Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
File: gaaIASwSJngYX8634QN_Dh7ReGE.mft (raw, json)
Hash identifier: qFKqQGdzNtac2MZgnnzSplDXurl6IIgTCjJLgPYrVS4=
Subject key identifier: 97:C4:2E:10:E7:CD:A8:9C:B1:D4:2B:C5:DF:5D:4E:35:BA:91:6B:69
Authority key identifier: 81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
Certificate issuer: /CN=81a688012c122678185fceb7e1037f0e1ed17861
Certificate serial: 01964F35A1D5B94A8F3D506E7BFC2C15E8BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
Manifest number: 0BE1
Signing time: Sat 19 Apr 2025 18:00:36 +0000
Manifest this update: Sat 19 Apr 2025 18:00:36 +0000
Manifest next update: Sun 20 Apr 2025 18:00:36 +0000
Files and hashes: 1: S3eWbiRfXZtQFoOUJF8EdYDX9Yc.roa (hash: JnGWj1XmSn65dRfGoU3j1BYgj3cm1658PcWeEjvrK4Q=)
2: gaaIASwSJngYX8634QN_Dh7ReGE.crl (hash: WGt51vzkXLFgwRddEvZ+4hrWfbxGcSAVpPJilWFxp/I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 20 Apr 2025 18:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:4f:35:a1:d5:b9:4a:8f:3d:50:6e:7b:fc:2c:15:e8:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81a688012c122678185fceb7e1037f0e1ed17861
Validity
Not Before: Apr 19 18:00:36 2025 GMT
Not After : Apr 20 18:00:36 2025 GMT
Subject: CN=97c42e10e7cda89cb1d42bc5df5d4e35ba916b69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:b4:2e:c1:d4:ba:e4:35:fe:e7:ff:94:59:b3:
55:17:5e:7a:79:92:89:e4:31:f6:c9:7f:61:c9:f0:
6d:27:18:32:ba:77:26:1a:5d:73:40:f1:e7:8c:68:
2a:f8:71:97:b7:e7:2f:5c:2e:46:7b:59:8c:ff:59:
88:7f:f1:a1:ec:c1:7b:db:0a:14:0d:1a:bb:86:3e:
fc:e4:e7:1b:25:90:8b:36:f1:9a:51:c1:91:fc:67:
f8:a5:1c:9e:8a:3f:61:57:f7:b2:65:ac:dd:3e:12:
08:71:24:00:d6:ac:4e:e0:d4:54:a3:a9:7f:55:98:
ac:2a:89:61:9a:3e:eb:1e:31:d2:be:08:14:29:c2:
e2:09:51:cf:78:74:82:7a:e3:c0:a7:a5:44:d8:72:
00:ea:82:df:1e:e5:33:de:36:78:d9:47:9e:10:7c:
71:ff:b0:20:74:7c:c7:99:8c:f6:b1:81:4e:d8:59:
6e:cf:5b:b2:6f:8e:24:fd:9a:d7:54:29:5e:a4:d5:
df:62:38:f0:8c:75:4e:4b:b6:5e:d8:5a:21:22:2b:
33:c2:91:f7:30:9f:61:59:d6:f3:14:10:44:c0:f1:
12:8d:95:73:6e:d1:01:8e:d0:45:32:4c:cf:b7:0e:
e2:0c:51:d2:f8:e9:0e:c8:8a:14:02:8f:79:17:4a:
e5:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:C4:2E:10:E7:CD:A8:9C:B1:D4:2B:C5:DF:5D:4E:35:BA:91:6B:69
X509v3 Authority Key Identifier:
keyid:81:A6:88:01:2C:12:26:78:18:5F:CE:B7:E1:03:7F:0E:1E:D1:78:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gaaIASwSJngYX8634QN_Dh7ReGE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/c7c207-a3ba-49c8-a894-084d4748c385/1/gaaIASwSJngYX8634QN_Dh7ReGE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:7e:80:80:79:75:99:49:f5:a4:76:80:43:34:3e:01:2c:07:
19:61:40:65:c2:5a:a6:8b:7b:22:e3:a3:79:3a:d8:f4:52:20:
23:1c:74:34:14:93:e7:7b:1c:00:ec:06:f9:e3:94:cc:5d:21:
39:b4:7b:93:df:27:b5:42:b0:51:05:22:14:3e:f5:4c:32:2c:
14:d6:09:9f:0b:e5:f8:5b:0f:42:4c:ee:9e:b0:1e:4e:e5:e2:
17:2f:0b:43:41:95:e3:ce:7b:9d:05:25:bc:46:35:68:4d:f6:
66:62:eb:16:76:38:0d:06:be:75:80:68:4f:57:73:a0:86:93:
f0:28:2b:71:52:35:3c:ea:10:6b:e8:b5:49:3f:d6:17:f1:9f:
e1:33:22:c2:1b:b6:60:d9:0d:73:cb:40:46:52:06:26:58:74:
47:ea:11:29:98:51:22:d3:e0:45:b6:1b:62:08:98:cf:c1:6d:
19:1a:eb:7f:65:dd:de:bf:57:d9:e8:d8:77:95:36:f3:5e:c7:
ea:5a:15:d4:cf:24:8e:82:a8:d4:74:72:4f:72:99:ed:8c:b9:
a3:a5:27:9b:c7:a2:45:d5:45:ac:a6:93:aa:21:19:d5:76:15:
06:0d:09:15:e0:20:0c:9b:e4:5c:ed:71:0a:7b:2e:39:5b:09:
f0:5d:49:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 04:26:35 2025 by rpki-client