Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
File: gMez3pa5HtxunIXZ1aZoQZIDtfU.mft (raw, json)
Hash identifier: 6vUJHFU1OF9F+Tb6DrVyiKL6K1cYVi+me2HAjclcRzw=
Subject key identifier: 86:65:18:0A:48:B4:32:83:2F:B0:E5:37:34:FF:6E:EF:26:24:40:81
Authority key identifier: 80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5
Certificate issuer: /CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5
Certificate serial: 019641E8C8F30BB286DA8B55E78E69E67647
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
Manifest number: 02CF
Signing time: Thu 17 Apr 2025 04:01:36 +0000
Manifest this update: Thu 17 Apr 2025 04:01:36 +0000
Manifest next update: Fri 18 Apr 2025 04:01:36 +0000
Files and hashes: 1: gMez3pa5HtxunIXZ1aZoQZIDtfU.crl (hash: FK7h542y2qSiv5FRFQLa0Jgf2e3iSXSJCqaqjTSQY5c=)
2: xVzCoBRTedY1vT9C7xN3NLO-WeY.roa (hash: ystLlP8JPbF13VOw8QCBVAQ5cldgA4v4fXVvBu8BWIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:41:e8:c8:f3:0b:b2:86:da:8b:55:e7:8e:69:e6:76:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80c7b3de96b91edc6e9c85d9d5a668419203b5f5
Validity
Not Before: Apr 17 04:01:36 2025 GMT
Not After : Apr 18 04:01:36 2025 GMT
Subject: CN=8665180a48b432832fb0e53734ff6eef26244081
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:5a:0f:c2:c5:88:7c:f1:ef:6b:1f:b1:9d:45:
68:36:4f:3a:88:c6:e8:7c:5a:66:6e:af:2b:a2:ad:
82:ba:14:19:da:ae:90:2c:99:f2:75:a6:ef:71:6d:
a2:25:4e:07:9b:ef:ea:9c:ef:a5:87:1b:ca:14:06:
13:ea:98:4e:71:ba:96:62:37:ad:31:57:4d:87:d3:
91:bb:e8:c3:0e:25:86:e1:3d:e5:d6:bf:a0:90:e2:
20:cd:31:b3:59:35:bc:5d:f6:23:5a:c8:17:c4:34:
37:41:c1:4f:6b:01:8b:bf:e5:e9:82:23:2a:37:a0:
1b:7d:06:15:77:8d:9c:01:65:13:72:9d:59:b0:f0:
e2:7e:98:d6:0f:34:56:2d:99:04:9e:a3:63:79:d7:
a6:8e:0b:5e:7e:0d:1e:93:a1:04:b9:4e:e9:55:7a:
a7:20:ed:ed:10:68:e2:4d:fc:f5:db:d0:b7:e3:a5:
54:5b:81:10:51:78:7e:35:66:82:ba:00:03:a3:0c:
34:2c:99:9d:84:6b:d4:c7:bd:7f:5d:35:4a:8d:d8:
44:8f:74:66:29:86:9a:0f:47:44:de:6f:b7:f9:3c:
e4:0a:1e:da:8c:d4:22:17:b8:12:de:4c:da:a9:cb:
d7:d7:c9:9e:1a:24:6e:f0:69:78:20:df:a7:4e:7b:
6a:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:65:18:0A:48:B4:32:83:2F:B0:E5:37:34:FF:6E:EF:26:24:40:81
X509v3 Authority Key Identifier:
keyid:80:C7:B3:DE:96:B9:1E:DC:6E:9C:85:D9:D5:A6:68:41:92:03:B5:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gMez3pa5HtxunIXZ1aZoQZIDtfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/c301fb-3174-45c3-a447-a7fcfb529dc7/1/gMez3pa5HtxunIXZ1aZoQZIDtfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:c0:12:66:e3:f4:06:bf:bf:e0:11:7f:04:71:1b:94:79:86:
