Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json)
Hash identifier: sdvdDMxbv2YveoE5BuUATU0k0mhvT4+r+r8Bq92Wxsk=
Subject key identifier: 30:5D:58:6B:4D:C8:98:6B:70:47:0E:D9:D6:99:5F:DF:7E:55:77:6B
Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840
Certificate serial: 019612EA68301529685E905884FACF5C39CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
Manifest number: 14D8
Signing time: Tue 08 Apr 2025 01:01:14 +0000
Manifest this update: Tue 08 Apr 2025 01:01:14 +0000
Manifest next update: Wed 09 Apr 2025 01:01:14 +0000
Files and hashes: 1: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: p51ZQinrHELSDKB6r54LKP7yN+tr1Y6IeYYdHFuMD2E=)
2: v5RCvCqHry4pLvPzMJDwat4R8VA.roa (hash: Nc/262spRPspG2StfvRWMrFBeCURy94KpD9ocUGZ6Ic=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 08 Apr 2025 23:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:12:ea:68:30:15:29:68:5e:90:58:84:fa:cf:5c:39:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827313247c486fe434833c09087a00a900301840
Validity
Not Before: Apr 8 01:01:14 2025 GMT
Not After : Apr 9 01:01:14 2025 GMT
Subject: CN=305d586b4dc8986b70470ed9d6995fdf7e55776b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:e4:da:a0:2a:dd:89:91:1c:d2:ec:62:a3:d8:
df:c6:86:7b:50:bf:1a:5c:95:69:44:d4:a2:44:ff:
1c:48:1b:23:34:c4:62:f1:d7:3c:53:b0:8f:7d:cd:
1b:4e:1c:c9:ed:65:f3:0b:45:92:ef:da:94:cc:86:
58:05:54:09:5b:2c:58:75:df:b0:68:f6:f2:72:8d:
4c:81:0f:ea:0d:d1:47:51:af:36:4a:2d:33:12:de:
43:fb:48:9b:27:f8:a0:0d:7f:ea:08:87:48:59:26:
0c:5a:26:09:ed:8b:8c:71:23:33:b8:3d:30:7e:f4:
8b:ef:ee:5d:f3:55:c4:28:4b:5f:bc:42:cf:7c:7c:
9e:c4:93:86:70:24:e0:06:d0:11:22:0f:4f:c0:95:
39:6a:1b:07:a8:83:94:f0:11:1a:84:a3:04:a5:0f:
a2:b3:54:5a:dc:82:bc:98:1c:a1:76:b2:6d:bc:0d:
05:da:b3:1b:06:e0:41:86:c5:65:c6:d5:f2:6c:b7:
09:05:a7:ee:9f:12:11:9d:2a:99:fc:b7:3e:9a:67:
7d:c8:38:a0:ca:a3:25:99:92:b6:ae:31:cb:0a:0d:
66:85:43:0b:e9:82:eb:2d:29:d5:5e:68:62:d4:db:
a0:6c:86:e4:0f:19:a3:a5:48:38:73:81:07:d9:d6:
2e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:5D:58:6B:4D:C8:98:6B:70:47:0E:D9:D6:99:5F:DF:7E:55:77:6B
X509v3 Authority Key Identifier:
keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:56:69:57:de:08:b9:16:a9:73:ef:9f:6b:7a:5e:05:6d:47:
27:29:8e:19:e1:dd:b4:25:35:55:3f:5f:5c:8f:9d:d6:e1:37:
77:13:40:7c:ed:b5:d1:54:95:05:51:b0:f2:ae:08:56:39:0e:
c1:8b:04:19:10:30:cc:94:db:da:21:f9:c2:f9:c6:2c:fe:7b:
2e:3e:51:28:90:d7:4a:7e:b9:b1:36:32:60:f0:6d:2d:8b:40:
e2:9b:17:7b:8c:43:24:07:24:1b:08:f5:1f:05:a9:f2:fe:ca:
f0:51:18:2f:61:56:40:7f:5d:55:27:e6:47:50:d6:d6:05:84:
12:df:a7:57:c9:cc:15:49:f6:cd:e3:1b:7e:15:cd:4b:17:b8:
8f:22:1a:94:26:3d:9b:19:27:ff:6c:11:61:89:eb:66:ab:31:
4b:8c:1e:48:d1:92:13:e6:c5:01:d1:88:58:45:4b:e9:3e:c6:
bb:7d:fa:a4:b3:e8:84:5d:b0:38:53:bc:d7:47:36:e4:17:03:
be:bd:15:5c:f6:c0:da:37:29:a7:32:28:e2:92:4c:bd:ef:0f:
06:58:17:df:aa:b3:ff:f4:d8:a0:b6:2a:c1:c2:2f:7a:54:be:
76:86:d2:fe:61:8d:5f:6c:e9:a9:ee:27:28:a7:68:22:3f:42:
47:c8:7b:02
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZYS6mgwFSloXpBYhPrPXDnKMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyNzMxMzI0N2M0ODZmZTQzNDgzM2MwOTA4N2EwMGE5MDAz
MDE4NDAwHhcNMjUwNDA4MDEwMTE0WhcNMjUwNDA5MDEwMTE0WjAzMTEwLwYDVQQD
EygzMDVkNTg2YjRkYzg5ODZiNzA0NzBlZDlkNjk5NWZkZjdlNTU3NzZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAieTaoCrdiZEc0uxio9jfxoZ7UL8a
XJVpRNSiRP8cSBsjNMRi8dc8U7CPfc0bThzJ7WXzC0WS79qUzIZYBVQJWyxYdd+w
aPbyco1MgQ/qDdFHUa82Si0zEt5D+0ibJ/igDX/qCIdIWSYMWiYJ7YuMcSMzuD0w
fvSL7+5d81XEKEtfvELPfHyexJOGcCTgBtARIg9PwJU5ahsHqIOU8BEahKMEpQ+i
s1Ra3IK8mByhdrJtvA0F2rMbBuBBhsVlxtXybLcJBafunxIRnSqZ/Lc+mmd9yDig
yqMlmZK2rjHLCg1mhUML6YLrLSnVXmhi1NugbIbkDxmjpUg4c4EH2dYu2wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDBdWGtNyJhrcEcO2daZX99+VXdrMB8GA1UdIwQY
MBaAFIJzEyR8SG/kNIM8CQh6AKkAMBhAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC84NWIwNDMtMzZkOC00MTM2LTk4MzUt
OGQ0NzcyNTk4MzliLzEvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC84NWIwNDMtMzZkOC00MTM2LTk4MzUtOGQ0NzcyNTk4Mzli
LzEvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT1ZpV94I
uRapc++fa3peBW1HJymOGeHdtCU1VT9fXI+d1uE3dxNAfO210VSVBVGw8q4IVjkO
wYsEGRAwzJTb2iH5wvnGLP57Lj5RKJDXSn65sTYyYPBtLYtA4psXe4xDJAckGwj1
HwWp8v7K8FEYL2FWQH9dVSfmR1DW1gWEEt+nV8nMFUn2zeMbfhXNSxe4jyIalCY9
mxkn/2wRYYnrZqsxS4weSNGSE+bFAdGIWEVL6T7Gu336pLPohF2wOFO810c25BcD
vr0VXPbA2jcppzIo4pJMve8PBlgX36qz//TYoLYqwcIvelS+dobS/mGNX2zpqe4n
KKdoIj9CR8h7Ag==
-----END CERTIFICATE-----
Generated at Tue Apr 8 04:09:26 2025 by rpki-client