Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
File: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft (raw, json)
Hash identifier: sjA91T6/jo7i8otAFg8vGkqPsC++Xv7+wVSm2zonpp0=
Subject key identifier: AA:71:6A:C9:95:72:5D:41:16:56:1C:9B:F3:46:7E:D2:3D:55:56:F2
Authority key identifier: 82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
Certificate issuer: /CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Certificate serial: 019789909D5A9407C76AC9E7171FEFEA5908
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
Manifest number: 1025
Signing time: Thu 19 Jun 2025 19:00:45 +0000
Manifest this update: Thu 19 Jun 2025 19:00:45 +0000
Manifest next update: Fri 20 Jun 2025 19:00:45 +0000
Files and hashes: 1: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl (hash: mwIs5I4Tt99U1Mea41SiGd0J1BVIsMDJUkCer3WxBRI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 20 Jun 2025 15:30:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:89:90:9d:5a:94:07:c7:6a:c9:e7:17:1f:ef:ea:59:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Validity
Not Before: Jun 19 19:00:45 2025 GMT
Not After : Jun 20 19:00:45 2025 GMT
Subject: CN=aa716ac995725d4116561c9bf3467ed23d5556f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:01:bf:42:db:c6:90:81:d0:82:3b:3e:f3:14:
f6:2f:05:6e:66:8c:52:77:1c:ed:e5:a5:9b:00:2a:
b7:05:d7:fb:3b:94:99:3c:af:5c:2d:e8:c2:27:14:
62:8b:8f:ab:ab:9c:6c:89:ca:64:1e:e1:1b:7f:55:
a4:da:28:9d:b2:f4:f7:16:44:47:46:d1:c6:ec:c5:
ae:33:bc:12:01:98:15:b5:5e:d5:d4:b3:94:90:a9:
83:43:93:0d:80:8a:cb:85:e6:cb:8a:6b:a3:c8:c4:
21:49:e9:2f:fd:b0:ca:68:56:54:d3:21:f8:c6:e1:
68:0e:18:dd:0d:78:04:71:6c:25:33:43:56:2c:9a:
1d:98:1d:0f:d2:11:37:ce:1f:93:6e:a5:d3:04:71:
60:d2:52:e0:99:97:37:3e:71:04:7a:db:87:e3:d7:
3e:35:1f:68:a5:b0:94:ad:95:c8:7b:1b:65:3d:bf:
15:7f:39:f5:b9:15:b1:9d:71:1c:5d:11:f7:94:9b:
43:4c:a7:bb:cb:52:ac:8f:88:02:d0:bc:86:f3:89:
45:cb:10:e1:df:66:bb:6c:e1:ca:db:47:b3:9f:57:
a2:d9:7a:70:40:33:98:6d:6f:99:ad:e8:f2:4f:20:
24:52:f0:c6:23:d8:9a:8b:a9:b3:c0:45:7c:bb:1a:
ea:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:71:6A:C9:95:72:5D:41:16:56:1C:9B:F3:46:7E:D2:3D:55:56:F2
X509v3 Authority Key Identifier:
keyid:82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:6b:73:4c:57:04:79:74:7c:17:d8:9b:1f:60:54:ff:4d:5a:
8d:eb:fa:3c:19:b7:3e:c9:b1:89:71:fb:a3:a1:16:dd:d4:41:
14:92:62:a4:b2:22:39:1e:5e:e7:eb:7b:5e:7e:3f:50:dc:b7:
aa:5e:59:58:40:22:53:0c:a8:bf:2d:fa:28:b0:dd:9d:0b:d1:
7d:b6:79:e1:f6:15:ba:a3:39:6a:df:ad:06:49:0f:f4:19:69:
20:8c:c3:b9:0f:d7:73:da:46:9e:c3:17:d5:75:55:bd:01:65:
e9:d8:49:1e:89:89:4f:a4:8b:f3:eb:b3:0b:ec:5e:64:03:73:
3f:da:52:bb:5b:64:ad:96:42:df:70:1e:95:86:30:2f:93:e0:
94:45:14:94:86:66:f0:c2:0f:1e:5f:85:18:9d:0c:6c:42:50:
3a:20:ff:b8:61:93:e7:e2:cf:dd:00:97:f0:03:2e:e2:a4:89:
37:6a:42:c1:8a:68:08:d1:30:21:10:b7:62:05:9b:b9:32:ad:
be:1d:e1:bb:3c:92:30:ba:ae:78:d3:d9:73:28:7f:76:da:a9:
c5:b4:23:8f:22:bd:07:b2:a7:f3:fd:9c:58:af:d2:98:c3:9a:
14:63:ab:6f:55:7a:b4:8a:c3:2b:a3:c2:e1:19:89:b8:5b:f0:
c0:dc:74:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 19 22:46:35 2025 by rpki-client