier: 12:07:D0:BD:CC:BB:72:B9:11:20:15:66:CE:DC:3C:EF:F6:74:1D:22
Authority key identifier: 82:12:19:46:9C:6D:F7:6C:F4:76:F2:74:CD:CF:27:E5:2F:8F:0D:F8
Certificate issuer: /CN=821219469c6df76cf476f274cdcf27e52f8f0df8
Certificate serial: 01963E0AF8069B0C175D759A19F6352B5B28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
Manifest number: 04E5
Signing time: Wed 16 Apr 2025 10:00:28 +0000
Manifest this update: Wed 16 Apr 2025 10:00:28 +0000
Manifest next update: Thu 17 Apr 2025 10:00:28 +0000
Files and hashes: 1: fdOHadbduUc9htmWTS-jPq_zv2U.roa (hash: gZYnTf+6Tdj5UA3epTVfXJljvvit6fFaXTM2YVnS+ZA=)
2: ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl (hash: /DuQ7XkrXs8G2uVhA0niNNod7A16t3w557CPgv9wK78=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 09:55:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3e:0a:f8:06:9b:0c:17:5d:75:9a:19:f6:35:2b:5b:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821219469c6df76cf476f274cdcf27e52f8f0df8
Validity
Not Before: Apr 16 10:00:28 2025 GMT
Not After : Apr 17 10:00:28 2025 GMT
Subject: CN=1207d0bdccbb72b911201566cedc3ceff6741d22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:eb:be:a7:21:72:44:c1:5c:9e:b7:3e:28:e7:
d4:6f:5c:78:68:7d:47:60:6f:2d:85:5d:d5:2d:83:
87:8a:54:4c:f5:b0:bc:f7:c0:9f:38:93:14:51:32:
1c:49:4f:a2:c6:e3:d4:db:d6:1b:8d:95:9f:33:1f:
a5:78:a1:42:a8:a5:dd:bd:a7:fe:ab:69:26:2e:d5:
b8:01:d9:40:0f:9c:37:ad:aa:59:b6:76:dc:dc:e0:
63:dc:d2:e4:2c:46:1d:24:d1:7c:cc:5f:fc:f1:d8:
ac:b3:66:06:1d:e1:87:e8:55:8f:73:47:ba:1b:e8:
0d:96:14:c4:34:f2:73:32:ff:37:23:9b:2a:0f:3d:
38:4c:aa:91:66:2c:1b:ed:01:33:3a:b0:56:1e:f3:
31:7c:c5:db:35:72:58:90:b5:20:0e:75:e4:97:e7:
07:e8:18:a6:74:58:00:ae:16:07:6d:99:05:73:27:
b7:61:0c:d1:87:06:83:37:4f:89:0f:d0:f5:9a:55:
da:34:d8:17:6c:0d:d2:34:db:a4:63:e1:ca:98:79:
d8:83:f4:76:df:d9:96:13:8a:be:6b:ea:5e:8c:e3:
11:28:06:1d:e8:e8:d8:f7:3f:78:a3:06:ba:8c:bb:
b3:6a:8c:58:14:b2:d0:87:cb:7d:5a:f1:23:f4:89:
19:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:07:D0:BD:CC:BB:72:B9:11:20:15:66:CE:DC:3C:EF:F6:74:1D:22
X509v3 Authority Key Identifier:
keyid:82:12:19:46:9C:6D:F7:6C:F4:76:F2:74:CD:CF:27:E5:2F:8F:0D:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ghIZRpxt92z0dvJ0zc8n5S-PDfg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/a1a11d-11fb-4424-8cd4-0daa0704b992/1/ghIZRpxt92z0dvJ0zc8n5S-PDfg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:6a:91:da:ec:7a:30:35:19:2e:70:95:1b:30:c5:9c:9b:17:
46:a5:f6:8f:c5:49:36:56:0e:89:97:26:21:ac:50:7c:96:1d:
ce:01:2e:30:30:df:fc:3e:2a:25:80:94:99:24:7c:57:93:06:
79:14:c0:03:4e:0d:74:9d:62:4b:95:ee:fe:6c:a6:05:33:b7:
83:e0:80:17:13:de:71:25:b7:a0:0f:44:3c:9a:79:65:b7:eb:
51:6d:3d:84:ee:2b:e6:3c:65:0f:38:e6:7f:87:8f:02:4d:97:
e2:09:9f:b8:d4:1d:15:3d:11:20:ec:70:2a:a3:f2:4a:1b:1e:
5e:42:38:b9:89:6c:b2:94:e1:87:b2:ad:9c:c4:0d:7a:ab:cb:
49:3b:94:92:c9:ee:a0:bc:68:fe:14:d7:e4:f1:0b:a9:e1:82:
61:09:ee:a0:d2:1f:de:df:7b:31:2f:b4:c7:61:6a:9f:d6:70:
34:2c:df:dd:3a:bf:d4:0c:f4:b1:36:81:ba:15:72:96:78:e1:
80:7e:11:62:99:d7:70:8a:9c:22:da:3e:e5:73:9f:f4:94:3b:
b4:f0:5b:65:b9:4a:91:50:c2:dc:f3:68:af:4e:e1:50:04:9b:
e8:b1:bb:0d:15:e6:b3:42:30:9b:01:7b:6a:2c:b1:42:43:f9:
95:f0:d8:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 12:56:26 2025 by rpki-client