Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
File: goiQPZDAHi1c4YeIBa1KktKK7ck.mft (raw, json)
Hash identifier: k8hoBKry25R3nv6bp/loCplY6bQksm8Sf/QWq2nyUZc=
Subject key identifier: 39:B9:A3:C8:9F:A8:AE:FA:90:09:21:55:18:D9:57:A2:79:A4:2C:E2
Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Certificate serial: 01958BF26C3A41116FA583792F6C53623C46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
Manifest number: 0BE8
Signing time: Wed 12 Mar 2025 20:01:15 +0000
Manifest this update: Wed 12 Mar 2025 20:01:15 +0000
Manifest next update: Thu 13 Mar 2025 20:01:15 +0000
Files and hashes: 1: goiQPZDAHi1c4YeIBa1KktKK7ck.crl (hash: KIDevQ93py7Eg9jQMEQBgUqyf99M+0q1X+l9yOujLDM=)
2: xs7enPVeNIMyt7yLlWdZQsBjc6E.roa (hash: Hl7Zc5f4P4RuVLf0+lM7s4f9NcFGJ5Df6CUhJF0dl6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 13 Mar 2025 19:14:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:95:8b:f2:6c:3a:41:11:6f:a5:83:79:2f:6c:53:62:3c:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Validity
Not Before: Mar 12 20:01:15 2025 GMT
Not After : Mar 13 20:01:15 2025 GMT
Subject: CN=39b9a3c89fa8aefa9009215518d957a279a42ce2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:9b:22:b8:7f:ee:18:48:56:68:73:37:f7:dd:
59:e4:67:dd:dd:75:1c:2d:71:74:c7:b6:6d:ba:6d:
39:58:cb:f0:a5:6f:2c:c5:25:8e:f5:f9:19:90:d2:
fb:04:3c:6a:a0:2e:58:3a:b4:2a:14:fa:75:17:4a:
ef:23:8b:62:5b:68:34:29:cc:a8:2f:1f:86:be:28:
03:36:11:b9:4f:19:65:6b:79:69:5c:44:20:41:ca:
bf:1b:f8:0e:9e:59:82:e1:84:77:99:02:38:36:ad:
f7:07:bb:2d:bd:40:95:9a:9a:2b:be:ec:af:00:7b:
59:eb:fd:19:c2:b0:aa:f1:3e:61:41:b5:03:6f:5d:
16:ed:d4:e2:22:28:90:7c:1e:6d:47:cc:7d:13:73:
9f:dd:72:be:18:c9:aa:5c:f9:29:21:7d:f4:b5:f1:
a7:1a:66:50:97:eb:a1:b6:bc:4f:3e:66:36:b7:3a:
f1:e5:b4:38:db:12:a8:22:7a:c2:92:53:d5:5f:69:
ba:80:00:9c:fb:9b:40:ba:25:d9:40:90:b6:88:ca:
13:50:f3:99:ee:34:ef:25:6c:11:08:48:4e:7c:b3:
ad:f1:ce:61:d1:a0:1d:d6:87:36:7b:7c:0a:23:b9:
60:1a:b7:f1:dc:ad:a4:47:ef:ba:5e:f5:6f:7a:16:
99:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B9:A3:C8:9F:A8:AE:FA:90:09:21:55:18:D9:57:A2:79:A4:2C:E2
X509v3 Authority Key Identifier:
keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:5d:0c:f9:bb:6b:4f:aa:01:fb:87:7d:7b:c6:ca:b8:a7:96:
3e:e4:b2:fa:96:61:28:ba:1f:50:33:bd:9e:83:69:19:d8:4b:
91:bd:a9:9f:86:85:15:43:f6:cc:a7:9f:51:bf:7f:d9:7f:7f:
85:14:dc:2c:f6:ad:ac:46:53:e2:83:82:48:08:c8:b5:7d:23:
58:36:b2:13:d9:6e:75:a7:18:04:af:64:b3:05:86:c1:68:ca:
73:ab:68:e4:3a:45:33:00:e4:f5:6f:90:ef:91:c2:fa:f8:8c:
a2:68:9e:84:1c:a1:1b:53:1a:d1:7b:a3:bc:ad:e5:ed:3f:b1:
3a:4d:c4:5b:b7:e0:bc:17:01:8a:51:f0:50:9c:f1:03:dd:59:
1b:d8:c8:3f:23:43:90:70:93:2d:75:9f:fc:35:3a:b4:56:7d:
c2:e6:2e:df:fc:1f:dc:43:32:3c:c5:af:cf:e8:47:a1:54:46:
fe:22:0c:1b:63:3a:9c:6a:c5:1b:cf:f8:46:62:7a:a5:d6:ca:
51:7b:2a:c4:65:4d:69:57:c6:56:27:e4:f9:d1:51:e7:1c:91:
d9:0f:9b:e6:9b:1d:fe:a4:1d:31:8e:2c:81:ca:63:56:d4:26:
44:0e:e2:f2:cf:16:ed:b5:79:cf:03:7e:bf:ce:16:94:61:e1:
19:7c:10:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 13 02:53:14 2025 by rpki-client