Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
File: gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft (raw, json)
Hash identifier: GOxgdwwCm4mNKCnljxFcLnnXRCxzJC17LV8EBCrGGIA=
Subject key identifier: 5B:4B:2D:76:26:C2:FB:85:11:D5:83:CD:0D:93:58:2D:FB:D9:FE:BF
Authority key identifier: 80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
Certificate issuer: /CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Certificate serial: 0194C3BE3D06E5154FB1205D002E9607C8AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
Manifest number: 0B3F
Signing time: Sat 01 Feb 2025 23:00:12 +0000
Manifest this update: Sat 01 Feb 2025 23:00:12 +0000
Manifest next update: Sun 02 Feb 2025 23:00:12 +0000
Files and hashes: 1: gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl (hash: /ydg3b4wRQD/7XLuhExk5PjUyOsJ3MObzEjnAqrRJS0=)
2: kT72_rs6FeeCr3dDSGrEzG7Qc-Y.roa (hash: aU4YilQ/j5WNVY1Q5u9ZzL1FCZbvOH4ANv0D/Jw9+To=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 23:00:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:be:3d:06:e5:15:4f:b1:20:5d:00:2e:96:07:c8:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80c028ad0e60d7ea8914b13c3a53d8f089160315
Validity
Not Before: Feb 1 23:00:12 2025 GMT
Not After : Feb 2 23:00:12 2025 GMT
Subject: CN=5b4b2d7626c2fb8511d583cd0d93582dfbd9febf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:8a:41:ec:84:f0:8c:80:fe:fc:1b:bc:61:1b:
7a:de:7b:68:52:f8:0b:ef:fb:1a:28:b7:2b:00:9e:
7f:fd:df:c7:eb:1c:fb:b7:93:05:40:5c:90:f0:98:
aa:91:27:04:1f:9a:8f:a4:13:7d:59:44:59:79:68:
77:7b:b1:6b:92:6f:13:0a:83:d2:85:12:a7:fd:b5:
d0:b3:a0:a7:ca:66:d6:20:4b:02:c1:56:e1:8e:81:
04:3c:e9:e5:84:42:6b:b7:50:07:78:6a:1c:53:07:
80:ac:47:c6:8f:96:c7:5b:ba:e1:84:0a:a2:0c:91:
3a:c5:54:a2:7b:3d:c3:77:98:7e:60:08:84:fb:71:
37:e1:ec:df:c3:a2:b5:77:75:b3:c5:48:6d:c6:4b:
04:39:cb:09:e5:25:2b:72:93:73:4e:52:53:77:ef:
71:be:36:23:f1:ea:f7:ee:b6:90:41:51:72:6d:7d:
37:ed:53:ee:cb:22:c4:16:03:34:32:e6:a1:8e:d2:
79:a6:f2:1e:43:d5:b1:a2:9c:ff:26:f6:1c:ba:1a:
91:49:3c:6f:b6:f5:b4:da:76:f9:6b:80:82:57:76:
f5:88:86:ae:73:f8:b1:b6:48:7e:f6:a6:14:38:15:
f1:83:27:f0:67:38:8a:de:51:3e:bb:ee:49:cb:d8:
04:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:4B:2D:76:26:C2:FB:85:11:D5:83:CD:0D:93:58:2D:FB:D9:FE:BF
X509v3 Authority Key Identifier:
keyid:80:C0:28:AD:0E:60:D7:EA:89:14:B1:3C:3A:53:D8:F0:89:16:03:15
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMAorQ5g1-qJFLE8OlPY8IkWAxU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/b5ff66-807d-4bf1-abe9-a3b4c900241f/1/gMAorQ5g1-qJFLE8OlPY8IkWAxU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:69:a2:7c:ca:53:a4:8f:4b:ef:aa:fb:c2:39:3e:6b:6c:c2:
a9:63:8a:1b:c0:67:50:96:c5:11:de:a0:2d:1d:e4:c9:4f:5e:
e9:17:07:1b:03:71:e9:b1:1b:3e:b3:71:6d:55:ce:1d:3b:6c:
3f:ba:0e:79:11:79:36:93:07:04:ab:96:7c:cb:a3:96:49:15:
db:dd:3a:15:4d:cf:66:1b:2b:3a:a1:03:61:93:99:e7:cf:47:
80:af:c5:56:62:32:17:6f:f4:31:6c:ca:7b:95:cc:37:3c:bc:
b5:97:68:67:a5:ff:04:fe:fd:08:9a:a4:7b:6e:73:4d:ac:bf:
bf:e2:7a:02:81:be:78:03:79:73:5e:5c:a4:61:1b:b0:32:b6:
f5:71:c5:28:1d:46:88:fa:39:e2:54:e6:84:64:c5:93:a9:31:
e1:ae:91:e3:90:26:0c:cd:91:58:5d:91:78:ff:5e:15:17:8f:
1b:de:dc:3b:f7:9e:bd:fa:5b:0f:20:bf:ea:09:09:c2:6d:1d:
7a:98:44:8e:46:f5:60:89:05:ba:9a:be:f9:47:5b:91:16:12:
b9:60:17:0d:1c:a1:16:96:b7:a6:06:a1:31:d8:08:ca:2d:16:
bf:eb:7c:89:ba:41:b6:61:5d:5d:9f:4a:22:7f:5d:da:24:63:
3c:8a:a5:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:55:29 2025 by rpki-client