Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
File: gXRkmx7wDcg8KFOaOdKQs1MO37A.mft (raw, json)
Hash identifier: a1lg5AHV7oXExQJDMxfZ8ca63OVw7EGDgePmz4ej+0Y=
Subject key identifier: CA:DF:77:0A:D3:8D:14:06:99:DB:91:45:C2:CF:D6:45:AE:12:43:D0
Authority key identifier: 81:74:64:9B:1E:F0:0D:C8:3C:28:53:9A:39:D2:90:B3:53:0E:DF:B0
Certificate issuer: /CN=8174649b1ef00dc83c28539a39d290b3530edfb0
Certificate serial: 0196BC000CC2D335E77BDA1D576A12A616BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
Manifest number: 40
Signing time: Sat 10 May 2025 21:00:41 +0000
Manifest this update: Sat 10 May 2025 21:00:41 +0000
Manifest next update: Sun 11 May 2025 21:00:41 +0000
Files and hashes: 1: GQ42kTqn472NU0Utg1aKLG7W0bI.roa (hash: oM3P06tzeH7/sG3RLnC5jVN3WHhv6hvEc5nYDWBm418=)
2: gXRkmx7wDcg8KFOaOdKQs1MO37A.crl (hash: gQgIqrCpT0Vr8SpLsv4qPJg8T53tRp4c9ZWPREfAjDM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 11 May 2025 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:bc:00:0c:c2:d3:35:e7:7b:da:1d:57:6a:12:a6:16:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8174649b1ef00dc83c28539a39d290b3530edfb0
Validity
Not Before: May 10 21:00:41 2025 GMT
Not After : May 11 21:00:41 2025 GMT
Subject: CN=cadf770ad38d140699db9145c2cfd645ae1243d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:05:bd:c3:57:01:64:2f:24:af:f6:b2:c0:30:
68:e3:55:fc:6a:9c:01:58:2e:24:68:b2:4c:3c:bf:
a5:93:55:dd:07:ee:1c:e6:5f:8e:57:2b:75:d0:fa:
67:bc:9e:15:d5:70:ee:6f:d8:50:d3:54:6a:56:7a:
40:31:15:e5:7d:9c:87:07:4c:2e:71:47:8c:7c:b7:
b2:80:51:f8:d2:75:07:28:b7:f1:09:c6:56:ad:6a:
75:42:f2:67:0e:d1:58:9d:db:2c:e3:87:73:0e:1d:
32:97:4d:16:ac:f6:f5:6c:a4:a3:4c:3d:6b:b9:43:
22:d9:ce:8e:08:2d:d1:86:5f:3e:f8:50:99:cf:00:
8d:d1:c2:0f:ac:c3:19:1a:4d:53:2f:b3:20:f4:23:
a9:3a:70:12:b6:3b:05:25:3b:5a:83:f9:4e:ec:c5:
23:bd:0a:2d:20:a2:25:b9:0e:44:87:60:7c:00:61:
72:9c:74:27:d1:32:0d:ad:ee:61:f2:f4:1f:66:f8:
4e:4b:53:c6:22:ec:a6:ac:a8:50:22:ff:5d:63:51:
75:d4:0b:b6:7f:ff:30:46:41:59:b4:bc:e2:87:25:
4e:b6:43:b6:10:91:11:d8:93:7c:1e:db:a7:1b:e3:
4e:f4:2e:c7:3d:58:c1:a2:0f:6c:c2:53:1b:6f:0d:
1e:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:DF:77:0A:D3:8D:14:06:99:DB:91:45:C2:CF:D6:45:AE:12:43:D0
X509v3 Authority Key Identifier:
keyid:81:74:64:9B:1E:F0:0D:C8:3C:28:53:9A:39:D2:90:B3:53:0E:DF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:d8:98:32:f0:62:3e:fc:2c:58:6c:39:f0:b3:27:c3:df:36:
1c:03:d1:a3:c6:fb:80:21:9b:b4:59:11:8b:22:0c:d7:60:3b:
0a:6a:85:83:a4:25:f1:17:ed:46:66:11:c8:b3:3d:a4:9e:7d:
12:61:f3:af:e0:ba:95:d8:be:53:0c:f8:80:0c:9c:ee:48:ff:
58:54:20:98:fe:2b:e4:e6:7a:cc:c6:b4:5c:d4:a0:a7:f2:b9:
92:15:69:13:4e:02:82:03:dc:cc:0d:10:f3:42:d0:32:06:74:
9e:be:d9:b9:e0:03:b7:df:da:a6:99:be:d3:09:ee:45:9c:61:
9b:3b:0f:cc:7e:3c:74:db:21:b3:d8:e6:ae:64:02:d2:f7:c5:
7d:33:3b:26:0d:2e:b8:05:71:3e:5e:78:e9:47:3e:71:95:95:
d7:35:e9:26:69:b0:fd:48:6b:1c:16:fb:80:c4:a1:9f:80:64:
d4:dc:d4:68:9b:2c:aa:b1:2d:52:aa:03:f6:62:ac:c6:70:b1:
2b:14:77:6d:49:bb:e4:08:ab:39:d3:cc:99:80:da:9c:77:6d:
21:a7:31:a1:e7:3c:ac:6d:95:ef:e4:e6:f3:30:23:00:0b:09:
fd:79:56:75:01:fd:6a:b2:da:d1:3f:d5:ea:46:7b:10:af:da:
11:d9:ce:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 23:26:37 2025 by rpki-client