Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
File: g-k154ofll0QiRUhXQ8Et2tzPlg.mft (raw, json)
Hash identifier: e8BpHPAAmQDc+rZSlQVgm1zxoq8MqELGvTfOiUuqASM=
Subject key identifier: 69:EA:6C:2E:15:BD:BA:AB:47:BF:FD:2A:0A:A2:01:57:BB:27:F8:9B
Authority key identifier: 83:E9:35:E7:8A:1F:96:5D:10:89:15:21:5D:0F:04:B7:6B:73:3E:58
Certificate issuer: /CN=83e935e78a1f965d108915215d0f04b76b733e58
Certificate serial: 01965537C48689852E47D51926FE174D1D37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
Manifest number: 14FC
Signing time: Sun 20 Apr 2025 22:00:40 +0000
Manifest this update: Sun 20 Apr 2025 22:00:40 +0000
Manifest next update: Mon 21 Apr 2025 22:00:40 +0000
Files and hashes: 1: g-k154ofll0QiRUhXQ8Et2tzPlg.crl (hash: PCuUXBTzg+ObseDrcFrHidrFlsc+BwqjRs756V7sjmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.crl
rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 22:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:c4:86:89:85:2e:47:d5:19:26:fe:17:4d:1d:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83e935e78a1f965d108915215d0f04b76b733e58
Validity
Not Before: Apr 20 22:00:40 2025 GMT
Not After : Apr 21 22:00:40 2025 GMT
Subject: CN=69ea6c2e15bdbaab47bffd2a0aa20157bb27f89b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:87:c1:eb:62:48:ac:f1:c2:2f:56:23:8e:d6:
a6:84:bb:75:03:91:b8:4f:7a:cb:b1:10:fd:ac:cf:
55:b9:a3:c8:80:3d:e0:2f:f4:03:40:0a:f3:ef:aa:
ad:7d:dd:c8:2e:21:61:c8:d4:23:76:c5:b7:f1:57:
e8:44:45:7a:31:5f:be:0c:14:12:6d:bd:a6:86:4a:
f4:65:61:62:98:16:c2:76:68:50:7a:de:61:a7:6d:
38:a7:5b:e7:3f:98:9e:3c:09:a4:3c:ea:50:78:eb:
26:72:a4:ea:4c:78:5b:a8:7a:80:b6:79:fd:13:89:
c9:ff:78:1e:64:92:21:f5:cb:ee:7b:82:c5:cb:e6:
d8:de:b6:df:08:b5:e0:43:f6:15:2d:a4:51:87:36:
97:2a:94:7e:f5:c0:66:78:48:7c:ef:ec:9a:8c:48:
fb:33:57:68:0e:af:3f:86:ab:76:50:18:27:2f:b4:
e7:f4:56:61:78:bf:37:46:38:e2:e8:85:b5:51:74:
6b:01:9c:fe:90:46:4e:13:00:62:4a:37:7c:26:f4:
ad:62:af:83:ee:68:94:39:f4:1a:8a:0c:47:01:25:
42:81:2a:d1:f5:75:66:92:1f:02:6e:2a:78:19:6d:
a5:cf:81:94:75:1a:26:39:0c:20:b4:6a:74:76:ff:
39:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:EA:6C:2E:15:BD:BA:AB:47:BF:FD:2A:0A:A2:01:57:BB:27:F8:9B
X509v3 Authority Key Identifier:
keyid:83:E9:35:E7:8A:1F:96:5D:10:89:15:21:5D:0F:04:B7:6B:73:3E:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g-k154ofll0QiRUhXQ8Et2tzPlg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/a423c7-fa7d-49f8-a6f3-0a67f00fdede/1/g-k154ofll0QiRUhXQ8Et2tzPlg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:c8:80:1b:10:4e:85:83:dc:40:c8:2e:5e:63:13:c3:ed:35:
92:f2:83:b4:3c:f4:a0:44:35:26:26:83:35:f5:3e:ee:c4:9c:
f0:8e:20:c6:1c:87:da:5c:0f:c6:a3:96:c3:65:2c:49:44:e5:
8c:42:43:82:b0:a4:79:e5:8c:08:9c:fe:46:e0:3d:83:f0:b7:
ac:46:e5:0b:f8:78:42:2b:37:9c:a6:01:e3:94:5e:af:2b:01:
85:bd:7c:88:6f:7d:cb:e2:3c:cd:c7:ff:ef:fd:d5:8c:5e:d2:
8f:79:5a:ce:1e:0a:80:4e:3d:66:df:d3:c8:35:44:da:95:55:
fd:37:1a:6b:c3:63:09:10:ea:11:c5:2c:68:e3:1b:4a:ef:95:
76:b2:0e:f9:e0:2d:fa:c7:4d:e1:5b:c7:ec:50:db:10:ed:16:
ac:1e:b2:cc:1c:ca:76:2d:f6:83:4e:e3:e2:06:38:9e:52:09:
80:6e:85:7d:72:6f:5f:67:cf:79:38:23:42:7c:32:53:65:e3:
cd:b0:a8:37:22:dd:91:03:96:75:ed:49:ff:a2:77:eb:f4:3c:
9c:7a:0b:d8:ef:4e:92:b3:da:22:75:0f:23:76:ad:59:73:cf:
21:50:ef:9e:ac:f1:80:09:ba:e5:2a:b9:7a:a3:a2:32:c1:19:
ae:53:64:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 04:05:47 2025 by rpki-client