Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: Rk8OWDJJmDoY809j98FtCgMBAz64PwobW9u+rxMtmPA=
Subject key identifier: F5:D9:57:BB:56:85:BE:E6:FF:44:A3:AF:06:07:2D:78:D4:79:49:AB
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 019511354E314987C2D6768583F9ED5F514B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 02AE
Signing time: Mon 17 Feb 2025 00:01:00 +0000
Manifest this update: Mon 17 Feb 2025 00:01:00 +0000
Manifest next update: Tue 18 Feb 2025 00:01:00 +0000
Files and hashes: 1: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: CoKw97QI+5QUkudh0u5nstQg8MMCxszoOPWWDGwqsq4=)
2: knOts_9A8gA0IVqYk7a99kaTuRI.roa (hash: kCE50cAQS4imaI4wXAlSfVZnkYJchZQUkd+tGc4tAWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:11:35:4e:31:49:87:c2:d6:76:85:83:f9:ed:5f:51:4b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Feb 17 00:01:00 2025 GMT
Not After : Feb 18 00:01:00 2025 GMT
Subject: CN=f5d957bb5685bee6ff44a3af06072d78d47949ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:22:d6:74:dc:2e:b6:80:5f:02:49:d0:d9:b1:
14:97:b2:a2:d6:d0:94:81:e9:b9:b5:29:2c:69:07:
5c:70:a7:49:57:08:5e:a5:e2:74:3e:93:d2:df:69:
a5:74:e1:80:e4:85:7a:85:21:63:1d:71:e6:06:23:
e6:e1:d8:7e:3a:4d:9c:09:a9:ff:17:f4:3c:27:6f:
b3:1e:ef:14:d7:12:cf:a6:89:aa:6d:e4:dc:3f:cd:
64:24:4e:bd:d4:22:ef:72:71:2d:d5:8a:39:d3:b5:
60:57:08:ba:35:d8:f8:3c:67:39:b8:91:ce:f6:39:
63:36:60:1f:d3:e6:08:5f:2d:c0:c0:f2:df:39:a4:
33:80:2a:c7:55:11:10:23:32:30:51:48:f7:fe:4f:
cd:77:7a:33:00:f9:3c:c3:a1:5a:75:e8:e7:03:94:
66:82:fc:f3:cf:c7:d2:18:37:80:3f:51:36:f5:01:
76:db:8d:25:18:1b:3b:e0:f8:dc:0d:74:59:63:01:
20:cd:a9:92:08:90:b5:cc:39:56:5a:3f:58:e7:80:
a8:a0:3c:5f:cf:78:ab:e1:56:07:6f:96:da:e6:6b:
18:81:c8:a3:50:d9:54:95:e2:65:07:f4:3a:3d:0b:
0d:a8:68:1e:bb:81:20:5c:6e:ce:0c:8a:2e:23:5b:
c6:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:D9:57:BB:56:85:BE:E6:FF:44:A3:AF:06:07:2D:78:D4:79:49:AB
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:9f:c8:af:58:a2:83:20:ae:4a:49:d2:00:97:2d:ad:3a:16:
b1:00:41:47:cb:0f:61:9f:1c:a8:d9:9d:6b:69:25:0e:f1:7d:
32:e0:7d:ca:b6:0f:67:5b:41:af:58:85:20:9e:d1:9b:cb:05:
bc:87:15:24:c8:fc:cc:69:f5:c0:de:bb:6b:71:33:00:5e:0a:
15:d7:18:7f:61:72:6e:1c:32:91:69:7a:38:e1:20:81:52:86:
3c:09:73:88:46:a5:bf:f6:f5:83:92:ce:dc:db:cf:a2:69:5f:
d8:81:d5:9d:e9:ca:02:e7:37:29:4e:45:9f:05:f9:49:8b:01:
d8:4b:55:12:41:64:03:ce:35:50:8d:2a:c0:19:83:62:98:a2:
17:6e:3a:d6:31:a6:ae:40:0c:f3:d3:0e:ad:b3:b1:d8:d0:bb:
91:46:f4:df:88:34:63:a2:78:69:45:9d:be:5f:92:09:7e:fc:
b3:44:94:fb:93:6f:93:b7:65:67:03:4c:99:0a:14:05:b3:ef:
8b:5f:c5:fb:61:9b:a3:26:0a:23:c9:bc:95:67:55:94:7f:00:
e7:fc:f7:0f:52:9f:6c:ee:ba:d0:56:f4:dc:a4:ca:ac:22:23:
85:f4:1a:fc:11:69:12:e5:4b:42:31:f1:66:98:c6:01:69:bd:
8f:7d:6c:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:29:07 2025 by rpki-client