Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
File: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft (raw, json)
Hash identifier: AglLT6TvYH0A6UU16WlUOwK5OJaVo4SVOTcCI6FEGwE=
Subject key identifier: 6B:89:92:B6:5D:52:E1:C9:8B:B5:14:E0:A3:4B:36:E8:D0:F8:28:66
Authority key identifier: 82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
Certificate issuer: /CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Certificate serial: 0196C6837C2C14448A3DD1FAAFD5C459579D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
Manifest number: 0FC0
Signing time: Mon 12 May 2025 22:00:27 +0000
Manifest this update: Mon 12 May 2025 22:00:27 +0000
Manifest next update: Tue 13 May 2025 22:00:27 +0000
Files and hashes: 1: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl (hash: /tRkXLmH6MCi9NSm83/VgeHHaX9kJFoVXlOf1xXUhFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 20:47:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c6:83:7c:2c:14:44:8a:3d:d1:fa:af:d5:c4:59:57:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Validity
Not Before: May 12 22:00:27 2025 GMT
Not After : May 13 22:00:27 2025 GMT
Subject: CN=6b8992b65d52e1c98bb514e0a34b36e8d0f82866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:33:34:99:01:c9:67:44:3d:96:b8:cc:21:ae:
8e:ed:e4:8b:1e:63:2d:69:61:3d:96:32:e0:c4:66:
50:61:f2:0e:93:2b:53:0c:47:82:36:14:b1:97:6f:
32:43:6c:88:c4:da:40:fb:29:de:f6:4f:f6:18:35:
7a:7f:9a:ad:28:25:46:13:96:79:64:ae:bb:29:4b:
b5:bb:74:49:2c:9e:21:91:e5:f4:d2:2f:e7:0b:1f:
5c:be:cc:f7:e3:e3:e4:40:4e:c2:d7:11:69:c5:2d:
84:e4:4a:8e:9c:9f:68:af:a5:64:f3:26:c7:43:20:
f1:15:c1:c2:9c:2a:0e:db:e0:16:e7:a9:f2:f2:96:
f0:40:51:78:d5:e9:f7:0f:a4:df:da:59:31:98:4a:
bb:e3:09:a8:14:72:88:91:7b:12:f5:90:f3:a9:ef:
30:0f:d4:69:40:57:d7:90:e7:c3:b7:55:23:bd:99:
a6:b6:22:15:5e:92:31:0a:1d:1a:9c:25:fb:58:20:
79:bb:62:c1:2d:43:80:75:e4:e7:30:97:a2:6d:2a:
1f:15:cd:04:b5:75:03:00:a2:f0:01:5c:f7:e8:8f:
ec:94:3d:89:dd:e2:d8:e1:aa:40:0d:95:20:db:18:
1f:6b:b6:b1:49:12:33:0f:12:84:45:5e:87:02:08:
e7:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6B:89:92:B6:5D:52:E1:C9:8B:B5:14:E0:A3:4B:36:E8:D0:F8:28:66
X509v3 Authority Key Identifier:
keyid:82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:6e:65:68:c5:df:5a:a8:25:13:0b:ec:e1:2e:84:73:25:6b:
bb:a5:2a:c4:78:08:85:1d:9e:6e:24:48:5e:2e:1b:eb:6d:24:
09:a3:63:3f:51:32:16:33:6c:b6:19:d5:a0:98:2c:87:be:f8:
73:0a:6d:52:d9:ee:41:af:53:c8:d4:3c:c0:57:ea:28:68:4d:
20:55:60:f6:23:3d:22:ab:1f:a6:27:30:35:12:13:81:92:e0:
c3:b3:77:f1:84:6b:06:4a:fa:29:56:45:87:1a:f0:da:1c:9d:
0c:12:94:87:78:ba:e8:e8:d5:f1:a8:11:a6:85:84:cf:96:6b:
06:61:ca:6c:d5:d6:25:c5:f0:84:88:ee:0f:af:ca:6f:6d:da:
f1:ba:99:92:8d:b8:39:27:db:f2:44:2c:26:73:9e:dd:ec:f6:
23:e0:fa:a5:1d:6e:ea:51:50:82:50:01:09:24:20:89:b2:af:
be:99:dc:3a:9d:db:f0:2c:44:e7:0e:56:33:56:4b:84:0c:07:
95:6f:84:27:2a:a9:0c:f3:da:1f:b7:f2:98:21:b7:77:ee:55:
ba:9b:b1:0b:db:4f:03:b3:ee:a1:e0:fc:e2:f1:22:c8:72:a3:
b2:30:27:c1:bb:72:de:7e:f0:51:99:20:03:94:3c:d8:5c:52:
5f:5f:01:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 04:59:14 2025 by rpki-client