Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft
File: Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft (raw, json)
Hash identifier: t5W9gw8NvC9yA9SrQDn0gIfb84BaDkGGZ4J7cE0yCgM=
Subject key identifier: 23:03:7C:C5:95:54:BA:6C:3E:B4:E3:D9:73:A0:8D:8C:90:EA:04:A5
Authority key identifier: 1A:F7:9B:F8:AA:B6:BE:01:49:D8:DB:5C:8A:0C:ED:BC:95:70:F1:6E
Certificate issuer: /CN=1af79bf8aab6be0149d8db5c8a0cedbc9570f16e
Certificate serial: 01969E2C8F6EF672521C09C6987CD3BC4D4D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gveb-Kq2vgFJ2NtcigztvJVw8W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft
Manifest number: 0A
Signing time: Mon 05 May 2025 02:00:42 +0000
Manifest this update: Mon 05 May 2025 02:00:42 +0000
Manifest next update: Tue 06 May 2025 02:00:42 +0000
Files and hashes: 1: Gveb-Kq2vgFJ2NtcigztvJVw8W4.crl (hash: v4xwJ7E5OUbJcIwXmn19X36cBJqdhxHsbHWt1hy6mC8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gveb-Kq2vgFJ2NtcigztvJVw8W4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 05 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:9e:2c:8f:6e:f6:72:52:1c:09:c6:98:7c:d3:bc:4d:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1af79bf8aab6be0149d8db5c8a0cedbc9570f16e
Validity
Not Before: May 5 02:00:42 2025 GMT
Not After : May 6 02:00:42 2025 GMT
Subject: CN=23037cc59554ba6c3eb4e3d973a08d8c90ea04a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:93:26:78:b0:46:0e:b5:7d:97:58:e1:84:85:
78:6c:c1:95:22:78:61:d7:b2:ba:12:f6:c4:f6:5b:
8d:33:a8:53:d1:08:fa:11:fc:a3:17:f5:fa:6a:3e:
50:a9:5d:d2:ff:9c:4d:45:d7:3f:0e:f3:f7:2f:fd:
76:59:80:e1:c0:44:08:9a:d1:33:28:58:7e:07:c0:
4f:c3:a3:78:08:7d:35:12:90:58:1b:a8:ac:2c:7a:
56:19:16:8c:5f:da:94:e1:97:6d:5e:a4:bd:2a:c1:
4c:be:94:76:3e:83:0f:30:51:31:c6:ff:eb:b2:b9:
7a:c9:0a:bb:51:c1:b7:97:dd:ba:38:47:fb:42:78:
69:c3:a0:5d:8a:f3:38:c9:b1:5e:29:12:2e:18:88:
8f:3f:25:89:ab:70:3b:b5:e5:13:6d:9a:52:d4:97:
e6:2a:6c:81:65:fb:3f:77:6e:e6:60:bf:f2:10:71:
2f:5e:ab:02:06:3d:c0:08:e1:53:d4:67:02:bc:44:
10:05:78:fc:12:fa:2e:27:b6:d0:19:14:81:12:56:
9d:7a:02:77:84:32:99:72:11:66:9f:37:77:a3:19:
ce:40:7c:e7:f7:3d:c6:c9:a0:c2:ce:ac:95:2c:32:
f9:23:e4:7b:97:d8:55:6c:98:83:27:14:82:de:4a:
37:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:03:7C:C5:95:54:BA:6C:3E:B4:E3:D9:73:A0:8D:8C:90:EA:04:A5
X509v3 Authority Key Identifier:
keyid:1A:F7:9B:F8:AA:B6:BE:01:49:D8:DB:5C:8A:0C:ED:BC:95:70:F1:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gveb-Kq2vgFJ2NtcigztvJVw8W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/a72453-fea1-4a70-a54b-911d34f014f3/1/Gveb-Kq2vgFJ2NtcigztvJVw8W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:f8:94:8f:94:ba:9f:38:0c:4e:d2:5c:0f:a4:bb:84:0a:7e:
e3:53:4c:a8:63:f0:3b:14:16:39:e7:32:ea:d9:92:11:b8:0c:
66:fc:ab:80:ce:09:8b:63:e6:d2:32:d4:cc:3b:85:9a:86:b5:
5c:14:cc:4c:b5:31:ba:8d:ac:6a:09:ea:36:dc:a0:ad:dd:6c:
90:2e:6d:6e:37:bf:f6:52:16:f3:09:d4:d7:47:8c:d9:a4:ed:
ad:f4:43:6e:19:28:36:78:17:c0:2d:97:ef:b6:2d:25:bd:59:
5b:97:4c:42:30:28:8f:4d:39:26:aa:b1:8f:ec:9d:68:4b:4b:
49:0c:5d:d5:bb:0d:8f:d1:24:01:8d:83:25:be:2c:3b:10:55:
8b:5a:1c:7b:cd:35:55:db:9d:aa:77:dc:ce:5c:d5:e0:5f:ce:
22:9a:6f:81:d7:bb:1b:e3:b4:6d:7b:4b:3a:f5:a2:c3:3b:1a:
20:d5:84:7c:a6:05:17:aa:cb:42:fa:c7:7e:95:fd:09:b7:fe:
66:b0:dc:c4:8c:e3:13:46:93:dd:23:40:b6:f3:e2:7f:cd:b5:
8e:b6:f1:0a:e8:5f:2d:69:94:40:81:f3:a4:e6:b9:e1:a4:18:
de:1f:aa:00:b8:97:c4:f6:56:d5:29:29:44:e9:8e:d0:8d:88:
e2:5b:3a:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 5 05:12:14 2025 by rpki-client