Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
File: Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft (raw, json)
Hash identifier: wE9mu3OqYwInsuFdBwtCW3kx8rv3b0Zd9yBKU8lVE/o=
Subject key identifier: 2F:06:BE:5A:F5:A2:5A:BF:B7:28:16:49:06:E6:FF:55:88:06:73:A5
Authority key identifier: 1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
Certificate issuer: /CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Certificate serial: 0196D7ADD78FCBEEB55952E1077E24B50B36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
Manifest number: 153D
Signing time: Fri 16 May 2025 06:00:16 +0000
Manifest this update: Fri 16 May 2025 06:00:16 +0000
Manifest next update: Sat 17 May 2025 06:00:16 +0000
Files and hashes: 1: 1Cpy8hReysvqo6rJK2S7mrGPkKE.roa (hash: D4UL2BT0SqLhRGOh0lwv2Oqr8FVnOBm4wqYMVb3RDbk=)
2: Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl (hash: KuLHQTwm+2+v1lBv6IEmGWbpGOIRza61Ttinkxv1GJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 17 May 2025 06:00:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:d7:ad:d7:8f:cb:ee:b5:59:52:e1:07:7e:24:b5:0b:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a7cafde3135a26bdd4179029eebf7414e9643af
Validity
Not Before: May 16 06:00:16 2025 GMT
Not After : May 17 06:00:16 2025 GMT
Subject: CN=2f06be5af5a25abfb728164906e6ff55880673a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:f8:30:e0:a8:8f:3e:b8:81:4b:70:a5:d0:ca:
17:68:ee:b4:be:90:56:02:bd:25:49:49:68:ee:57:
d3:02:a8:05:2f:76:0d:6b:a1:2c:4a:77:8e:7f:76:
bc:79:fe:30:4d:d7:b5:41:b9:da:90:ec:09:bf:4e:
dc:a5:d0:7d:82:14:ba:a8:bc:d9:5f:b3:11:72:42:
d1:77:63:7a:0b:ad:6e:1d:36:73:1b:bd:c9:94:cb:
d4:d1:d3:c3:5f:8b:6d:f3:05:e1:03:36:8e:6d:41:
41:9a:ea:ff:86:a4:28:ec:c4:ec:62:f1:d6:9f:0b:
e5:de:de:93:53:25:ba:cf:1d:fa:35:48:e8:94:71:
b6:dd:06:b0:4e:cd:e5:33:36:35:81:ba:8f:26:96:
1a:55:56:b0:88:87:3c:34:13:65:fa:16:e9:54:ae:
b4:6a:83:b7:be:b1:44:05:e5:af:42:79:54:91:81:
b8:a8:92:b5:ee:18:c3:4c:5f:ff:16:1e:b8:4b:cd:
b8:b3:4d:b4:48:95:fb:02:16:05:76:0b:3b:95:7b:
77:1d:7c:69:1a:71:9c:30:fb:cd:c6:0a:56:de:14:
0d:3c:70:b0:75:44:2c:0a:b3:8b:92:51:72:7a:55:
2c:3c:e5:d0:e3:40:66:fa:3f:9b:a4:91:2e:52:46:
c5:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:06:BE:5A:F5:A2:5A:BF:B7:28:16:49:06:E6:FF:55:88:06:73:A5
X509v3 Authority Key Identifier:
keyid:1A:7C:AF:DE:31:35:A2:6B:DD:41:79:02:9E:EB:F7:41:4E:96:43:AF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gnyv3jE1omvdQXkCnuv3QU6WQ68.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/83/62afbb-b8f8-4b12-9193-1c5107cab353/1/Gnyv3jE1omvdQXkCnuv3QU6WQ68.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:3f:58:0f:2d:52:57:af:30:6a:38:dd:c5:70:a4:ce:75:4d:
fa:2a:9e:15:2b:5e:f7:1e:96:8f:1d:ec:95:f8:62:76:01:88:
2b:6f:01:1a:d5:b2:b9:78:9a:dd:01:86:9d:52:0c:31:84:5a:
ee:be:12:eb:ad:2c:69:6c:34:a8:39:7c:37:37:c4:29:f6:3f:
d3:cb:0f:ac:68:2b:57:66:9a:8b:0e:f6:f2:d3:23:47:41:8d:
3d:c9:3f:c2:c4:d8:a0:e5:34:d5:22:60:84:4c:69:c7:d6:8f:
63:f9:17:47:59:82:38:15:b3:f6:bc:26:34:7a:e3:de:b9:d9:
04:0d:db:75:86:cf:b2:8a:2a:b3:fa:d8:12:aa:68:89:30:65:
a4:8b:0c:2f:9e:23:dd:c4:e9:b2:90:0e:00:cd:db:bd:88:f1:
5f:df:2c:77:32:22:35:5c:1d:b4:e6:f8:1c:48:3a:66:8f:df:
7a:a1:a1:c2:52:b6:06:81:7b:6d:68:94:82:c3:54:da:a4:47:
f9:49:76:83:23:27:bc:31:f9:77:66:c8:00:3e:49:29:1e:0c:
60:94:50:fe:9b:60:1f:3c:dc:cd:63:84:ff:94:04:54:09:f6:
df:e1:38:2d:7c:33:d2:e2:f8:89:8a:75:47:df:f2:0e:96:93:
42:6d:38:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 16 10:19:41 2025 by rpki-client