Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
File: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft (raw, json)
Hash identifier: bf+YiyrYUWQesqOxwSaUAU4seyVOmPKAg5GjuLV+2Fk=
Subject key identifier: 8E:33:49:48:AB:AB:8A:35:87:83:49:CD:6B:7B:6C:CE:67:E9:7B:F8
Authority key identifier: 82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
Certificate issuer: /CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Certificate serial: 019897EEBDEC8A9281053441C13266D502B2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
Manifest number: 10B1
Signing time: Mon 11 Aug 2025 07:01:02 +0000
Manifest this update: Mon 11 Aug 2025 07:01:02 +0000
Manifest next update: Tue 12 Aug 2025 07:01:02 +0000
Files and hashes: 1: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl (hash: oYYxz36DyN3aPEf+RhSyabec8CCWfiAUuktZjPabuLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 12 Aug 2025 02:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:97:ee:bd:ec:8a:92:81:05:34:41:c1:32:66:d5:02:b2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Validity
Not Before: Aug 11 07:01:02 2025 GMT
Not After : Aug 12 07:01:02 2025 GMT
Subject: CN=8e334948abab8a35878349cd6b7b6cce67e97bf8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:57:43:ec:4b:d7:6d:d1:00:a4:3f:46:94:d6:
30:93:87:63:d4:66:b4:7c:09:3f:cf:c0:49:80:e2:
c0:15:89:54:74:98:5e:e6:25:cc:b1:ac:86:da:c0:
b1:4d:c2:af:24:c8:a9:65:3c:51:ea:0e:2a:67:6c:
ed:df:ee:31:a1:bb:04:ec:79:1c:f9:8d:29:ee:99:
3e:84:7b:05:0c:e5:8e:a2:bb:5e:79:b8:66:d5:e4:
6e:2d:25:3b:3d:67:b7:63:8d:07:67:67:bf:5f:62:
89:a0:9b:3f:ac:1d:28:93:04:70:e8:24:c8:5f:10:
45:27:0d:08:a9:ad:35:53:7b:cb:06:c2:27:8b:1d:
cc:8f:56:f4:92:c5:55:d2:ed:02:70:c1:4f:c3:79:
67:90:38:24:42:72:a4:d5:d1:61:36:46:b1:3e:66:
fe:69:be:c8:39:36:12:cb:eb:32:69:62:a3:13:2c:
29:d1:97:ba:3f:68:cd:7d:b6:42:0d:e1:ee:73:8b:
0a:cd:8e:5b:54:23:3d:18:d9:d4:58:31:6c:6d:f1:
ec:ec:83:56:6c:29:c2:0c:61:7b:84:6f:9f:72:a7:
d0:14:29:94:d6:35:6a:86:60:2b:fe:46:cf:bc:46:
fd:f8:13:21:05:1c:ed:bd:74:94:f4:09:0b:48:b9:
ff:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:33:49:48:AB:AB:8A:35:87:83:49:CD:6B:7B:6C:CE:67:E9:7B:F8
X509v3 Authority Key Identifier:
keyid:82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:c8:cc:b9:f9:59:f9:1e:f3:cd:f2:bb:d3:d5:df:f6:2e:bb:
6c:03:a3:d0:e1:d3:24:16:f3:12:11:50:19:b4:e1:d8:82:0d:
de:b6:35:74:fe:fb:3a:f1:62:00:63:cd:ee:f8:ef:0d:be:ee:
d1:c0:2f:a6:2e:81:f7:41:05:0c:f9:3c:c9:af:2e:56:aa:5a:
2a:d8:1e:6f:2c:88:cb:a7:7d:7d:c6:7a:2a:db:16:19:42:61:
43:95:b0:fa:ff:be:bd:11:dd:f8:83:ee:60:38:17:1d:e0:79:
11:35:6c:3b:16:4f:cb:85:76:00:7d:36:dc:cd:bb:85:a6:4f:
8d:b9:54:9f:09:f9:8f:e1:55:57:3e:b1:f4:ce:c5:73:96:26:
fa:69:93:da:cc:60:4f:41:67:5f:54:d8:91:e4:85:af:32:bd:
09:d0:7f:8b:67:91:d6:76:d0:6a:67:05:44:46:dd:04:f0:a3:
bd:16:14:8a:f1:3c:95:dc:43:1c:80:b8:03:50:cf:9b:c3:5a:
05:dc:36:3a:a0:1a:f6:e4:61:b7:03:fc:ed:4b:fc:c4:62:32:
c8:5f:f4:47:f7:01:e2:e5:40:1c:92:43:73:e0:8c:9b:56:73:
e5:eb:b2:0a:ec:71:91:ee:38:4c:bc:48:d6:2c:92:8b:5f:ab:
86:78:7e:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 11 10:31:26 2025 by rpki-client