6c:db:94:b6:81:78:92:4b:70:42:ab:1c:ae:06:28:40:f4:16:
2b:63:d3:58:34:63:69:e3:5c:78:d6:14:0e:af:7e:0b:4f:b8:
4e:93:3b:d3:f7:dd:e8:fd:86:bf:da:5b:cd:e9:b0:39:b5:65:
95:37:88:b0:d5:09:cd:3e:c8:03:d8:0e:63:2a:f4:64:f6:de:
64:ca:d9:a9:d1:10:20:b2:6c:88:c2:56:2a:8c:bf:42:6f:08:
e6:e8:13:9e:f8:5c:de:57:b4:b2:58:85:72:df:80:0d:24:51:
a9:0b:d2:1c:27:db:22:86:72:f4:3c:a1:ab:d5:b0:6d:dd:9e:
50:16:00:2d:47:a9:30:33:b0:92:ab:64:1f:91:7e:6b:49:e6:
60:6d:99:9e:1f:6b:69:73:a1:e0:d5:7e:19:11:84:fa:68:aa:
60:e4:b0:42:77:20:c3:b7:3b:ef:a9:f3:19:b1:f2:2b:a1:42:
6e:ae:81:4b:8f:59:40:1f:4e:17:e6:8d:3f:48:25:41:76:27:
6d:d0:68:7e:e2:eb:ff:01:3c:78:aa:44:0c:a8:98:b4:45:38:
93:35:a3:c3:f9:f0:4e:8a:34:b1:2b:9d:27:36:88:79:b7:a2:
92:18:7f:ad
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZZB6MjzC7KG2otV545p5nZHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwYzdiM2RlOTZiOTFlZGM2ZTljODVkOWQ1YTY2ODQxOTIw
M2I1ZjUwHhcNMjUwNDE3MDQwMTM2WhcNMjUwNDE4MDQwMTM2WjAzMTEwLwYDVQQD
Eyg4NjY1MTgwYTQ4YjQzMjgzMmZiMGU1MzczNGZmNmVlZjI2MjQ0MDgxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqFoPwsWIfPHvax+xnUVoNk86iMbo
fFpmbq8roq2CuhQZ2q6QLJnydabvcW2iJU4Hm+/qnO+lhxvKFAYT6phOcbqWYjet
MVdNh9ORu+jDDiWG4T3l1r+gkOIgzTGzWTW8XfYjWsgXxDQ3QcFPawGLv+XpgiMq
N6AbfQYVd42cAWUTcp1ZsPDifpjWDzRWLZkEnqNjedemjgtefg0ek6EEuU7pVXqn
IO3tEGjiTfz129C346VUW4EQUXh+NWaCugADoww0LJmdhGvUx71/XTVKjdhEj3Rm
KYaaD0dE3m+3+TzkCh7ajNQiF7gS3kzaqcvX18meGiRu8Gl4IN+nTntqCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIZlGApItDKDL7DlNzT/bu8mJECBMB8GA1UdIwQY
MBaAFIDHs96WuR7cbpyF2dWmaEGSA7X1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC9jMzAxZmItMzE3NC00NWMzLWE0NDct
YTdmY2ZiNTI5ZGM3LzEvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kOC9jMzAxZmItMzE3NC00NWMzLWE0NDctYTdmY2ZiNTI5ZGM3
LzEvZ01lejNwYTVIdHh1bklYWjFhWm9RWklEdGZVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAocASZuP0
Br+/4BF/BHEblHmGbNuUtoF4kktwQqscrgYoQPQWK2PTWDRjaeNceNYUDq9+C0+4
TpM70/fd6P2Gv9pbzemwObVllTeIsNUJzT7IA9gOYyr0ZPbeZMrZqdEQILJsiMJW
Koy/Qm8I5ugTnvhc3le0sliFct+ADSRRqQvSHCfbIoZy9Dyhq9Wwbd2eUBYALUep
MDOwkqtkH5F+a0nmYG2Znh9raXOh4NV+GRGE+miqYOSwQncgw7c776nzGbHyK6FC
bq6BS49ZQB9OF+aNP0glQXYnbdBofuLr/wE8eKpEDKiYtEU4kzWjw/nwToo0sSud
JzaIebeikhh/rQ==
-----END CERTIFICATE-----
Generated at Thu Apr 17 09:03:21 2025 by rpki-client