Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
File: goIekswnAHYZMDmOI4DCOqR1XxY.mft (raw, json)
Hash identifier: KSGBQdYij7uCk8pPpVAWjCsocUWD5fCK0RGvcxHAPkU=
Subject key identifier: EA:76:DA:40:0A:40:51:16:B0:68:8F:86:91:5D:D2:14:DE:94:9D:13
Authority key identifier: 82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
Certificate issuer: /CN=82821e92cc2700761930398e2380c23aa4755f16
Certificate serial: 019A4EF5A5319B9B0EF53E0DC08829768362
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
Manifest number: 07C2
Signing time: Tue 04 Nov 2025 13:01:52 +0000
Manifest this update: Tue 04 Nov 2025 13:01:52 +0000
Manifest next update: Wed 05 Nov 2025 13:01:52 +0000
Files and hashes: 1: goIekswnAHYZMDmOI4DCOqR1XxY.crl (hash: X0evFsU68iffBVsfWdDoDF+h8rSnUyBn2u+u+KFSw0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:f5:a5:31:9b:9b:0e:f5:3e:0d:c0:88:29:76:83:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82821e92cc2700761930398e2380c23aa4755f16
Validity
Not Before: Nov 4 13:01:52 2025 GMT
Not After : Nov 5 13:01:52 2025 GMT
Subject: CN=ea76da400a405116b0688f86915dd214de949d13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:16:7a:4d:19:d0:f9:80:93:7d:b3:d3:74:28:
d2:06:f4:eb:79:29:45:24:f5:ff:02:24:23:a4:ac:
5a:46:ca:0b:21:53:e9:36:9b:37:58:4a:13:4d:f1:
2f:a4:c9:39:f2:da:f2:7f:2a:75:19:f3:25:7f:d7:
0d:4d:87:b1:33:4d:83:35:89:86:85:6a:fb:87:af:
64:4b:ec:dc:2e:63:43:71:af:77:71:3b:e5:9f:b6:
65:2e:39:5c:28:6b:6a:b9:c3:39:c2:75:0b:7f:df:
c3:37:7e:f4:a3:20:a2:79:00:c1:67:fd:d5:88:31:
1b:b7:34:f8:68:14:89:cb:3c:a5:e8:39:25:53:e4:
63:c8:0f:8f:36:22:46:63:a6:90:cb:a3:46:81:e1:
8f:f8:98:f9:6a:32:e7:f6:53:63:52:e8:7f:94:07:
da:e4:7a:80:b2:85:50:86:89:44:16:4b:f1:ba:49:
34:56:bf:7b:d3:bf:c4:26:d2:7d:3a:1c:82:19:5d:
77:88:7d:f2:ab:89:77:cc:48:65:3c:25:dc:6b:d8:
14:4a:11:41:da:72:e1:36:5f:72:1f:ed:b8:36:fc:
a5:06:54:ea:eb:f5:00:29:de:0a:ea:c9:51:15:6e:
b3:a7:65:6e:81:ab:0f:de:56:be:1d:55:32:12:bd:
9f:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:76:DA:40:0A:40:51:16:B0:68:8F:86:91:5D:D2:14:DE:94:9D:13
X509v3 Authority Key Identifier:
keyid:82:82:1E:92:CC:27:00:76:19:30:39:8E:23:80:C2:3A:A4:75:5F:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goIekswnAHYZMDmOI4DCOqR1XxY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/1b3bc0-faed-48fb-b3f0-08b62b8efe71/1/goIekswnAHYZMDmOI4DCOqR1XxY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:0e:a9:e7:8e:bc:92:5b:50:0e:bd:94:a7:36:c5:b1:39:bb:
8f:9a:cd:c7:7e:c9:fe:fb:e0:66:47:cd:9f:3b:98:72:58:19:
7b:e6:e1:e3:c5:f0:c6:46:35:49:12:e2:b8:eb:f3:a6:ec:b4:
ff:8e:c4:a2:6d:ea:19:7f:b8:cd:bc:f6:62:a3:73:98:50:b9:
4a:66:a3:e1:35:43:f8:08:80:03:13:66:a1:c1:ef:ea:9c:31:
ec:41:3a:7f:84:11:10:25:da:07:8e:ff:c4:10:6d:67:a0:cc:
be:4b:93:7d:75:52:63:67:cd:96:eb:7a:4a:af:6b:84:7c:b8:
b5:5a:6b:1f:9c:e8:44:62:1f:22:12:4e:5d:65:cc:d8:32:fb:
a9:90:1c:96:ed:94:81:21:9f:91:84:7e:e0:71:a2:dd:e1:7d:
2e:8b:c0:6f:eb:e8:e0:91:21:9e:57:29:13:58:61:59:c5:dd:
ef:d0:45:11:b7:b6:54:41:e2:b3:cb:1d:92:30:f9:00:c2:a9:
dc:86:0e:42:15:2f:1b:31:7c:ff:0c:b0:bd:3c:f8:0f:a0:90:
fc:ef:f1:2f:86:2f:f6:7b:7a:98:26:3f:36:a1:37:6f:2a:b9:
28:fc:f1:d2:56:a7:f9:26:cf:90:6b:3a:c3:18:19:14:2a:77:
92:a1:38:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 18:14:54 2025 by rpki-client