Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
File: GQAdVXoGmNrXfEs-3fKn02tyqwA.mft (raw, json)
Hash identifier: Oo84KQTm4vrTx3mHq3eKcnbzebZ53fp5CuoobwsH5Ow=
Subject key identifier: 33:B1:2B:A4:AF:2A:27:0A:6C:AD:87:10:EA:6E:BF:C2:94:4A:B3:A6
Authority key identifier: 19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
Certificate issuer: /CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Certificate serial: 019651C8BEAB679F6D1B7E8926446A539975
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
Manifest number: 043C
Signing time: Sun 20 Apr 2025 06:00:32 +0000
Manifest this update: Sun 20 Apr 2025 06:00:32 +0000
Manifest next update: Mon 21 Apr 2025 06:00:32 +0000
Files and hashes: 1: GQAdVXoGmNrXfEs-3fKn02tyqwA.crl (hash: fZEMogei3dy3qWfNXKRCN4++5ktrNCic3fx2Igk3ZUU=)
2: _Y3WU0rL_Z5yMospeFK2kheOtgM.roa (hash: qqDo+PPhN0qvkLG+7KSZ3FS8hY7kC2hitlOvSMnc4pQ=)
3: cqleo2TkA-Dax9YzlbPC4oCeXks.roa (hash: WDLbfAf8uLhRV57uZSklRDXJ7tKTUOclgtS0od1R4M4=)
4: spoNsBquI5wjgn7gu8viZ3BO3l4.roa (hash: G+9zvvKyQogrHpfux1dzt3BVRrnfOK8LLcMasK0KKtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 06:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:51:c8:be:ab:67:9f:6d:1b:7e:89:26:44:6a:53:99:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=19001d557a0698dad77c4b3eddf2a7d36b72ab00
Validity
Not Before: Apr 20 06:00:32 2025 GMT
Not After : Apr 21 06:00:32 2025 GMT
Subject: CN=33b12ba4af2a270a6cad8710ea6ebfc2944ab3a6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:a9:4c:ca:f8:43:f6:cd:0c:24:4a:e2:e0:47:
72:d3:27:92:0b:46:b4:0d:12:57:5d:ab:63:a3:d2:
e5:b1:37:0b:0d:8b:94:b7:76:57:23:2b:ec:d5:c4:
4e:0d:87:2e:86:42:20:9e:a3:81:d2:dd:80:a5:24:
58:55:4c:b8:c4:a5:68:ca:89:ff:3d:38:56:cc:42:
62:48:cf:19:6a:5b:31:a4:c2:61:8e:74:86:94:e6:
f5:49:02:47:d6:6d:ec:ec:72:fd:82:b4:4d:6b:b4:
77:93:3c:7a:3b:9c:90:9d:82:e1:d1:ea:a8:27:6a:
3a:6e:6e:70:d2:0f:bb:16:f9:e9:db:42:ac:10:fe:
da:dc:df:e6:1f:03:34:a7:6c:dc:1d:68:21:c8:c8:
37:2f:f9:fd:22:b4:a2:9e:9d:35:58:e1:c7:82:f8:
7b:12:52:32:8a:e1:54:30:d3:1c:f2:a6:40:b1:f9:
bc:22:87:b0:8f:ab:92:01:e0:6e:c6:d0:3d:bf:38:
a6:2e:be:87:a6:bd:3a:92:49:c6:e7:4c:b5:af:42:
84:9c:28:09:08:7c:e8:92:b2:9e:99:43:72:6e:fc:
ac:d8:5d:47:0c:90:a4:a0:8f:de:a4:e6:48:bd:23:
3d:b0:a1:dd:c4:e5:37:4d:cb:e3:8c:32:b5:6c:63:
20:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:B1:2B:A4:AF:2A:27:0A:6C:AD:87:10:EA:6E:BF:C2:94:4A:B3:A6
X509v3 Authority Key Identifier:
keyid:19:00:1D:55:7A:06:98:DA:D7:7C:4B:3E:DD:F2:A7:D3:6B:72:AB:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GQAdVXoGmNrXfEs-3fKn02tyqwA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/bcdecd-6689-4cd8-a109-20de6972609b/1/GQAdVXoGmNrXfEs-3fKn02tyqwA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:3f:b4:ca:00:1f:61:47:6d:79:91:23:b0:69:86:f1:2d:9e:
11:e1:b5:d2:53:64:16:c5:f7:28:0c:49:3b:e1:b1:bb:54:dc:
47:8a:56:97:dc:50:6b:7f:62:c0:fc:6d:d0:c3:50:5b:20:86:
5e:bf:37:86:57:b3:00:92:8f:cb:45:b5:68:29:3f:22:53:dd:
55:ee:39:3d:03:b2:66:31:4c:c5:2f:48:1d:e5:17:67:35:13:
cc:2d:dc:79:27:91:f0:3d:1f:69:79:1d:c4:f8:00:c7:c8:4d:
3d:e9:0d:b6:fb:50:e4:e5:1b:66:d4:94:b5:46:ba:29:13:9e:
38:b1:36:57:ac:b0:6e:42:2c:6f:14:d2:8d:ea:eb:76:bb:be:
ad:0a:f4:6a:aa:0c:b0:4d:aa:37:e2:f6:02:ad:80:9b:e9:3f:
e8:51:02:e3:ea:10:17:51:93:2c:15:09:32:1e:40:5f:ee:b7:
74:8e:38:51:74:1e:e8:f4:af:65:19:e9:ee:9c:a4:fb:1e:6e:
65:2f:ea:c4:48:7f:d7:bc:59:5e:d3:03:cb:cc:32:48:46:fc:
f8:9c:5b:2f:4c:eb:3f:bc:0d:99:63:9f:44:41:f5:75:00:e4:
17:80:5c:40:21:ae:27:53:84:a9:9e:8d:02:c9:34:e4:68:47:
23:6c:81:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 20 15:34:51 2025 by rpki-client