Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: dDoegVOMYG+sm7Fti8Kc4u5g0CcXiuwOMczdFZ3CNRw=
Subject key identifier: 8B:7A:B3:80:11:60:83:8A:DB:D1:6B:98:DB:30:83:0B:BD:BD:91:80
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 0195786AE6C9FFBE21BA43C487FCA602C461
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 73
Signing time: Sun 09 Mar 2025 01:00:26 +0000
Manifest this update: Sun 09 Mar 2025 01:00:26 +0000
Manifest next update: Mon 10 Mar 2025 01:00:26 +0000
Files and hashes: 1: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: WIkcv6lE/QKwzhfeUtzsgp6KwUr4oW1yx4Rh7n4cnwg=)
2: moIHrCUIysvqre1db9iG8YhXiD4.roa (hash: 3qmhRdBwt3IbZM/x/JJkjl8tv0bK7oEsrL8A8nVm2tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 10 Mar 2025 01:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:78:6a:e6:c9:ff:be:21:ba:43:c4:87:fc:a6:02:c4:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: Mar 9 01:00:26 2025 GMT
Not After : Mar 10 01:00:26 2025 GMT
Subject: CN=8b7ab3801160838adbd16b98db30830bbdbd9180
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:6e:78:65:00:b2:2e:49:1c:6a:f2:68:fc:e9:
6d:57:d9:c1:93:8c:3c:e5:f0:22:d7:a9:e9:02:3b:
40:a8:3f:55:7b:46:11:c7:a2:92:f2:fa:85:96:0e:
8c:dc:bd:39:0f:08:77:fd:e6:26:de:9c:e5:a5:b1:
b9:41:4e:02:c2:c2:dc:f7:54:73:8b:ad:d7:1a:a4:
59:36:3b:33:ac:7f:7c:93:fe:53:e4:dd:99:6f:db:
d9:e5:0a:7e:c0:66:74:b6:9d:5a:f0:78:d0:18:28:
1b:c1:3f:c5:c1:be:a0:0e:54:55:99:d1:ea:fd:ab:
60:59:ac:f2:5b:5f:28:98:02:9b:47:c3:c7:84:28:
b1:f8:57:7c:df:c9:e8:f6:5a:c0:1a:46:bd:49:0c:
2a:41:d0:4c:54:45:e3:2d:f2:25:9a:21:12:b0:ba:
c8:b6:aa:14:fa:35:2c:d9:85:ca:f8:81:66:5c:11:
d6:42:fd:48:61:e2:92:45:2a:b6:75:85:ea:02:2f:
b3:b0:d4:5f:ea:bd:f2:20:a9:a1:c9:ab:26:40:cc:
76:53:e7:99:fd:f9:98:2b:d4:33:3d:85:65:22:f4:
2c:34:11:cc:b2:d2:8d:71:f9:f6:70:fd:e5:81:f8:
31:34:ce:0e:4d:34:37:25:26:65:d5:6e:d9:15:7f:
31:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:7A:B3:80:11:60:83:8A:DB:D1:6B:98:DB:30:83:0B:BD:BD:91:80
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:b1:32:4c:96:b0:60:e5:06:0d:c9:b0:f9:23:2c:06:df:c7:
30:46:ea:b9:d3:16:7e:5a:77:b2:73:97:80:74:41:1f:55:42:
e3:e0:e4:7c:3d:d9:d5:39:06:98:54:40:f9:d5:ab:3a:9e:e2:
49:20:de:2a:e1:1d:3c:25:10:fa:0d:84:c9:a1:42:40:91:b7:
09:af:6f:33:88:26:db:39:52:8d:09:ac:47:2f:d1:cd:17:21:
69:90:2a:0e:94:06:d5:a6:01:4d:2b:a7:1c:27:6c:a8:f8:b3:
f7:d4:ca:44:5b:14:d2:a6:67:b5:3c:c1:7e:22:7c:19:15:85:
ee:62:82:e4:3f:97:fd:f2:2a:ab:27:4f:88:4b:37:f6:bc:b6:
24:e5:c8:e5:85:c7:28:4c:15:ae:64:ff:86:d4:6c:ce:38:b7:
db:14:92:cb:15:fb:59:76:f2:f0:63:97:be:40:1b:01:21:68:
59:2c:c7:35:41:ba:42:0c:25:c7:32:4f:c3:02:64:ff:d4:8a:
10:81:3c:c0:bd:e9:b8:41:23:0b:96:fe:65:6f:59:14:24:27:
f3:54:e8:cd:a0:41:75:a4:22:4a:01:01:e6:05:cc:75:1d:36:
e5:aa:ba:32:b8:dc:4a:67:bf:e5:e6:96:9c:5d:7f:9a:33:6f:
2e:7c:1d:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 9 11:37:13 2025 by rpki-client