Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
File: GtYaUvEILs9Ml7USK0YRIlBzRRs.mft (raw, json)
Hash identifier: 35w7/J9EWBLI1+pClhFatQaaH7YdptYpoKvRoh51lZ4=
Subject key identifier: 33:0F:1C:BF:2F:0C:9C:55:CE:90:B3:64:AB:16:0C:D4:E0:3C:88:63
Authority key identifier: 1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
Certificate issuer: /CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Certificate serial: 01958B4DAA33672061D14C890D8E97E4A23F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
Manifest number: 1495
Signing time: Wed 12 Mar 2025 17:01:17 +0000
Manifest this update: Wed 12 Mar 2025 17:01:17 +0000
Manifest next update: Thu 13 Mar 2025 17:01:17 +0000
Files and hashes: 1: GtYaUvEILs9Ml7USK0YRIlBzRRs.crl (hash: gvNXZcAmcs7qyJBs/Y1zh0d6cBzfarVN1gEMrhuYstU=)
2: rDCQZOSrxJZ5t1EHBcAmewJ2zuE.roa (hash: 5o5LCz2EfBpIGStnQttGujPIzxdxxRQF2IZp5UipRj0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 17:01:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:4d:aa:33:67:20:61:d1:4c:89:0d:8e:97:e4:a2:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1ad61a52f1082ecf4c97b5122b4611225073451b
Validity
Not Before: Mar 12 17:01:17 2025 GMT
Not After : Mar 13 17:01:17 2025 GMT
Subject: CN=330f1cbf2f0c9c55ce90b364ab160cd4e03c8863
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:f2:f7:76:8c:ab:04:e3:0f:6a:3a:9e:f1:c0:
2c:f6:1d:5a:b9:b5:23:c4:2c:7a:58:1d:4f:f2:5e:
3d:6a:fe:ad:20:a8:17:8f:62:8d:00:47:13:1d:f8:
ea:e0:75:d7:5b:45:f8:90:57:32:20:4d:5b:8d:d9:
76:f7:b1:42:73:8c:b5:83:7b:44:08:f2:58:c0:70:
ac:33:b4:5a:17:5b:28:37:b7:06:15:3e:56:26:ef:
6e:20:ff:d4:66:8c:31:ef:8e:59:7f:d8:8b:7e:a2:
bc:e8:f2:ce:40:a1:6a:bf:e8:ff:fc:1b:02:7c:3f:
3f:df:ed:64:92:a7:4f:96:18:fc:8f:a4:73:43:4f:
21:38:c7:69:07:6a:bb:9f:d0:38:1d:49:6c:88:1d:
d8:d8:f5:40:bd:1c:90:cc:39:90:c4:bd:ff:48:28:
13:9f:89:d8:51:cb:ea:51:e2:2f:00:80:67:cb:89:
aa:8b:d5:c5:0f:7c:cc:c0:5d:e6:27:30:98:74:83:
d6:25:84:1c:b5:a4:e4:c3:01:9c:f4:bf:b5:b0:66:
34:e1:7c:df:e4:79:c7:01:e7:de:90:70:17:6b:91:
a4:76:80:06:76:dc:f5:84:b8:d7:e5:4b:1d:ad:2a:
b5:b8:7a:dd:fb:02:25:e6:15:a7:2b:34:6e:9e:b2:
dd:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:0F:1C:BF:2F:0C:9C:55:CE:90:B3:64:AB:16:0C:D4:E0:3C:88:63
X509v3 Authority Key Identifier:
keyid:1A:D6:1A:52:F1:08:2E:CF:4C:97:B5:12:2B:46:11:22:50:73:45:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GtYaUvEILs9Ml7USK0YRIlBzRRs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d555-20bd-4c42-84ba-72ce95ba9afa/1/GtYaUvEILs9Ml7USK0YRIlBzRRs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ef:6a:65:b5:a0:f1:5e:c6:0b:a3:29:0f:6a:d5:bb:85:2b:31:
5d:fd:0b:a0:b0:8a:39:cc:d4:9b:c5:e8:39:fb:b5:f2:00:b6:
76:0c:9d:bf:e3:b3:91:14:73:c9:16:16:a3:17:60:61:07:03:
4d:4e:4c:7c:a1:88:db:00:a9:d9:3b:45:b4:f9:2c:97:70:1c:
62:58:89:e6:0e:88:48:07:51:c8:35:42:fc:89:1c:30:1b:b9:
9f:89:e7:d1:16:7b:64:11:a7:ef:6d:fc:c2:19:36:b9:26:5d:
b6:8e:de:8e:bd:0d:a7:43:f0:7a:df:47:ca:ce:db:ea:01:ea:
a2:15:7e:be:1d:7d:b5:6c:45:1f:2e:5f:08:f4:02:65:cd:1e:
90:ab:c6:af:fe:21:01:60:23:00:33:d0:fa:61:8c:90:df:58:
9b:d8:d5:94:92:9b:cf:f6:04:ca:58:80:83:62:b3:4b:d8:3a:
b1:9d:ad:7a:17:9f:09:f7:5d:18:58:6d:45:a2:72:b9:f3:1d:
bd:02:04:c5:cb:ad:0c:29:cd:b0:21:c2:c2:95:82:75:1f:28:
00:9c:55:b3:49:b1:fd:dc:f6:df:f4:d4:dc:4a:af:db:bf:74:
6d:00:cc:49:32:f7:8e:be:20:9c:56:0d:86:e8:eb:3c:d2:4d:
fa:66:1b:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:34:21 2025 by rpki-client