Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
File: gaaIASwSJngYX8634QN_Dh7ReGE.mft (raw, json)
Hash identifier: eOM2YFoO91lkLwiCh+5cysvYXkx+hylIrIqqs+5FwG8=
Subject key identifier: 85:AC:07:68:D1:CC:C6:EF:2B:A1:6A:0E:3A:22:F7:EC:B5:69:EB:35
Authority key identifier: 81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
Certificate issuer: /CN=81a688012c122678185fceb7e1037f0e1ed17861
Certificate serial: 01958C2956FAB5EE42543CA6460BD035FC0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
Manifest number: 0B7C
Signing time: Wed 12 Mar 2025 21:01:14 +0000
Manifest this update: Wed 12 Mar 2025 21:01:14 +0000
Manifest next update: Thu 13 Mar 2025 21:01:14 +0000
Files and hashes: 1: S3eWbiRfXZtQFoOUJF8EdYDX9Yc.roa (hash: JnGWj1XmSn65dRfGoU3j1BYgj3cm1658PcWeEjvrK4Q=)
2: gaaIASwSJngYX8634QN_Dh7ReGE.crl (hash: Og4CG72RRcw9UtR/ATpI+aHNP3Wy11cEaumQ7wTAgos=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8c:29:56:fa:b5:ee:42:54:3c:a6:46:0b:d0:35:fc:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a688012c122678185fceb7e1037f0e1ed17861
Validity
Not Before: Mar 12 21:01:14 2025 GMT
Not After : Mar 13 21:01:14 2025 GMT
Subject: CN=85ac0768d1ccc6ef2ba16a0e3a22f7ecb569eb35
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:5a:cf:63:3c:b7:16:57:b4:20:d8:cf:36:d6:
9a:5e:d2:f8:a0:ab:f9:1b:de:61:72:a5:fc:29:93:
86:d9:88:28:55:6e:51:92:2c:ae:7d:78:66:01:46:
33:69:ce:4a:ba:c2:7a:98:e7:cc:f3:c4:f4:1d:b3:
c0:2f:15:ac:62:c0:fd:4f:e1:30:14:fa:46:da:93:
91:3d:d7:77:bd:5d:bf:d0:d7:b8:66:a5:ba:73:95:
af:b8:6e:cb:f5:99:62:a5:70:d0:ce:06:ac:9e:81:
b1:d8:5b:9a:62:0b:1b:26:93:0d:d4:b8:7e:5f:20:
fa:3e:65:5a:40:0f:96:e4:20:4f:5b:19:ce:a5:75:
ac:10:9c:a1:78:7b:94:5c:8e:89:6a:bc:e0:8e:eb:
0b:df:05:ce:16:f0:ea:51:e5:f7:77:65:8a:8b:89:
a2:21:e2:ad:cb:0e:e0:e2:81:2b:29:1f:5b:7e:90:
16:4d:84:25:b8:25:ab:56:f6:bc:53:7d:66:20:9e:
eb:4c:81:54:f9:c7:3f:d5:74:9d:88:a4:01:3d:e1:
cb:f4:dd:12:e4:f0:e4:dc:71:44:8f:a2:cf:ae:5e:
06:d3:58:9c:f3:70:e3:4d:13:58:32:c3:a5:9e:8e:
6a:19:aa:5e:83:c6:db:f4:4a:2f:63:35:b9:1d:63:
21:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:AC:07:68:D1:CC:C6:EF:2B:A1:6A:0E:3A:22:F7:EC:B5:69:EB:35
X509v3 Authority Key Identifier:
keyid:81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ca:c5:0c:8d:04:9f:50:72:8e:7f:4e:4a:b3:e4:aa:6d:93:b6:
68:c3:59:13:99:a8:5e:72:79:b6:3d:2f:9d:87:e4:a8:cc:ea:
22:16:86:d4:31:22:a5:e7:99:ed:c3:03:fe:62:4a:ae:81:b9:
44:fb:9c:0c:7d:96:fe:fa:0a:d4:4c:3f:97:ba:ec:68:28:c6:
e3:55:57:54:7d:5a:40:72:8b:98:82:cb:43:b3:89:9a:0b:74:
28:6a:af:e5:97:48:1e:26:17:89:2f:38:74:51:74:f8:b9:e0:
df:61:c7:c7:a9:4d:59:dc:13:1d:d7:da:6b:29:b0:f0:66:a4:
ed:90:b8:6b:2a:ab:eb:38:df:ae:4f:1e:4b:88:4c:dc:a3:c6:
55:45:50:76:fa:44:94:a4:03:06:a5:37:57:0f:29:38:cf:9c:
12:95:58:a3:cc:12:92:5f:4b:f0:91:d8:0c:11:43:a5:aa:ed:
2b:43:e8:8a:85:ff:f5:8f:d5:a2:ee:48:78:77:4c:69:89:69:
09:5f:dd:cf:38:e8:59:23:78:a1:b4:f9:62:23:80:21:72:66:
a2:ec:61:8c:d9:27:48:10:e4:62:20:3a:ca:a9:05:db:4e:61:
06:cb:15:e3:90:65:fe:eb:99:e1:78:9c:fb:cf:0d:1c:19:d0:
e5:16:42:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:16 2025 by rpki-client