Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
File: GZdiXDlfuGf12AjVNZehHOfzxMs.mft (raw, json)
Hash identifier: hVNC3HxQg8olBdiJuaG/rC4ip0EEhnRl8EiWCwUR4eA=
Subject key identifier: 6C:02:E7:85:94:C1:EC:8C:49:DD:9B:F2:15:09:FB:E5:C7:BF:49:CB
Authority key identifier: 19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
Certificate issuer: /CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Certificate serial: 0196C23904B7BEF80E78AC0C7D1D1D70E4DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
Manifest number: 1534
Signing time: Mon 12 May 2025 02:00:38 +0000
Manifest this update: Mon 12 May 2025 02:00:38 +0000
Manifest next update: Tue 13 May 2025 02:00:38 +0000
Files and hashes: 1: GZdiXDlfuGf12AjVNZehHOfzxMs.crl (hash: xpcPlFqcFc35Q4711WWFn7foQmBYpmtvsmgMVqDhKQs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 13 May 2025 01:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:c2:39:04:b7:be:f8:0e:78:ac:0c:7d:1d:1d:70:e4:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1997625c395fb867f5d808d53597a11ce7f3c4cb
Validity
Not Before: May 12 02:00:38 2025 GMT
Not After : May 13 02:00:38 2025 GMT
Subject: CN=6c02e78594c1ec8c49dd9bf21509fbe5c7bf49cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:14:b8:76:76:a2:49:6a:97:1b:32:2a:1d:24:
d8:da:1f:fd:e1:de:b4:ff:66:a5:ae:9e:11:d0:98:
40:0d:07:74:8e:53:80:e2:d4:7f:e3:3e:22:44:43:
bd:40:ad:0b:a5:6a:ac:35:1f:6e:3e:ee:2c:f5:61:
47:32:a1:66:8f:3f:a9:5c:2e:e2:5b:25:cd:5b:06:
8b:f0:4f:05:3e:01:1f:c4:93:b4:01:c8:3e:8a:6d:
a0:e5:51:98:a8:e7:41:2e:a8:f3:41:4e:35:86:19:
a1:f9:79:ff:a5:0a:f3:39:8e:d7:a7:f8:1c:84:81:
76:93:1e:ac:c5:b6:ac:da:03:47:c8:b5:b7:8a:39:
9a:e4:65:ba:a0:f8:12:06:6b:07:fe:59:34:a6:4a:
74:98:29:eb:bd:de:3a:d9:86:bb:fa:09:3f:43:8b:
4c:4b:a8:b4:bb:24:84:f6:72:76:67:2d:e2:76:e6:
46:b2:d3:52:32:8b:6b:da:5c:78:74:69:83:26:1e:
67:68:fe:0d:ed:16:fb:68:2c:63:a1:77:03:da:b5:
36:9b:b9:a7:1f:21:37:a0:2c:34:3d:96:38:dd:e0:
de:1c:f4:fc:12:36:4a:74:2e:45:fc:3d:ca:67:09:
67:f6:5c:fd:c9:94:04:53:8c:4f:02:b3:4e:e4:86:
b2:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:02:E7:85:94:C1:EC:8C:49:DD:9B:F2:15:09:FB:E5:C7:BF:49:CB
X509v3 Authority Key Identifier:
keyid:19:97:62:5C:39:5F:B8:67:F5:D8:08:D5:35:97:A1:1C:E7:F3:C4:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GZdiXDlfuGf12AjVNZehHOfzxMs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/71/16e812-27c6-405d-a4c5-a7f7b9809007/1/GZdiXDlfuGf12AjVNZehHOfzxMs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:3e:02:36:a6:03:a8:f1:a8:e9:97:e7:19:f0:bb:a3:ac:e2:
86:50:0d:94:58:06:83:4a:ff:cd:80:f0:83:5a:bc:27:06:87:
fb:aa:ac:36:1d:05:fa:43:e5:e6:fc:64:53:21:b0:0a:40:4e:
10:ef:cb:55:9a:74:d5:c6:dc:82:c7:3a:31:5f:58:89:6d:c4:
76:6a:85:fd:05:bb:75:9c:ff:b9:71:12:a4:f8:a2:45:39:42:
20:6c:46:2b:0c:3c:45:e2:16:c9:2f:4f:57:b5:50:97:97:e0:
b3:24:3b:5c:e7:19:03:94:87:15:d0:e5:29:30:9c:9a:e6:56:
91:0a:a1:90:b4:16:75:c6:39:e0:10:ab:17:5b:52:e8:1f:3c:
c2:5b:e2:da:7a:78:de:cd:9f:3a:9a:ed:f1:bf:04:dc:90:27:
16:0f:41:56:2a:ec:95:42:f2:3c:4e:ec:ff:59:54:7e:1b:6e:
85:1c:af:f8:52:23:64:9b:59:8f:01:42:96:4f:f6:98:6b:ef:
28:19:17:5e:2a:a3:4a:04:be:96:d4:92:fc:b4:85:cd:ea:97:
31:a0:63:15:a6:4f:6c:e2:91:fa:7e:b1:9f:6c:ea:09:f8:db:
e3:7d:47:16:af:8d:0b:8e:6f:58:60:da:70:5b:d3:dd:a9:20:
7e:27:5a:a4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon May 12 05:21:42 2025 by rpki-client