Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
File: gbv0m8K-YG6m9Ivb-WJX3natfMA.mft (raw, json)
Hash identifier: M4mnSy5RVVkkv3GFPBmujohiTDlAYeOWt8ipLZYGGDw=
Subject key identifier: 4B:A9:96:BE:42:BB:8C:90:66:3B:D0:C1:90:23:9F:2C:E7:35:80:4E
Authority key identifier: 81:BB:F4:9B:C2:BE:60:6E:A6:F4:8B:DB:F9:62:57:DE:76:AD:7C:C0
Certificate issuer: /CN=81bbf49bc2be606ea6f48bdbf96257de76ad7cc0
Certificate serial: 019510C785242F54F977F9A866F610CF43B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
Manifest number: 1453
Signing time: Sun 16 Feb 2025 22:01:05 +0000
Manifest this update: Sun 16 Feb 2025 22:01:05 +0000
Manifest next update: Mon 17 Feb 2025 22:01:05 +0000
Files and hashes: 1: gbv0m8K-YG6m9Ivb-WJX3natfMA.crl (hash: wovZJm/rYPVPfphAX7HLJMSXvM/NwJ+qxpkRmcNiXmo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 17 Feb 2025 22:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:10:c7:85:24:2f:54:f9:77:f9:a8:66:f6:10:cf:43:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81bbf49bc2be606ea6f48bdbf96257de76ad7cc0
Validity
Not Before: Feb 16 22:01:05 2025 GMT
Not After : Feb 17 22:01:05 2025 GMT
Subject: CN=4ba996be42bb8c90663bd0c190239f2ce735804e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:1b:80:fb:0f:12:0e:52:18:07:e7:7c:e4:79:
5d:6e:24:1b:4d:f6:09:0e:b0:d5:75:63:c3:40:83:
84:ad:f7:11:9e:70:08:78:8d:4f:95:c6:64:4a:a8:
f6:cf:07:8a:f4:90:b8:d2:3c:9e:c7:4a:b2:eb:93:
4e:d5:79:45:1d:8a:86:ce:1e:1b:b6:22:d7:ea:52:
5c:f2:c8:94:f6:24:57:91:92:17:bf:f5:51:c1:85:
17:16:85:84:e8:7d:58:b8:f2:5a:13:cf:24:7a:d0:
62:c3:2c:09:93:66:18:9d:28:ee:1f:07:2c:bb:f6:
25:7d:56:15:04:6d:35:eb:79:aa:7a:17:1e:e9:d1:
a0:2b:57:7f:37:37:5c:2a:f3:c6:5a:65:e1:c7:b1:
6b:c4:bf:d4:e3:4c:e8:9e:2a:8a:a1:eb:68:e7:a2:
1d:dd:f9:e0:2b:0f:2a:8b:7b:cc:b2:36:4d:6e:fe:
d3:32:a2:5c:90:1a:27:a3:0b:e7:30:f4:0a:3b:88:
22:7b:62:01:df:ce:f7:b3:32:15:97:ba:ac:8a:19:
82:d0:9d:7f:93:21:9e:48:58:4e:ea:8d:71:6d:f9:
19:20:32:25:6e:51:99:ad:42:2e:39:b0:8c:ac:f8:
80:b2:22:42:12:8b:b5:5f:53:b8:d2:c7:85:8b:c7:
40:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:A9:96:BE:42:BB:8C:90:66:3B:D0:C1:90:23:9F:2C:E7:35:80:4E
X509v3 Authority Key Identifier:
keyid:81:BB:F4:9B:C2:BE:60:6E:A6:F4:8B:DB:F9:62:57:DE:76:AD:7C:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gbv0m8K-YG6m9Ivb-WJX3natfMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/863eee-7714-4bc4-9268-41694202de68/1/gbv0m8K-YG6m9Ivb-WJX3natfMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:82:40:e9:1d:16:2f:96:07:9e:e2:0f:15:e8:48:86:7a:e8:
d6:b1:8f:c8:01:9a:87:69:56:3d:a4:d7:12:29:e3:2f:ca:0a:
29:6a:5e:67:96:53:dd:fe:75:20:91:ef:18:c8:4f:f5:db:3c:
37:32:d6:8d:fb:12:e8:9f:c0:b2:b0:a2:75:fb:49:86:0b:f8:
3a:20:c6:fc:bd:78:62:5b:08:9f:0b:54:17:f2:aa:8e:58:69:
8a:63:ef:18:22:1a:ae:74:44:72:77:f9:7f:0f:55:6a:c7:3b:
56:98:86:01:e1:71:9a:31:55:35:42:59:67:01:ad:91:50:04:
bc:e2:f2:a1:16:81:2d:7e:34:20:37:52:ef:c8:83:32:70:c1:
df:bf:7e:e8:6f:0d:b3:8d:57:6b:a1:3c:49:f5:b5:38:e5:85:
ca:3c:fc:86:57:33:41:6b:b6:ed:26:bc:3a:53:34:fe:38:b5:
c9:e5:73:a7:05:ad:4e:1b:d7:1a:05:62:3d:91:02:a7:dd:d8:
df:60:95:29:b5:17:f0:3a:c4:89:4d:34:43:9a:37:35:67:df:
33:0d:aa:1e:66:ff:c6:9e:f1:24:f5:4e:1b:1b:c6:1d:be:da:
38:45:4b:ab:d7:c2:3e:4b:ae:2e:e2:ab:90:7a:72:8a:48:b5:
76:af:a1:26
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:37:14 2025 by rpki-client