Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: D/TvtR37gkF7Q6/UzLXtTk96yaMF92Ix4YTZJQX++NI=
Subject key identifier: CA:8A:39:49:45:F7:DE:C8:E0:49:CC:BD:6F:C9:AC:50:4F:F7:91:44
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 0196BCDB76ABEF25C226EB32F681DCA4AF74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 011B
Signing time: Sun 11 May 2025 01:00:21 +0000
Manifest this update: Sun 11 May 2025 01:00:21 +0000
Manifest next update: Mon 12 May 2025 01:00:21 +0000
Files and hashes: 1: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: OflAZu4QoOtqDFNsUjWQUSOHnpQmAHDZEVaWrbQyfAE=)
2: moIHrCUIysvqre1db9iG8YhXiD4.roa (hash: 3qmhRdBwt3IbZM/x/JJkjl8tv0bK7oEsrL8A8nVm2tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:db:76:ab:ef:25:c2:26:eb:32:f6:81:dc:a4:af:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: May 11 01:00:21 2025 GMT
Not After : May 12 01:00:21 2025 GMT
Subject: CN=ca8a394945f7dec8e049ccbd6fc9ac504ff79144
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:30:d7:20:5f:65:39:a0:f4:39:a1:fd:b8:48:
98:fc:45:5a:41:ac:a6:d9:f1:bd:d9:81:c1:cf:93:
a3:ce:4c:93:9e:0b:e5:10:33:a8:07:bd:88:c9:9b:
ce:bf:e0:0a:ab:df:aa:8d:52:2a:e0:be:d8:36:c9:
77:f3:86:e3:d6:09:e3:3c:77:83:e9:c8:95:d1:e8:
67:fd:a4:d6:01:90:03:1a:05:45:fd:32:ea:59:a0:
13:53:3b:15:cf:c9:78:32:b7:94:a5:9e:8e:c4:99:
95:9f:f8:db:32:f1:b9:d9:59:f6:63:88:ba:07:47:
0e:61:c8:ad:31:47:93:82:8c:85:fc:0b:f2:12:f2:
2e:64:ff:f1:42:96:08:bf:f7:d5:24:8e:87:3f:23:
a4:49:67:38:db:b6:c9:41:a9:00:75:92:bc:61:1b:
8a:4b:11:da:a3:ce:4a:9b:42:15:3c:b7:33:99:83:
44:24:98:e5:bc:c7:1d:8b:41:a0:94:34:28:b6:fc:
a3:b7:b1:48:db:b3:25:db:14:26:23:06:cc:a8:9b:
a2:4e:f5:b3:1d:a5:63:66:0c:cd:e2:c0:91:da:fe:
68:49:09:3a:0f:4d:59:0c:3e:16:23:f6:92:db:87:
4b:d8:fb:c5:ef:8f:b4:cc:c9:17:d2:5e:17:b6:55:
3a:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:8A:39:49:45:F7:DE:C8:E0:49:CC:BD:6F:C9:AC:50:4F:F7:91:44
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:6c:14:7d:d8:55:4b:f5:0d:09:af:5b:31:dc:66:b4:ef:7b:
61:45:32:bd:56:02:09:3e:dc:1c:eb:d3:3f:7f:7a:86:7c:74:
f2:6f:9b:05:31:46:db:46:ed:ce:e2:43:e0:82:97:15:37:41:
70:b9:f4:19:1c:82:d3:e8:f7:24:79:34:08:9b:27:60:94:05:
18:66:5b:e7:a9:6b:1c:d1:a6:e3:08:1f:33:f4:07:aa:8b:17:
71:33:68:06:16:75:60:48:79:2e:39:4b:4f:b1:9f:8e:33:e5:
25:26:d8:45:6f:ab:f0:ad:36:2f:20:11:16:1d:51:b2:61:4e:
72:2e:f0:ae:10:c6:41:9c:78:fc:e2:91:dd:3c:26:f9:08:e6:
84:12:6e:c1:11:04:88:3c:24:4d:2b:c6:2c:d3:da:94:43:67:
67:40:d5:34:af:23:83:5b:79:59:02:44:a9:f8:7d:7b:58:3f:
09:54:94:4c:66:4b:bd:2d:71:bd:82:45:b8:a7:2e:10:84:13:
4d:c8:c8:a8:47:c4:54:56:5c:f0:69:9e:45:a0:ed:e4:0a:93:
c6:2f:32:fe:b1:f6:e7:6b:d3:74:0f:b2:64:27:de:3f:92:62:
49:54:cd:71:f9:af:09:ac:6b:03:fa:f7:0a:61:eb:d5:7c:3c:
2c:b7:ff:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZa823ar7yXCJusy9oHcpK90MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyYWQzZGM0MGFjZDE4NTJmYzc0YWNkZDM3ZDhmMDdiYmIw
MjVkMTgwHhcNMjUwNTExMDEwMDIxWhcNMjUwNTEyMDEwMDIxWjAzMTEwLwYDVQQD
EyhjYThhMzk0OTQ1ZjdkZWM4ZTA0OWNjYmQ2ZmM5YWM1MDRmZjc5MTQ0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApTDXIF9lOaD0OaH9uEiY/EVaQaym
2fG92YHBz5OjzkyTngvlEDOoB72IyZvOv+AKq9+qjVIq4L7YNsl384bj1gnjPHeD
6ciV0ehn/aTWAZADGgVF/TLqWaATUzsVz8l4MreUpZ6OxJmVn/jbMvG52Vn2Y4i6
B0cOYcitMUeTgoyF/AvyEvIuZP/xQpYIv/fVJI6HPyOkSWc427bJQakAdZK8YRuK
SxHao85Km0IVPLczmYNEJJjlvMcdi0GglDQotvyjt7FI27Ml2xQmIwbMqJuiTvWz
HaVjZgzN4sCR2v5oSQk6D01ZDD4WI/aS24dL2PvF74+0zMkX0l4XtlU6WQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMqKOUlF997I4EnMvW/JrFBP95FEMB8GA1UdIwQY
MBaAFIKtPcQKzRhS/HSs3TfY8Hu7Al0YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMt
ODQ5YzVjODhkYmZjLzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Mi8yMTdiNzMtMDU2Mi00NzZlLThkODMtODQ5YzVjODhkYmZj
LzEvZ3EwOXhBck5HRkw4ZEt6ZE45andlN3NDWFJnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjmwUfdhV
S/UNCa9bMdxmtO97YUUyvVYCCT7cHOvTP396hnx08m+bBTFG20btzuJD4IKXFTdB
cLn0GRyC0+j3JHk0CJsnYJQFGGZb56lrHNGm4wgfM/QHqosXcTNoBhZ1YEh5LjlL
T7GfjjPlJSbYRW+r8K02LyARFh1RsmFOci7wrhDGQZx4/OKR3Twm+QjmhBJuwREE
iDwkTSvGLNPalENnZ0DVNK8jg1t5WQJEqfh9e1g/CVSUTGZLvS1xvYJFuKcuEIQT
TcjIqEfEVFZc8GmeRaDt5AqTxi8y/rH252vTdA+yZCfeP5JiSVTNcfmvCaxrA/r3
CmHr1Xw8LLf/jw==
-----END CERTIFICATE-----
Generated at Sun May 11 04:33:44 2025 by rpki-client