Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
File: Gwm9TWooxfH75oPPKs1ei_K65MQ.mft (raw, json)
Hash identifier: xTQwqPtvOwDYuhripHMGgD0YgmRixv15AxLsymyoiHA=
Subject key identifier: B9:76:27:A7:55:77:13:CF:B0:8F:56:05:20:0F:C7:47:04:09:89:2C
Authority key identifier: 1B:09:BD:4D:6A:28:C5:F1:FB:E6:83:CF:2A:CD:5E:8B:F2:BA:E4:C4
Certificate issuer: /CN=1b09bd4d6a28c5f1fbe683cf2acd5e8bf2bae4c4
Certificate serial: 0196B9A3C0DE0985533F865CA4BBC1A3E184
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gwm9TWooxfH75oPPKs1ei_K65MQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
Manifest number: 02FB
Signing time: Sat 10 May 2025 10:00:38 +0000
Manifest this update: Sat 10 May 2025 10:00:38 +0000
Manifest next update: Sun 11 May 2025 10:00:38 +0000
Files and hashes: 1: Gwm9TWooxfH75oPPKs1ei_K65MQ.crl (hash: LyQVf6mWTVkiZtbwSS39f2QStxPL5OYm2AGZ0UCK2gY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gwm9TWooxfH75oPPKs1ei_K65MQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 10:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b9:a3:c0:de:09:85:53:3f:86:5c:a4:bb:c1:a3:e1:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b09bd4d6a28c5f1fbe683cf2acd5e8bf2bae4c4
Validity
Not Before: May 10 10:00:38 2025 GMT
Not After : May 11 10:00:38 2025 GMT
Subject: CN=b97627a7557713cfb08f5605200fc7470409892c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:1a:1a:4a:b2:b1:95:d3:5e:51:be:7e:3b:1d:
41:b0:f2:4a:94:a8:e7:6b:16:bc:dd:9d:a0:2f:79:
65:80:d5:db:07:34:34:31:e4:cc:ae:81:01:76:86:
84:9a:6f:9c:f1:08:3d:d0:8b:14:bb:da:66:c9:94:
81:4a:b0:16:f7:1a:dd:63:7f:eb:c5:67:e0:c4:bb:
a5:6d:90:0e:90:70:cc:15:f1:75:63:0e:6d:75:0f:
a8:84:1f:bd:06:86:71:12:59:08:5f:88:57:4f:e6:
bb:61:8e:18:b7:6b:c5:35:f7:46:ec:30:b7:09:17:
01:4b:39:e1:42:13:73:eb:cd:91:44:82:5b:74:d0:
4c:62:33:3a:26:1b:f3:bd:00:30:0e:22:0e:ef:f3:
3e:07:9c:f4:5f:19:7b:c2:5c:af:4e:ce:08:bc:1b:
10:85:1c:93:75:10:0b:75:79:de:24:f7:9e:26:b3:
32:3a:ff:be:f7:93:cc:16:5a:a7:2d:6e:6c:ca:c2:
52:d7:c3:3e:bc:6c:7d:26:e7:ec:9c:51:dd:c3:e7:
a8:94:2e:60:ec:20:60:40:8c:ff:ec:6e:bf:39:64:
61:1b:c9:f6:ab:47:08:90:cc:04:dc:d9:fc:54:67:
6a:54:de:c5:52:64:0a:2b:0e:ca:5e:a1:55:35:4e:
eb:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:76:27:A7:55:77:13:CF:B0:8F:56:05:20:0F:C7:47:04:09:89:2C
X509v3 Authority Key Identifier:
keyid:1B:09:BD:4D:6A:28:C5:F1:FB:E6:83:CF:2A:CD:5E:8B:F2:BA:E4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gwm9TWooxfH75oPPKs1ei_K65MQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:5f:ee:98:8b:b1:24:0c:b7:76:66:34:c8:b8:11:2f:b1:3e:
4c:7b:39:4d:44:6d:c7:53:44:a1:d1:69:5b:ba:e7:68:2b:b0:
4f:5b:d4:22:3c:71:5b:1f:a2:7b:8f:93:dd:43:c2:1e:87:f2:
96:b7:64:37:13:c4:e2:c4:38:98:3b:e4:a1:d7:5f:d6:05:85:
7f:e3:52:66:17:05:04:cd:d5:9d:56:25:a5:da:a2:78:9c:0a:
1c:31:fc:87:36:1f:d8:76:05:db:a2:93:af:d3:54:b6:d2:41:
5c:fc:7d:58:f7:33:97:0f:81:d0:91:76:ac:18:07:eb:72:d8:
94:c1:8f:a4:cb:39:5a:8b:0f:47:36:c4:bc:dd:9b:ec:b3:c9:
b4:d7:58:da:a6:64:21:fb:b2:d1:6b:66:7c:40:6b:6a:5d:b6:
e9:a0:de:9f:ec:02:f6:83:e5:80:8c:22:ff:33:97:c3:06:1a:
78:88:f9:1b:98:8f:bd:e1:dd:5a:0d:3a:d6:3f:bd:22:61:a8:
65:d4:b4:79:44:8b:dd:b8:8d:68:61:3c:92:2d:d8:a5:2d:c7:
bf:a7:42:7e:1d:bb:c0:97:05:34:cf:d2:19:14:df:c1:56:22:
10:f4:bf:5a:c8:25:67:73:be:58:93:60:da:55:e3:de:1f:bc:
e2:c2:a7:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 20:05:37 2025 by rpki-client