Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
File: GdlgBYpVOz9d-f5ychkDfEirUOE.mft (raw, json)
Hash identifier: 8W5+XxpnPBJGvcJF2fyq26TtodqaC8wlCmbdsGJY8X4=
Subject key identifier: 37:C7:C4:30:D5:9C:37:63:0C:DE:4B:66:83:3B:07:42:39:DD:29:41
Authority key identifier: 19:D9:60:05:8A:55:3B:3F:5D:F9:FE:72:72:19:03:7C:48:AB:50:E1
Certificate issuer: /CN=19d960058a553b3f5df9fe727219037c48ab50e1
Certificate serial: 0194BB290BF783BC105C8959444D13DEC312
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
Manifest number: 0AFA
Signing time: Fri 31 Jan 2025 07:00:16 +0000
Manifest this update: Fri 31 Jan 2025 07:00:16 +0000
Manifest next update: Sat 01 Feb 2025 07:00:16 +0000
Files and hashes: 1: GdlgBYpVOz9d-f5ychkDfEirUOE.crl (hash: /SBc4IR56fA2Cua7BYVVHkB5Ya1him68otsPYUeJW+8=)
2: X3uPBxzPVXv3n_QN1aGdKbmuIRY.roa (hash: hUPc8yRkBzbeF7M/RRJW79E+lPzVmxoaNEB54waojEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.crl
rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 01 Feb 2025 07:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:bb:29:0b:f7:83:bc:10:5c:89:59:44:4d:13:de:c3:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19d960058a553b3f5df9fe727219037c48ab50e1
Validity
Not Before: Jan 31 07:00:16 2025 GMT
Not After : Feb 1 07:00:16 2025 GMT
Subject: CN=37c7c430d59c37630cde4b66833b074239dd2941
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:a2:62:3a:be:c2:fd:de:49:06:21:6b:fb:7a:
75:e3:8f:39:b1:bf:f8:dd:5f:05:b7:56:c5:32:b9:
6d:71:4f:82:9f:36:57:11:05:18:ab:ee:23:83:b1:
25:d8:fb:35:46:fe:d4:ae:f4:98:ed:dc:99:dd:1a:
4c:3e:ee:60:27:18:3f:3c:a8:7c:a8:2d:39:64:77:
ef:b8:46:f2:3d:38:d6:b2:6f:9d:8d:7f:4b:f2:fe:
d8:20:3e:f4:76:fa:7f:36:62:a7:7a:77:e4:ac:43:
ee:1a:e5:9b:65:d9:7c:84:de:8a:1b:cf:ce:25:0c:
1a:87:0e:80:e7:78:59:46:5e:a0:57:ef:1e:6e:d1:
ca:e4:bc:12:4b:80:63:ae:0b:d0:fe:1d:9e:3c:b9:
a0:17:aa:78:cf:ab:47:7a:7d:b3:50:e8:cd:44:4e:
cc:39:73:db:5b:9e:de:51:14:5f:56:0c:91:c0:d3:
4f:cc:11:ca:e2:31:a3:aa:9f:23:3e:12:f9:de:01:
0d:ff:9c:4c:71:4d:3c:25:2a:4c:74:b2:6c:22:c6:
69:64:5b:7b:02:ef:98:7b:e1:e6:18:32:68:83:a5:
3e:bb:19:e5:6d:b1:40:2d:af:80:7b:76:b7:99:e2:
31:55:54:79:0f:15:59:8e:dc:a2:89:b0:24:37:65:
74:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:C7:C4:30:D5:9C:37:63:0C:DE:4B:66:83:3B:07:42:39:DD:29:41
X509v3 Authority Key Identifier:
keyid:19:D9:60:05:8A:55:3B:3F:5D:F9:FE:72:72:19:03:7C:48:AB:50:E1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GdlgBYpVOz9d-f5ychkDfEirUOE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/87/bf580b-e912-4c1d-9e50-57b91e815330/1/GdlgBYpVOz9d-f5ychkDfEirUOE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:d2:7a:55:22:b3:ea:7b:a8:1e:b5:66:f8:87:33:9e:16:33:
