Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: jD6KVyHTyv1dR3QpKah7GH0fIdS3hdvi3WY5aBDneCA=
Subject key identifier: 48:01:B6:99:12:A0:62:D0:D7:67:6E:97:C3:69:3C:6A:FB:02:20:17
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 0196B822F870E84EC341E4365C435B2CF41B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 0389
Signing time: Sat 10 May 2025 03:00:21 +0000
Manifest this update: Sat 10 May 2025 03:00:21 +0000
Manifest next update: Sun 11 May 2025 03:00:21 +0000
Files and hashes: 1: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: ZtRqhL1tM3rUFbI4aeWRdH3Jur5jkVgOn5ndZEc0a8A=)
2: knOts_9A8gA0IVqYk7a99kaTuRI.roa (hash: kCE50cAQS4imaI4wXAlSfVZnkYJchZQUkd+tGc4tAWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 10 May 2025 19:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:b8:22:f8:70:e8:4e:c3:41:e4:36:5c:43:5b:2c:f4:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: May 10 03:00:21 2025 GMT
Not After : May 11 03:00:21 2025 GMT
Subject: CN=4801b69912a062d0d7676e97c3693c6afb022017
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:5a:eb:f0:8a:f1:69:64:7d:b5:d2:9a:43:0f:
ba:59:02:6e:3a:33:fa:e2:a8:ce:84:28:71:64:68:
20:47:1f:77:58:7f:c4:6d:ea:b8:69:87:bf:66:6c:
98:46:f7:f3:a9:06:9b:5d:a3:7f:2f:30:c4:b2:70:
f6:c9:e2:5c:38:99:47:17:e5:a5:60:d3:d3:f8:0f:
43:62:99:b0:98:c0:7a:5a:a8:08:7d:f3:93:8b:0a:
b0:d8:bd:fe:46:ea:e5:8a:a7:3f:87:bc:63:d7:66:
54:53:9e:be:b2:8f:67:19:d1:88:13:50:46:d1:e6:
ed:86:51:f4:8b:56:e8:63:f0:1d:f3:0c:dd:5e:67:
d4:cf:1b:45:3f:45:5d:e5:a9:ef:d5:d6:f3:59:5c:
53:f2:eb:f3:86:92:3d:22:eb:4a:b0:ed:95:bd:55:
73:0f:42:fb:23:a8:b7:97:45:6c:78:72:af:9a:e1:
44:a8:9f:b3:ef:c7:cb:a7:6a:b6:02:e8:c4:07:e3:
82:7f:39:7b:be:db:0a:01:e7:32:ea:b4:93:a9:80:
c8:ef:4d:88:ee:20:2c:4b:37:22:26:71:05:97:5a:
f0:f4:bf:cc:f4:ce:9e:4e:a8:98:6d:d5:4d:14:74:
1c:cd:2a:d4:4c:2d:3c:1e:ca:0b:48:35:10:fc:5c:
5f:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:01:B6:99:12:A0:62:D0:D7:67:6E:97:C3:69:3C:6A:FB:02:20:17
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:85:92:57:e4:3d:a0:d1:6e:b5:19:52:5e:65:c9:63:3e:37:
a8:34:85:bd:75:e3:a7:81:48:06:16:82:0f:52:8f:91:08:6a:
b0:25:3d:de:57:dc:aa:25:f4:df:81:13:9e:50:c2:e2:ad:78:
7f:00:d4:55:6c:a3:04:28:05:8c:f3:1f:0c:c4:16:bf:11:ea:
67:85:1b:7a:31:5a:e9:52:66:9c:f1:c5:ca:d9:31:9d:33:52:
d2:51:69:56:d7:88:d0:f2:c8:d6:6c:e2:98:2c:87:8c:4d:5d:
48:01:41:b7:3d:89:47:de:01:4a:b7:ad:cd:de:29:33:c8:be:
8b:e2:d1:cc:63:9d:e3:3e:fe:13:61:73:d6:68:0a:35:91:4d:
bd:69:e9:50:19:81:fb:7b:c4:b5:fb:7a:12:97:a1:43:24:b3:
55:d2:f4:b6:63:6a:00:a6:b4:13:64:f4:70:ad:ee:41:e2:ef:
63:72:fa:ca:17:cd:e7:f0:a4:ba:aa:89:e3:2c:a7:30:5a:7c:
06:3f:1e:6f:ac:1e:7b:5a:6c:c7:b8:31:79:0a:6d:6e:5b:ec:
7f:12:65:33:60:30:0c:12:d0:f9:b0:66:50:52:62:c3:b5:48:
cf:27:07:84:80:e4:8d:cc:68:c3:69:0a:77:21:eb:cd:ec:23:
50:83:83:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 10 04:54:02 2025 by rpki-client