Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
File: gaaIASwSJngYX8634QN_Dh7ReGE.mft (raw, json)
Hash identifier: tX6wQGTBa7jENIrRogO35OT4n3rbWXCwX1S5U9/kXc4=
Subject key identifier: 9C:98:9A:60:78:52:1F:BE:24:EB:87:5B:C3:E5:F2:96:B2:29:DD:28
Authority key identifier: 81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
Certificate issuer: /CN=81a688012c122678185fceb7e1037f0e1ed17861
Certificate serial: 0195127E60B964FE05167FAFFCD1F31D8091
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
Manifest number: 0B3D
Signing time: Mon 17 Feb 2025 06:00:26 +0000
Manifest this update: Mon 17 Feb 2025 06:00:26 +0000
Manifest next update: Tue 18 Feb 2025 06:00:26 +0000
Files and hashes: 1: S3eWbiRfXZtQFoOUJF8EdYDX9Yc.roa (hash: JnGWj1XmSn65dRfGoU3j1BYgj3cm1658PcWeEjvrK4Q=)
2: gaaIASwSJngYX8634QN_Dh7ReGE.crl (hash: zHa6FgXzNUGXun6q8/iDmlL2PKn2XX751FkDr9srlJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 23:00:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:12:7e:60:b9:64:fe:05:16:7f:af:fc:d1:f3:1d:80:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a688012c122678185fceb7e1037f0e1ed17861
Validity
Not Before: Feb 17 06:00:26 2025 GMT
Not After : Feb 18 06:00:26 2025 GMT
Subject: CN=9c989a6078521fbe24eb875bc3e5f296b229dd28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:eb:58:03:52:e7:23:49:54:86:68:01:6b:d4:
33:6b:0e:11:a2:fc:16:31:a4:25:e8:7c:5b:7e:a8:
d5:96:bb:2c:22:05:f0:1e:df:06:f8:7c:76:8c:9b:
14:f0:ac:60:ae:bb:4a:41:74:52:54:af:ca:6b:2d:
34:69:bb:d8:0a:9a:f1:58:f0:ba:55:40:5d:a4:ce:
d3:13:6e:69:08:46:79:7d:c7:d3:d9:b0:5b:32:eb:
34:f2:a1:fb:11:ad:1a:a1:da:5e:40:12:eb:93:87:
c9:9d:9b:91:4b:9a:15:3c:cf:4a:77:ca:6e:1d:bd:
c9:8c:13:f5:39:f0:70:2e:63:e6:4e:ac:ed:67:d0:
de:13:24:87:71:9f:41:12:1f:b3:36:e3:84:29:62:
f4:6a:a9:c9:25:3f:35:12:b6:57:9a:3b:17:9b:d7:
d0:81:01:2a:f4:d2:41:8c:b6:68:65:73:a0:43:29:
c9:96:b9:82:ff:10:54:df:62:82:c8:53:3f:a2:1e:
11:82:2a:db:7f:2e:51:7e:38:a2:46:0f:64:29:87:
76:84:d2:31:38:0f:56:a2:08:e7:88:b3:07:2b:65:
bb:b5:0a:4c:41:0f:a0:48:b2:6c:94:38:72:21:95:
38:ed:ac:a3:e7:97:20:cc:e0:e7:04:92:f3:1f:9d:
f8:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:98:9A:60:78:52:1F:BE:24:EB:87:5B:C3:E5:F2:96:B2:29:DD:28
X509v3 Authority Key Identifier:
keyid:81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d1:14:16:eb:67:fb:84:6d:3f:5a:ee:bf:95:75:ba:df:80:fa:
9e:61:02:d9:e6:e3:31:50:69:7e:53:24:ba:e6:8d:6c:72:4d:
72:98:5b:6f:c2:48:63:1e:7c:7b:87:ab:39:61:47:04:ea:05:
df:f0:ca:71:f8:18:d9:1d:c3:e3:f6:f7:d0:4f:63:b8:2c:4e:
9d:d2:6b:73:c0:30:f2:a5:87:7b:87:b4:62:81:ae:0d:26:02:
08:5c:80:ef:23:91:cf:ab:e9:e0:f3:f6:3b:52:0a:7c:64:59:
a2:76:1d:8b:03:d9:b3:4d:25:ad:80:5e:80:a8:81:34:4a:fd:
fb:9b:f4:3c:1c:41:cf:43:74:70:17:ae:ae:3c:d1:bd:fb:e4:
68:49:6c:89:cf:03:2b:46:e8:d9:75:62:ae:a9:21:b4:f6:c9:
97:62:4d:f3:d2:94:20:0c:f4:80:98:bd:77:81:3d:5f:2d:13:
e6:0d:0d:13:ab:1c:1c:74:d3:ff:19:9a:e6:95:90:8f:a4:01:
31:f9:08:8f:6b:ae:ef:bc:a7:e3:65:5f:85:87:df:8f:b9:14:
03:7b:64:1e:e5:0b:d6:f4:64:88:af:7e:7f:ff:0d:2f:fa:b7:
03:52:7d:63:cd:cc:e1:d2:ad:ba:92:27:2f:db:11:30:6d:be:
ac:5f:49:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:55:35 2025 by rpki-client