Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
File: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft (raw, json)
Hash identifier: lWGR1pmIxUtZcksvtCR/OCHbQecsEOEPDO5pd+2nQQk=
Subject key identifier: 91:46:7A:B0:63:05:B5:40:F8:DC:22:8D:F1:BA:B3:38:A9:CF:9C:B3
Authority key identifier: 82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
Certificate issuer: /CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Certificate serial: 019A4E4FA79A41D79897AAFC7E05E90036B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
Manifest number: 1194
Signing time: Tue 04 Nov 2025 10:00:34 +0000
Manifest this update: Tue 04 Nov 2025 10:00:34 +0000
Manifest next update: Wed 05 Nov 2025 10:00:34 +0000
Files and hashes: 1: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl (hash: rSxN+ZhjxFLe1Y+YkyMCMmlhabQQa+SyoIsrDBSwcNk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 09:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4e:4f:a7:9a:41:d7:98:97:aa:fc:7e:05:e9:00:36:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Validity
Not Before: Nov 4 10:00:34 2025 GMT
Not After : Nov 5 10:00:34 2025 GMT
Subject: CN=91467ab06305b540f8dc228df1bab338a9cf9cb3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:9b:00:8c:41:3f:37:95:1b:18:bc:dc:fd:e2:
31:5d:04:98:a4:2b:99:29:1b:cf:55:31:62:13:04:
5c:f2:30:73:de:0b:cd:b1:3c:c5:1d:43:fb:68:b3:
03:bf:2d:61:c2:4f:6f:f8:ce:f8:6a:4b:eb:ba:4b:
f5:28:63:86:98:d7:3d:ec:19:6c:b0:43:e2:73:57:
02:dd:43:5c:bf:80:2f:e0:ce:04:c4:af:02:7e:e1:
bb:7b:d3:fc:de:ed:ec:82:3f:6c:eb:50:de:fd:fc:
61:6c:75:bc:95:60:5c:40:4b:93:1f:5d:5d:64:7c:
e1:c5:5a:db:1d:57:21:cf:63:94:80:e3:93:7c:e8:
40:de:09:ee:c1:0d:31:47:55:27:63:35:ab:05:60:
0d:3d:73:de:54:72:31:d2:f0:17:37:b2:e4:ba:22:
f5:4f:9f:67:9f:65:3e:79:97:d9:eb:27:a9:01:f1:
5f:a8:b0:c8:9d:30:89:c7:67:ca:72:84:fd:ad:95:
02:0d:03:73:a3:3c:16:ce:11:5b:23:74:f9:e7:36:
8c:69:72:e8:ef:7b:ce:54:9f:61:3d:52:81:8f:bd:
1e:b9:43:ff:32:aa:71:72:1d:0d:0b:90:21:06:68:
5d:d8:ea:48:56:34:61:b6:59:68:cb:40:4b:ca:dc:
dc:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:46:7A:B0:63:05:B5:40:F8:DC:22:8D:F1:BA:B3:38:A9:CF:9C:B3
X509v3 Authority Key Identifier:
keyid:82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:2c:37:9a:21:60:db:38:fd:1d:5a:08:97:22:d9:7d:d5:0b:
dd:fd:89:7c:5f:47:7e:57:8f:c7:a7:78:89:1b:3e:d1:c8:1d:
76:26:26:87:79:5d:9b:4f:8e:37:8e:b6:4e:25:e6:db:b7:69:
24:27:86:e5:1a:4c:b9:af:88:4c:fb:b8:87:9f:e9:56:1a:5c:
31:0c:9e:16:27:bb:03:79:2b:5c:4e:bf:56:77:33:cb:bf:97:
1d:4f:25:8e:d3:49:74:1c:e5:96:af:48:18:d5:76:63:15:73:
07:4e:19:bb:db:96:ca:1b:a6:2d:b9:4c:9a:ee:c2:25:37:81:
6e:a7:88:31:bf:72:58:49:4d:1f:69:95:9f:e9:f9:57:04:62:
7c:b6:b6:cf:2c:60:99:90:92:04:0f:7e:62:8f:7f:4a:22:2d:
22:53:f4:d5:9f:9a:00:e5:9a:7f:cc:1e:c3:e5:7c:07:da:b4:
97:5c:fe:e9:f8:ff:b6:f1:ca:f2:20:83:5a:81:55:68:64:8a:
d2:ed:11:55:3f:0f:17:83:e5:c9:80:3c:7d:f2:bb:cd:ee:42:
d1:4a:34:48:44:5f:82:22:ef:00:b4:81:fb:ab:24:9d:8f:59:
8c:9f:87:b8:a7:98:6b:5b:8f:a3:d3:6b:7b:06:09:20:55:47:
ba:87:da:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 15:17:39 2025 by rpki-client