Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: Ft9wmzdgJVIQ354YztXb1dVC/POQJpVJG1IQC4Zs2gc=
Subject key identifier: FB:BF:32:99:A4:0D:29:4E:E2:8C:55:20:C4:49:7F:18:2F:6C:13:CA
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 019651C8BA50AD17A96BF639C8E3397A347D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 0354
Signing time: Sun 20 Apr 2025 06:00:31 +0000
Manifest this update: Sun 20 Apr 2025 06:00:31 +0000
Manifest next update: Mon 21 Apr 2025 06:00:31 +0000
Files and hashes: 1: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: I9Xw/Sbv6IuFOC/j7dbschzseBQFEjuDKKaev4zSx0Q=)
2: knOts_9A8gA0IVqYk7a99kaTuRI.roa (hash: kCE50cAQS4imaI4wXAlSfVZnkYJchZQUkd+tGc4tAWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:ba:50:ad:17:a9:6b:f6:39:c8:e3:39:7a:34:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Apr 20 06:00:31 2025 GMT
Not After : Apr 21 06:00:31 2025 GMT
Subject: CN=fbbf3299a40d294ee28c5520c4497f182f6c13ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:64:dd:3f:58:6b:e4:20:39:da:fc:b5:36:e4:
c5:60:73:0e:6c:f4:0f:ec:5d:ae:19:e1:47:aa:1b:
39:66:4b:12:6b:d0:9b:a7:4d:f3:4a:af:44:4c:5d:
e9:a0:92:28:9b:b1:0e:8c:66:91:8a:0e:60:65:bd:
cf:21:df:54:6a:d3:a7:5a:3a:53:c5:a3:39:77:48:
2f:c2:e2:c1:12:48:3a:5c:cf:db:a9:08:e4:3b:a8:
81:e5:fc:6d:4a:f4:ff:23:aa:72:2a:1e:82:8f:ec:
2b:8f:e3:4b:d3:68:e3:2f:b9:83:18:e3:08:df:ce:
56:f2:d4:a9:e3:16:8a:ba:d3:65:41:68:f4:e8:12:
89:fe:5e:c9:d4:a2:09:f2:ff:cc:87:84:fa:62:ca:
5a:89:b7:bb:a9:08:79:3e:55:5a:0c:fe:e9:c4:77:
e6:39:df:25:73:d0:89:1a:15:62:3f:b9:dc:de:2e:
6f:93:fc:1a:4c:ae:b9:21:dc:c8:e8:c6:47:b9:1b:
dd:42:3a:3d:aa:be:ec:f3:2c:1b:ec:e7:d1:ec:a4:
ba:7e:2b:85:dd:f8:8b:42:1d:70:18:7f:1e:36:d5:
b4:3f:21:29:34:59:89:a9:48:21:28:60:db:f5:e6:
4f:75:28:b1:80:22:e1:a8:4d:cc:23:55:93:13:5f:
a2:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:BF:32:99:A4:0D:29:4E:E2:8C:55:20:C4:49:7F:18:2F:6C:13:CA
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:0e:6f:26:03:8d:23:56:96:38:0a:7d:a7:e8:99:c2:ea:25:
80:53:12:af:af:c4:35:0d:92:24:12:06:49:a9:ea:ac:69:b1:
2a:d2:dc:e8:f0:a0:76:1b:31:e4:44:c8:7e:d1:bf:99:4a:a9:
df:3d:03:b0:cd:ff:c1:59:71:3e:9e:57:8f:c3:91:50:7a:fb:
a5:15:c5:bf:25:0c:a8:3d:39:96:6b:de:8d:fb:2f:ef:b2:8f:
29:84:e9:8e:c5:b5:c8:00:08:5e:65:79:e3:55:d9:13:8d:cf:
e2:a3:d2:1a:2d:73:7c:8c:fd:a1:dd:ad:81:8a:1e:d1:49:63:
48:78:7a:d8:02:44:24:4e:44:d7:38:01:19:d2:99:bb:85:60:
ef:76:33:a5:20:c8:35:2c:76:f8:bc:c4:d4:eb:29:f0:f9:ac:
bd:b4:20:38:16:eb:9f:3b:fd:c7:09:0f:63:09:07:6b:c4:13:
33:c9:3d:42:14:4a:03:26:ac:a0:42:ec:91:0c:8f:84:c7:a7:
67:f8:7a:93:83:3d:52:a8:cb:ec:bc:4e:0f:65:fd:de:06:e2:
37:c5:2d:6c:1c:4c:79:3d:ba:af:df:9d:0d:d4:b1:a3:ea:6b:
b8:63:87:7b:3e:74:a7:28:8a:25:62:42:de:cd:20:bc:9c:37:
14:36:c7:6e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 13:03:30 2025 by rpki-client