Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
File: g1-7knspUGK30KcgR7a0qhsPmyk.mft (raw, json)
Hash identifier: 7GH4TN3tkOipV/1o25rlZ3FXGilflwUCF8aiU99Znc0=
Subject key identifier: D3:1D:86:13:4B:8D:9D:42:93:99:86:D8:7B:2D:03:4D:58:FC:C1:E2
Authority key identifier: 83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29
Certificate issuer: /CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29
Certificate serial: 0196B258AD977FC5D45926D42FFCF69F3BD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
Manifest number: 0A5F
Signing time: Fri 09 May 2025 00:01:18 +0000
Manifest this update: Fri 09 May 2025 00:01:18 +0000
Manifest next update: Sat 10 May 2025 00:01:18 +0000
Files and hashes: 1: Xz1rL6dK4mQZieGCdBgSZgZHbZ4.roa (hash: gmK1QKVfo/W+VuZX9S2XVVxCk24nsYt3d8ghU+Ddwrs=)
2: g1-7knspUGK30KcgR7a0qhsPmyk.crl (hash: pHakudvSyIAFzDbT+0QnhMuyVl/ZUiTo+iH7LzlVxBo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b2:58:ad:97:7f:c5:d4:59:26:d4:2f:fc:f6:9f:3b:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29
Validity
Not Before: May 9 00:01:18 2025 GMT
Not After : May 10 00:01:18 2025 GMT
Subject: CN=d31d86134b8d9d42939986d87b2d034d58fcc1e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:c6:cc:db:63:29:09:cb:83:86:56:ae:6e:be:
80:2a:eb:04:65:9a:c5:14:33:9a:55:d2:02:98:2f:
71:26:84:6b:75:41:ab:34:10:25:ab:f1:16:81:28:
c2:5b:08:cf:1e:bb:54:8e:4e:70:3a:ae:d5:76:31:
30:c9:41:27:3f:f1:d0:8c:7c:b9:cd:2f:18:2e:ee:
c7:6b:bd:25:63:c1:c0:47:94:b2:e5:97:49:c7:a8:
fc:1c:cb:4b:d3:4c:cb:4f:46:be:69:0d:2f:f4:37:
66:cc:12:5c:d5:45:a1:49:89:fd:42:46:2d:dd:42:
5c:3b:e3:6d:69:5d:99:ee:f4:59:b9:c9:ed:b5:90:
af:3b:f4:4b:bf:83:68:a8:01:e4:23:40:6b:41:ac:
71:f9:39:fe:81:d5:16:d4:f6:8e:05:6c:35:e5:5f:
d2:04:ea:8e:6a:4f:3b:4d:ae:d6:2f:94:ac:de:df:
52:8b:e0:78:c7:d9:ec:bf:4d:84:21:fd:85:8a:37:
a6:91:3a:52:81:09:bc:b6:f8:21:c3:3c:6b:32:d8:
f0:5d:30:4c:6b:ee:c0:43:09:8a:85:f7:84:66:5c:
33:b1:9c:db:a4:a9:32:44:af:0b:5b:57:5a:f1:3c:
67:a9:d2:cd:bf:4a:78:e3:42:01:0e:ff:90:28:16:
0f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D3:1D:86:13:4B:8D:9D:42:93:99:86:D8:7B:2D:03:4D:58:FC:C1:E2
X509v3 Authority Key Identifier:
keyid:83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:eb:b4:bd:b8:92:93:f4:a4:e5:01:c4:c0:97:20:ce:51:5b:
de:5e:87:30:f5:19:b0:db:ae:ff:97:0d:4c:ad:9e:d6:cd:91:
72:10:f3:d9:ed:76:da:69:95:58:97:28:e5:37:ec:43:d2:db:
d5:16:59:5f:0d:a4:16:11:88:67:67:7b:78:e6:9a:59:df:4b:
fd:20:ba:63:26:ce:e3:70:83:59:6c:18:97:a6:68:15:ed:7c:
90:5d:07:4c:29:22:03:45:99:51:3e:e9:46:32:c2:ec:63:2c:
86:0b:de:2b:50:9c:e6:c4:a6:37:bc:f1:04:b4:24:0e:d6:0b:
5f:bf:a1:b3:a9:c0:54:14:a6:d7:c8:77:af:31:44:bf:3b:41:
b1:7c:ca:dd:38:3e:95:1c:7f:4e:65:3d:a8:f3:bc:f7:92:29:
51:e3:7e:22:24:07:61:21:df:e0:c5:1f:e5:30:1a:7f:9e:5f:
0c:79:03:35:1d:47:34:c1:b0:d3:44:18:af:4d:8a:aa:3d:75:
d3:85:a5:3f:b1:8e:a6:91:e9:3e:7a:2f:7b:10:17:87:02:8e:
57:61:d9:a6:93:aa:f7:fd:6d:51:e1:dd:d6:d4:bd:e8:90:f4:
25:16:47:7e:d8:9b:cd:1f:94:b9:79:7c:2f:a2:e6:e3:25:9f:
15:74:17:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 9 08:41:37 2025 by rpki-client