Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
File: goiQPZDAHi1c4YeIBa1KktKK7ck.mft (raw, json)
Hash identifier: 6us9E0G32yZ1tGbJwCxBE+ux7qY+gRoECcyYlQbPmlA=
Subject key identifier: ED:EC:9C:99:76:25:0C:9C:F8:71:73:AE:49:6E:EA:49:23:E9:93:56
Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Certificate serial: 0196455690C2108E034E415DF17A9D562DB8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
Manifest number: 0C48
Signing time: Thu 17 Apr 2025 20:00:23 +0000
Manifest this update: Thu 17 Apr 2025 20:00:23 +0000
Manifest next update: Fri 18 Apr 2025 20:00:23 +0000
Files and hashes: 1: goiQPZDAHi1c4YeIBa1KktKK7ck.crl (hash: gMRBSEoEBP8AZfIGlGwYwrOhSQDltHeJ66vHKLMbAH0=)
2: xs7enPVeNIMyt7yLlWdZQsBjc6E.roa (hash: Hl7Zc5f4P4RuVLf0+lM7s4f9NcFGJ5Df6CUhJF0dl6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 18 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:45:56:90:c2:10:8e:03:4e:41:5d:f1:7a:9d:56:2d:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Validity
Not Before: Apr 17 20:00:23 2025 GMT
Not After : Apr 18 20:00:23 2025 GMT
Subject: CN=edec9c9976250c9cf87173ae496eea4923e99356
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:99:84:b6:f8:99:79:eb:e1:6d:14:40:f5:63:
3a:65:1d:82:2e:c0:4e:7b:f9:ec:da:ca:1a:28:f9:
82:c7:71:f1:43:14:2d:74:06:e2:75:d0:cb:d2:c7:
85:9c:ca:4f:3a:9c:1f:9e:2c:c2:d7:b9:ee:5d:60:
99:70:6b:66:35:7d:6b:f4:6e:44:6d:c8:0d:72:bf:
9c:ad:2c:23:7f:39:fd:ac:53:4d:74:8e:f6:89:62:
09:38:86:51:d7:46:85:6b:7c:80:5a:7a:32:a8:77:
76:f7:5d:6e:dc:02:9d:4e:4f:f6:c1:13:b3:a2:4b:
39:c4:51:b1:24:57:c9:16:26:ad:0d:db:36:17:94:
fe:fb:a3:64:ab:7f:c9:a0:d2:e5:d9:00:b9:72:e2:
21:13:3e:76:8d:f2:db:1a:fa:73:70:bd:76:84:09:
be:07:56:5f:f8:b1:53:44:b4:5f:f7:ac:9a:51:8a:
1b:16:6d:30:c4:fb:5c:ff:43:b1:06:58:de:55:cc:
67:4e:52:82:20:04:e4:a0:be:02:99:2f:8c:0f:54:
d2:e7:53:77:6a:dd:6a:f9:73:d0:bd:9c:42:01:49:
88:09:44:c7:5b:ea:a9:e7:d7:f9:fa:38:cd:09:31:
8b:02:4d:b6:2a:7f:7b:20:77:55:29:82:92:f5:fa:
a7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:EC:9C:99:76:25:0C:9C:F8:71:73:AE:49:6E:EA:49:23:E9:93:56
X509v3 Authority Key Identifier:
keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:6b:de:98:fd:04:23:74:db:a0:15:56:8d:25:9c:02:40:03:
3b:6e:bf:e8:9f:65:24:61:2a:0b:53:58:db:d1:84:9b:fe:4a:
f0:b0:e0:e8:ae:63:bf:80:1f:72:aa:c3:7d:ac:2b:0c:f7:60:
fa:e4:92:bb:15:c7:c9:0a:5c:e7:63:60:15:24:e1:64:16:6f:
09:87:92:c8:11:ce:23:8e:80:bb:0b:ef:61:99:c0:85:52:f2:
92:d1:7e:b3:cf:0e:b5:f7:1b:3c:4d:04:0a:49:52:7d:9c:a9:
a4:45:c9:e6:c3:11:56:e3:68:21:09:bd:08:dc:01:3f:d1:ca:
7f:b9:59:db:67:e0:a4:a1:71:02:bf:f9:01:5a:d0:6e:a3:6e:
6d:f3:9d:56:c8:1c:4c:cc:07:36:cc:5f:4f:66:63:2d:25:22:
f1:6f:d3:af:92:81:60:ce:d2:5b:c8:2f:20:f2:11:5b:2b:96:
3c:70:d9:e0:56:c4:f1:72:6c:52:8b:78:f2:b8:11:6b:69:6d:
ff:ca:9d:6e:6a:15:cd:0a:ea:7a:00:85:08:7a:77:fb:3c:f0:
12:e3:01:5b:28:8c:a1:b1:e5:7f:4c:87:0a:77:a0:c1:b5:6b:
b6:11:e6:30:81:f4:95:86:02:48:37:5b:e8:d4:b4:8f:f9:21:
bb:33:fc:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 17 23:28:03 2025 by rpki-client