26:7b:14:6a:84:21:f8:94:06:d1:75:cd:49:82:23:88:4e:ff:
7a:4f:b7:a5:86:fa:b8:eb:59:c2:c8:d0:48:42:3b:2b:f1:f8:
3f:2d:d5:0a:75:58:b4:5c:f5:d3:0f:3d:c8:74:50:31:ba:09:
86:17:f7:dd:f7:b6:b6:e2:02:43:0c:a7:d9:66:97:29:98:08:
da:28:b5:6e:e4:12:1d:62:5e:b8:46:b1:ea:d0:34:00:75:38:
9d:69:0e:59:8c:24:26:d2:02:62:05:bb:0d:2a:f2:b8:8b:58:
36:00:86:7b:f8:ff:95:88:bb:b0:a0:97:29:ce:9d:0f:1f:28:
55:4a:e8:3f:b8:ed:71:c5:ac:02:a9:7e:32:7b:1a:26:2f:3b:
4c:65:90:ef:75:68:70:bd:50:77:75:62:27:f2:dc:ee:b9:d2:
f2:74:99:36:91:0d:e4:f1:50:2c:27:b4:b1:d9:0e:aa:58:c8:
09:aa:19:04:67:b4:a4:94:86:b9:5d:3b:2a:5b:2c:97:2d:96:
65:d8:a2:ef:bc:62:54:f6:0e:ff:ea:88:cb:3a:54:4e:f0:30:
e8:02:2d:ac:c5:81:41:d5:88:b1:ce:93:0e:3c:0c:72:72:20:
88:0e:b9:b8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZS7KQv3g7wQXIlZRE0T3sMSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDE5ZDk2MDA1OGE1NTNiM2Y1ZGY5ZmU3MjcyMTkwMzdjNDhh
YjUwZTEwHhcNMjUwMTMxMDcwMDE2WhcNMjUwMjAxMDcwMDE2WjAzMTEwLwYDVQQD
EygzN2M3YzQzMGQ1OWMzNzYzMGNkZTRiNjY4MzNiMDc0MjM5ZGQyOTQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsaJiOr7C/d5JBiFr+3p14485sb/4
3V8Ft1bFMrltcU+CnzZXEQUYq+4jg7El2Ps1Rv7UrvSY7dyZ3RpMPu5gJxg/PKh8
qC05ZHfvuEbyPTjWsm+djX9L8v7YID70dvp/NmKnenfkrEPuGuWbZdl8hN6KG8/O
JQwahw6A53hZRl6gV+8ebtHK5LwSS4BjrgvQ/h2ePLmgF6p4z6tHen2zUOjNRE7M
OXPbW57eURRfVgyRwNNPzBHK4jGjqp8jPhL53gEN/5xMcU08JSpMdLJsIsZpZFt7
Au+Ye+HmGDJog6U+uxnlbbFALa+Ae3a3meIxVVR5DxVZjtyiibAkN2V0jwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDfHxDDVnDdjDN5LZoM7B0I53SlBMB8GA1UdIwQY
MBaAFBnZYAWKVTs/Xfn+cnIZA3xIq1DhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvR2RsZ0JZcFZPejlkLWY1eWNoa0RmRWlyVU9FLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny9iZjU4MGItZTkxMi00YzFkLTllNTAt
NTdiOTFlODE1MzMwLzEvR2RsZ0JZcFZPejlkLWY1eWNoa0RmRWlyVU9FLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Ny9iZjU4MGItZTkxMi00YzFkLTllNTAtNTdiOTFlODE1MzMw
LzEvR2RsZ0JZcFZPejlkLWY1eWNoa0RmRWlyVU9FLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIdJ6VSKz
6nuoHrVm+IcznhYzJnsUaoQh+JQG0XXNSYIjiE7/ek+3pYb6uOtZwsjQSEI7K/H4
Py3VCnVYtFz10w89yHRQMboJhhf33fe2tuICQwyn2WaXKZgI2ii1buQSHWJeuEax
6tA0AHU4nWkOWYwkJtICYgW7DSryuItYNgCGe/j/lYi7sKCXKc6dDx8oVUroP7jt
ccWsAql+MnsaJi87TGWQ73VocL1Qd3ViJ/Lc7rnS8nSZNpEN5PFQLCe0sdkOqljI
CaoZBGe0pJSGuV07Klssly2WZdii77xiVPYO/+qIyzpUTvAw6AItrMWBQdWIsc6T
DjwMcnIgiA65uA==
-----END CERTIFICATE-----
Generated at Fri Jan 31 15:35:51 2025 by rpki-client on console-fra.rpki-client.org