Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
File: goiQPZDAHi1c4YeIBa1KktKK7ck.mft (raw, json)
Hash identifier: 75fiijSV8xE1A9PNrFRhZWZYmxzJS/NOEp8IQunWAMk=
Subject key identifier: 91:A4:AE:23:38:2E:F9:A2:24:43:E2:B1:A3:99:EC:1D:E4:D6:CA:AF
Authority key identifier: 82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
Certificate issuer: /CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Certificate serial: 01974BFB29D31FB8303416F38678A0F187D7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
Manifest number: 0CD0
Signing time: Sat 07 Jun 2025 20:00:40 +0000
Manifest this update: Sat 07 Jun 2025 20:00:40 +0000
Manifest next update: Sun 08 Jun 2025 20:00:40 +0000
Files and hashes: 1: goiQPZDAHi1c4YeIBa1KktKK7ck.crl (hash: jHX2hCku+MH7OqGqTDDKdi1t0E2vjz0/lvR1WLZeVhE=)
2: xs7enPVeNIMyt7yLlWdZQsBjc6E.roa (hash: Hl7Zc5f4P4RuVLf0+lM7s4f9NcFGJ5Df6CUhJF0dl6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:29:d3:1f:b8:30:34:16:f3:86:78:a0:f1:87:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8288903d90c01e2d5ce1878805ad4a92d28aedc9
Validity
Not Before: Jun 7 20:00:40 2025 GMT
Not After : Jun 8 20:00:40 2025 GMT
Subject: CN=91a4ae23382ef9a22443e2b1a399ec1de4d6caaf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:42:98:92:87:95:2f:01:2c:1a:87:2e:73:57:
e9:fd:fc:de:65:c2:ac:c9:e2:cd:70:48:28:c4:6d:
c5:96:a1:50:dd:fa:89:34:da:58:d6:60:0a:9b:5b:
fc:57:a6:bf:14:31:c7:fd:4c:ae:6a:be:40:fa:4f:
c2:f7:7e:cb:0d:9d:a1:65:2a:e5:63:2b:6a:b1:12:
6e:7c:92:57:40:7a:ca:59:0c:d2:33:b8:d7:7f:e6:
71:e9:b2:60:16:04:b6:ce:c8:3f:ed:ea:54:b2:62:
cb:39:38:22:02:ca:71:1f:89:62:77:1c:22:84:8d:
cb:bf:d0:83:3e:f1:97:6c:08:97:e5:a9:c4:e7:16:
a9:1c:26:0f:d3:23:66:4f:4d:f4:e0:ef:b2:74:48:
b5:1d:b6:2e:bc:d5:cb:f7:eb:c2:c2:52:da:44:0e:
de:25:ca:db:d8:6a:9e:67:32:95:e3:b1:de:ec:ce:
9b:d6:26:7b:43:65:4d:4e:fb:62:37:0c:d7:89:db:
ee:8c:20:b1:a1:9a:a2:dc:ef:d4:2d:ad:5f:59:7a:
6c:e0:85:53:55:19:11:1d:d2:e1:c7:90:95:48:fd:
4a:c6:55:4b:8c:af:ab:7f:ed:62:f3:bb:dd:7f:d0:
8c:d1:1d:8b:3b:70:a3:9b:c3:ce:66:56:4f:15:82:
a3:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:A4:AE:23:38:2E:F9:A2:24:43:E2:B1:A3:99:EC:1D:E4:D6:CA:AF
X509v3 Authority Key Identifier:
keyid:82:88:90:3D:90:C0:1E:2D:5C:E1:87:88:05:AD:4A:92:D2:8A:ED:C9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goiQPZDAHi1c4YeIBa1KktKK7ck.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/83f82d-1545-4074-8682-a1de58a3b35b/1/goiQPZDAHi1c4YeIBa1KktKK7ck.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:3a:50:9a:90:7f:cd:dd:c3:5c:1f:d2:71:98:61:2e:01:75:
fa:84:7e:24:aa:9b:04:3e:f1:2a:f2:b3:d8:b3:ff:76:61:5f:
4b:5e:32:93:31:99:64:8f:0a:35:32:41:30:1c:63:b3:9c:9d:
92:95:0c:eb:bc:c6:18:b6:e9:94:89:b3:cf:bc:6c:46:8c:6a:
2e:c7:38:5f:3b:63:bf:dc:48:08:e1:df:46:d0:80:52:32:0b:
20:09:9b:b2:ef:01:72:12:26:b8:cf:65:b6:67:6d:36:ab:25:
96:d8:fb:e7:da:b6:fa:f0:43:ab:a6:5e:68:ef:9e:ac:14:a5:
01:a3:83:e1:d1:ce:07:5f:4e:76:72:df:0b:9f:77:3e:d1:4a:
8b:24:3a:ef:73:59:e5:07:07:ff:cb:1d:2d:e8:8e:56:7b:d2:
91:d7:4d:e8:e7:c8:4f:df:e4:2a:94:ff:58:31:0f:cd:52:3c:
cc:8b:83:c8:c1:4e:12:06:69:3b:88:aa:16:b6:8c:b1:8f:03:
cc:82:c2:1b:c5:17:c3:61:63:5b:c2:bb:82:bd:a6:a3:7b:a7:
ee:c7:fe:ec:b7:8a:34:8a:c8:6b:bb:55:2f:5c:03:51:a2:cf:
2c:98:45:dd:a1:03:1b:a9:4b:10:14:d2:d4:54:80:43:dc:99:
0d:96:92:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:04:52 2025 by rpki-client