Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
File: gh9un_H7vyH2QToTfnNn3YqMA1w.mft (raw, json)
Hash identifier: ctMa/7pJOOUJLboqr07vLxxHIf5OdmMenJhs7RjjAw0=
Subject key identifier: 4B:62:6E:21:CA:F7:1B:D2:E8:03:B2:7A:DD:8D:14:7A:2C:39:ED:3D
Authority key identifier: 82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C
Certificate issuer: /CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c
Certificate serial: 0194C350C057C9BB73E901972EB7A9AB00CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
Manifest number: 0C70
Signing time: Sat 01 Feb 2025 21:00:36 +0000
Manifest this update: Sat 01 Feb 2025 21:00:36 +0000
Manifest next update: Sun 02 Feb 2025 21:00:36 +0000
Files and hashes: 1: LGI_BMqz48rF1CAQFBrnzf381U0.roa (hash: eJvU6iSIuiB2ZVQ2ar/OXbcHw5p8L+QuWzmrOM6M7qg=)
2: gh9un_H7vyH2QToTfnNn3YqMA1w.crl (hash: QWIZpIh1rq9oL3270nEEwtqdnrGVCcRSIty/rnKayXM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 02 Feb 2025 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:c3:50:c0:57:c9:bb:73:e9:01:97:2e:b7:a9:ab:00:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=821f6e9ff1fbbf21f6413a137e7367dd8a8c035c
Validity
Not Before: Feb 1 21:00:36 2025 GMT
Not After : Feb 2 21:00:36 2025 GMT
Subject: CN=4b626e21caf71bd2e803b27add8d147a2c39ed3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:e6:95:97:f1:a2:6e:8d:d8:cb:e1:e2:b7:79:
fb:de:55:e1:c2:e6:8a:95:2e:6e:b1:e6:f9:d6:cf:
ac:3c:0b:4e:8d:e9:93:3f:59:f4:80:16:3c:b1:a4:
d0:05:07:bf:f2:aa:71:16:5a:e9:79:cc:a0:f3:f8:
8f:db:6f:a9:93:ce:e5:cf:7d:0b:53:0c:ee:09:39:
a5:3d:26:6b:f2:bf:61:2c:b4:b2:09:53:9d:df:fb:
56:1f:d5:79:1c:ca:af:c1:37:3f:4c:9d:b7:60:5a:
b5:84:12:8a:80:54:15:de:5b:db:82:db:ae:16:93:
ea:ad:dd:ca:6f:72:d5:1e:b2:c5:84:ca:ca:55:3f:
fa:ec:45:d3:a5:3a:b1:4a:55:a7:b7:5f:21:e9:23:
f4:3c:52:eb:96:2b:1a:f3:53:57:64:2a:02:41:b1:
f1:40:26:03:7f:a8:bc:82:67:5b:49:59:fb:ee:4c:
85:ed:13:90:ec:8b:48:64:42:c6:6f:e6:2f:1b:00:
36:82:05:23:b3:32:2d:4e:ec:7c:f9:fa:55:fa:9a:
24:cd:9a:15:3b:04:0c:9f:88:c1:9a:59:37:c8:3d:
cf:13:fb:0b:52:46:03:7b:b2:23:bb:f4:27:17:3b:
f7:4d:93:93:c1:0d:f3:e8:36:07:5c:90:d6:59:5d:
ae:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:62:6E:21:CA:F7:1B:D2:E8:03:B2:7A:DD:8D:14:7A:2C:39:ED:3D
X509v3 Authority Key Identifier:
keyid:82:1F:6E:9F:F1:FB:BF:21:F6:41:3A:13:7E:73:67:DD:8A:8C:03:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gh9un_H7vyH2QToTfnNn3YqMA1w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/e076dc-10d8-44cc-8aa5-5a94ad133118/1/gh9un_H7vyH2QToTfnNn3YqMA1w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:80:c2:ae:ca:ec:86:83:71:f4:97:d5:6d:7a:25:11:f4:02:
ce:5f:ad:9b:81:9b:46:f9:73:a1:c4:78:3d:51:03:79:93:8f:
33:56:a5:76:69:35:a4:52:93:02:ca:b6:11:f3:f8:54:81:c3:
4f:db:25:c5:b1:90:35:2b:a5:4f:36:f4:dd:94:6c:73:b9:98:
5b:ed:e1:4d:21:90:25:02:fa:01:f1:09:40:27:e2:e7:5c:90:
8b:45:f5:d0:33:4e:d8:06:fa:e7:01:ed:f5:5d:85:18:ed:dc:
db:86:a6:bd:37:fd:43:93:86:08:93:7b:d7:27:b9:31:61:8b:
fa:42:75:c3:ea:26:9d:7c:64:df:f8:66:a8:28:85:27:d2:10:
d4:d5:57:52:e1:73:75:a4:17:74:8c:6b:00:6a:15:24:d7:3c:
96:25:94:47:72:70:9c:03:09:21:47:d0:14:26:19:78:01:74:
4c:46:3c:a3:44:ed:be:9b:70:9a:e9:56:75:5f:85:b9:0a:48:
7f:ac:90:8c:57:1e:fe:24:cc:98:28:bd:12:08:66:e3:8d:37:
f7:ef:fe:82:b4:1a:cd:cb:e7:3d:64:51:35:32:ed:9d:35:50:
2d:70:ee:17:57:39:ad:2a:61:54:80:05:fa:84:38:ac:4e:65:
14:5e:ed:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Feb 2 06:51:24 2025 by rpki-client