Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft
File: gwI7OXBbNFqG7_PxTvax5NtFk54.mft (raw, json)
Hash identifier: qTUc1YpUbl1cIe3w/RGHEVxTTF1+xt7BoMv4iOOjF2M=
Subject key identifier: 69:41:1A:AF:0A:07:CE:D0:48:52:E5:50:09:BE:D9:7A:06:2F:93:A9
Authority key identifier: 83:02:3B:39:70:5B:34:5A:86:EF:F3:F1:4E:F6:B1:E4:DB:45:93:9E
Certificate issuer: /CN=83023b39705b345a86eff3f14ef6b1e4db45939e
Certificate serial: 0196C1CB9B78FF22FDD6CF236ADE62E3E133
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gwI7OXBbNFqG7_PxTvax5NtFk54.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft
Manifest number: 0DCD
Signing time: Mon 12 May 2025 00:01:08 +0000
Manifest this update: Mon 12 May 2025 00:01:08 +0000
Manifest next update: Tue 13 May 2025 00:01:08 +0000
Files and hashes: 1: 1-xAAXQxUbK7GDdH6uCkdwm9GcKQ.roa (hash: 4wGfnneRjqqcoqI8J1mtTnFBuWzrhvTfIpD3nl/XM2s=)
2: gwI7OXBbNFqG7_PxTvax5NtFk54.crl (hash: 0iR8zvRJAIsADJCrrJgwC8XFuoVRi4QIhgSjZQyhgDQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft
rsync://rpki.ripe.net/repository/DEFAULT/gwI7OXBbNFqG7_PxTvax5NtFk54.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 00:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c1:cb:9b:78:ff:22:fd:d6:cf:23:6a:de:62:e3:e1:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=83023b39705b345a86eff3f14ef6b1e4db45939e
Validity
Not Before: May 12 00:01:08 2025 GMT
Not After : May 13 00:01:08 2025 GMT
Subject: CN=69411aaf0a07ced04852e55009bed97a062f93a9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:ce:ba:f0:81:bb:7e:1a:69:7f:54:6a:ba:98:
24:ea:52:97:30:9c:5a:99:32:ef:2b:ce:cc:de:7b:
90:91:fa:96:10:af:55:61:1e:2b:df:03:98:a5:b1:
37:d5:95:21:90:7c:82:06:1e:8d:47:ef:34:bf:0e:
4b:d2:41:e4:5a:3a:06:6d:a9:89:24:4e:e0:e2:3b:
fe:44:a6:46:ad:c3:54:c6:1a:cf:1f:90:e0:47:54:
b6:23:81:a8:5c:0f:12:e5:8b:0d:ba:85:d3:24:3b:
95:cd:67:3e:63:b1:64:62:fb:bc:b3:56:4e:3b:c5:
68:de:9f:53:9b:ba:84:04:e9:28:43:d1:38:2b:31:
3f:97:7e:cc:e7:1c:db:2c:e1:5b:a4:b5:cb:25:e3:
8e:a2:38:ae:b2:7e:ca:89:b0:18:1e:13:14:0d:51:
72:64:0c:15:50:94:86:fa:23:76:c5:0d:0c:98:b0:
4c:d2:13:cc:ea:d4:f4:39:3b:10:5f:fb:3e:2b:36:
3d:bd:32:90:52:de:13:8b:60:26:4a:c0:90:10:02:
9c:d5:f2:60:f1:58:4f:b6:d5:6d:9b:fb:03:c4:1e:
c9:85:11:a3:50:7b:56:e1:aa:b9:21:f4:b9:56:97:
df:ed:8c:94:4c:fc:84:26:66:14:3b:75:98:12:bc:
a1:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:41:1A:AF:0A:07:CE:D0:48:52:E5:50:09:BE:D9:7A:06:2F:93:A9
X509v3 Authority Key Identifier:
keyid:83:02:3B:39:70:5B:34:5A:86:EF:F3:F1:4E:F6:B1:E4:DB:45:93:9E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gwI7OXBbNFqG7_PxTvax5NtFk54.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/ae3042-ca98-4dda-95a6-3b8fbfff5342/1/gwI7OXBbNFqG7_PxTvax5NtFk54.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:dc:c5:42:10:b1:61:d6:cd:28:e0:27:17:8d:28:15:15:03:
77:ca:6d:c9:4c:b4:ed:68:05:28:d0:de:34:6f:0e:c7:8b:51:
8a:27:76:2e:7c:73:b3:03:86:4b:b9:d7:78:a5:d2:08:86:f8:
e7:df:af:38:16:6c:a7:7b:04:cf:9f:a8:b9:80:6c:e9:e8:37:
39:ff:44:5c:89:c5:c7:77:56:2c:63:76:f9:30:fe:fa:89:2f:
6e:70:4a:86:c2:72:28:2f:22:fe:ac:18:a7:a2:f2:9d:a3:e8:
06:27:c0:21:10:18:6c:c6:cc:95:e8:33:ee:2a:6b:66:09:9b:
7e:66:aa:3f:86:44:12:ba:ee:3a:56:f0:51:bd:de:49:b6:de:
61:56:19:ea:de:3e:ce:94:47:0c:76:05:9c:89:64:ff:26:3e:
32:c3:3a:fc:83:b1:9c:93:02:72:19:70:a9:a0:ee:09:81:b7:
da:ed:a5:ff:eb:6c:f0:01:e6:d9:89:3b:0f:e6:23:21:b3:00:
8e:1b:9d:24:c9:45:4f:8b:33:62:12:fb:c7:39:c5:8c:ef:45:
f2:d9:d9:4b:7f:08:71:b8:7b:f5:87:87:cc:55:12:0c:25:ff:
7b:a4:6b:e7:3c:bc:fb:d2:cd:4c:3f:c1:1a:b4:4a:a3:7a:7a:
c1:0b:3d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 05:14:38 2025 by rpki-client