Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft
File: gXNntPK_jrMfbhYk7Vbtq6nwITs.mft (raw, json)
Hash identifier: 0qWSZhn21tWLuTG6ERmCoYdj/g1JeDA6jxFOPYA8FVM=
Subject key identifier: 7B:EC:0F:A7:00:90:BC:68:34:0B:E1:85:2D:EE:51:E7:43:8E:28:91
Authority key identifier: 81:73:67:B4:F2:BF:8E:B3:1F:6E:16:24:ED:56:ED:AB:A9:F0:21:3B
Certificate issuer: /CN=817367b4f2bf8eb31f6e1624ed56edaba9f0213b
Certificate serial: 0196C98451F32ABAF50189AAD15FEC0B9345
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gXNntPK_jrMfbhYk7Vbtq6nwITs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft
Manifest number: 0C55
Signing time: Tue 13 May 2025 12:00:14 +0000
Manifest this update: Tue 13 May 2025 12:00:14 +0000
Manifest next update: Wed 14 May 2025 12:00:14 +0000
Files and hashes: 1: gXNntPK_jrMfbhYk7Vbtq6nwITs.crl (hash: Ax9XMhWqquCQbedU459u89vmWcJL8X80s6jqMciH3rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft
rsync://rpki.ripe.net/repository/DEFAULT/gXNntPK_jrMfbhYk7Vbtq6nwITs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 14 May 2025 12:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c9:84:51:f3:2a:ba:f5:01:89:aa:d1:5f:ec:0b:93:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=817367b4f2bf8eb31f6e1624ed56edaba9f0213b
Validity
Not Before: May 13 12:00:14 2025 GMT
Not After : May 14 12:00:14 2025 GMT
Subject: CN=7bec0fa70090bc68340be1852dee51e7438e2891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:68:f6:fc:5a:e6:50:73:0b:7f:b3:bd:35:d1:
d1:97:12:a5:67:2f:85:b2:07:42:38:24:1c:a6:db:
39:f2:3e:b4:c7:1a:51:ac:1e:ea:7e:f2:59:29:e1:
52:10:44:a7:3e:4a:98:2a:70:85:5d:71:92:ca:76:
82:1c:53:be:b0:c5:11:60:b9:9b:58:ad:08:e2:44:
40:9b:62:6b:c4:b9:a1:ed:4a:6e:b5:a4:3d:1f:5b:
93:da:d6:ec:0c:d8:10:d4:87:51:02:dd:b4:e3:56:
a4:c6:71:7c:cc:df:4c:52:69:30:e4:04:f3:6a:66:
61:cd:60:b5:e4:81:6c:51:56:29:b8:40:c6:e2:7c:
a5:e6:30:17:e9:4c:4d:00:72:5a:ca:12:c9:7a:19:
5c:9f:e9:c1:d7:95:d7:2d:16:30:7f:ff:24:56:7d:
46:05:75:5f:5b:b8:a6:ce:5f:95:62:d5:07:3a:13:
03:c8:cb:5a:43:ec:3c:b7:e4:73:f7:de:e3:3b:81:
a6:9f:c0:f6:78:9c:47:e0:8a:2a:9c:b3:fa:eb:60:
05:8d:eb:df:eb:5a:77:b3:2c:5c:d5:0e:c8:25:a2:
a3:98:f1:f2:70:df:5b:b8:fc:69:82:eb:ba:58:50:
28:7b:d2:9d:a2:25:5c:83:ef:d8:ed:88:55:5c:af:
b3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:EC:0F:A7:00:90:BC:68:34:0B:E1:85:2D:EE:51:E7:43:8E:28:91
X509v3 Authority Key Identifier:
keyid:81:73:67:B4:F2:BF:8E:B3:1F:6E:16:24:ED:56:ED:AB:A9:F0:21:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gXNntPK_jrMfbhYk7Vbtq6nwITs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/9575d0-9c7c-4571-863a-555130a57041/1/gXNntPK_jrMfbhYk7Vbtq6nwITs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:bf:fc:31:1d:de:26:19:24:f6:f9:41:a6:34:28:0e:c1:b1:
52:f9:3a:7a:d3:42:fb:75:6b:80:52:47:20:81:ca:01:3b:ba:
8d:2b:4d:fb:a9:8e:62:ca:9a:dd:42:2b:c3:62:70:22:1c:2e:
09:4f:cb:be:82:a0:78:30:f2:88:3b:af:62:03:1d:98:10:77:
64:d4:f9:98:d7:14:93:0c:53:3a:4d:8d:2b:dc:8e:ba:40:f4:
bc:36:09:98:db:6f:a2:7d:7d:d8:22:66:d5:65:2d:ff:29:db:
51:fe:48:3a:6c:d6:68:db:32:ef:e4:0f:87:fe:6d:6d:c9:ab:
46:97:d7:46:96:e0:58:ea:d1:fd:43:12:c7:ce:3e:00:e7:fc:
02:1e:28:ae:da:c7:1f:7d:d2:5d:09:45:82:79:51:a2:23:1d:
02:08:c8:10:59:ff:c1:71:db:73:5f:12:d2:99:68:94:4b:bc:
08:68:e9:df:8d:aa:ce:c3:05:5d:32:a3:b2:1f:72:a5:a6:b0:
7f:85:4a:06:79:8e:c7:b5:48:0c:9e:68:e7:8c:7d:ef:03:38:
93:3f:7f:89:57:46:01:24:d0:ae:91:f6:d3:e0:df:e1:71:87:
76:1a:79:44:f6:a1:be:58:8e:b6:a1:7c:2e:fe:0c:cc:30:45:
6c:14:26:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 13 17:57:53 2025 by rpki-client