Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
File: grLg0A3Xcank1gu_S-UhFOp32wM.mft (raw, json)
Hash identifier: eCy9cX6mFNULrueWXaZtiqasRqHI7SX4qVljg7k3wBY=
Subject key identifier: AC:C0:2F:19:57:B8:AA:79:55:85:78:8F:AE:9E:6A:AC:EC:D5:CF:49
Authority key identifier: 82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03
Certificate issuer: /CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03
Certificate serial: 01963F1DF5BD7A1EB7EBC02BBF35CDE1DAFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
Manifest number: 0A65
Signing time: Wed 16 Apr 2025 15:00:49 +0000
Manifest this update: Wed 16 Apr 2025 15:00:49 +0000
Manifest next update: Thu 17 Apr 2025 15:00:49 +0000
Files and hashes: 1: ThgJs3kNUc1TJ0Jibz63Md7g8RA.roa (hash: D2au3KjqostxFd8JOgURC1OsvCTG2y74Gi/MCmrs9II=)
2: grLg0A3Xcank1gu_S-UhFOp32wM.crl (hash: GQY3wLa+ATOoS7maQq/xJjPHl/cNiIvU2Tw+/ViWFmU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 17 Apr 2025 13:16:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:3f:1d:f5:bd:7a:1e:b7:eb:c0:2b:bf:35:cd:e1:da:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82b2e0d00dd771a9e4d60bbf4be52114ea77db03
Validity
Not Before: Apr 16 15:00:49 2025 GMT
Not After : Apr 17 15:00:49 2025 GMT
Subject: CN=acc02f1957b8aa795585788fae9e6aacecd5cf49
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:37:8a:62:1e:38:f9:82:73:94:4d:ea:0a:e7:
13:81:08:62:7a:d6:8f:c3:35:81:c2:6f:5a:cc:aa:
3b:ba:ea:99:ff:94:d2:92:be:72:0c:0b:0c:88:87:
4f:71:bf:74:dd:3c:88:a6:43:3d:d5:83:45:bb:c5:
63:99:d3:ed:79:37:0f:cb:34:5a:2b:ac:80:47:59:
f3:98:95:7c:15:86:99:88:57:c6:a5:0f:1e:91:84:
19:98:a3:7b:07:77:f0:a8:1a:fa:c6:52:3c:75:ae:
7c:72:9b:6c:3b:51:5c:38:d4:0d:6c:05:50:3a:93:
b5:6e:35:f0:37:e6:b5:5c:f5:7f:b5:84:d8:4b:d7:
5a:3c:71:d8:de:0a:a3:4e:ee:91:c8:b8:8b:34:4b:
0a:95:e4:19:ec:4e:3e:79:6a:89:3a:5d:36:3f:13:
07:74:df:11:67:32:b9:79:ec:60:1f:cd:f0:08:c0:
0b:ec:2b:70:e0:5e:dd:27:08:40:22:80:3c:ad:11:
14:00:50:31:5a:ca:16:90:ee:81:74:b3:38:ff:72:
ac:2f:3c:4a:02:4b:21:bc:74:89:66:f3:1d:63:c2:
c8:ff:f6:6e:b3:11:a1:ed:9d:b6:e4:8f:88:9d:90:
42:47:8e:9f:7d:0f:1f:66:d3:a6:ab:82:52:94:e6:
56:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:C0:2F:19:57:B8:AA:79:55:85:78:8F:AE:9E:6A:AC:EC:D5:CF:49
X509v3 Authority Key Identifier:
keyid:82:B2:E0:D0:0D:D7:71:A9:E4:D6:0B:BF:4B:E5:21:14:EA:77:DB:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/grLg0A3Xcank1gu_S-UhFOp32wM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/3794b1-ca7f-4a57-8b7b-06d3c4e63c20/1/grLg0A3Xcank1gu_S-UhFOp32wM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:73:3f:43:d1:ee:f0:bd:fb:8f:73:43:52:e8:e4:e4:77:0e:
2a:d2:73:9b:71:c0:e9:f9:44:72:6c:b7:50:fa:aa:bc:5f:1b:
52:18:d1:a3:72:73:3f:d5:d8:33:d0:5a:af:d9:4a:45:60:11:
1c:5a:ca:20:fd:76:48:41:70:e1:56:e8:31:dc:b9:c7:4c:f3:
4d:9b:ee:71:a5:d4:53:6a:44:6c:01:49:b6:9e:40:da:23:36:
5f:93:05:e7:a4:1b:45:e2:72:7a:7f:0d:5a:2b:40:02:01:d1:
e5:26:3b:1f:77:f6:0e:06:00:7a:78:13:1c:08:df:1e:c7:13:
b0:24:5d:68:f5:a0:91:99:df:3e:9b:76:4f:88:22:40:7b:39:
93:0c:c6:2a:5c:a8:fa:2d:e3:4d:bb:79:a6:3d:34:75:3d:ec:
07:c4:8f:35:61:86:6d:eb:30:ad:f7:e1:ef:9e:87:ef:89:c1:
27:08:d4:53:b6:dd:dd:4c:1a:cb:32:4b:c5:2b:ef:13:88:3f:
a2:e3:47:54:79:af:86:ab:b1:e9:c2:2d:94:e6:44:ba:aa:bc:
5b:d8:85:0e:01:3a:ba:4a:02:d1:03:29:78:a1:0b:d2:2f:ba:
e3:72:56:cd:a9:ed:b0:32:bd:5c:dc:0b:54:c2:e0:c1:71:03:
1c:46:41:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 21:32:03 2025 by rpki-client