Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
File: Gk0JI-wQZndgrYguavmhVpnAXvg.mft (raw, json)
Hash identifier: jTlBaexuEi5qXEiQwTopI3JlJmQ7TFJrsKg3GcCRgNk=
Subject key identifier: D8:D5:1B:BB:61:7F:89:DB:72:98:31:77:2A:FB:B2:84:06:90:4F:E9
Authority key identifier: 1A:4D:09:23:EC:10:66:77:60:AD:88:2E:6A:F9:A1:56:99:C0:5E:F8
Certificate issuer: /CN=1a4d0923ec10667760ad882e6af9a15699c05ef8
Certificate serial: 0198A04ECBE4B981AC1FE4E6A5D4C78287EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
Manifest number: 0EC3
Signing time: Tue 12 Aug 2025 22:02:55 +0000
Manifest this update: Tue 12 Aug 2025 22:02:55 +0000
Manifest next update: Wed 13 Aug 2025 22:02:55 +0000
Files and hashes: 1: Gk0JI-wQZndgrYguavmhVpnAXvg.crl (hash: +EAK1uuo7Tudr8b+pGVsagt76dBJKQFtfTCi6qWkusE=)
2: ZdLIbn9HJxp8pdvNeDczvn0TQ4Q.roa (hash: rg+IefpKLZ6BZTDP0ZlvyqCjjEypkuxTFlnDiZulEgg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 Aug 2025 22:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:a0:4e:cb:e4:b9:81:ac:1f:e4:e6:a5:d4:c7:82:87:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1a4d0923ec10667760ad882e6af9a15699c05ef8
Validity
Not Before: Aug 12 22:02:55 2025 GMT
Not After : Aug 13 22:02:55 2025 GMT
Subject: CN=d8d51bbb617f89db729831772afbb28406904fe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:b6:db:b1:80:22:f3:cd:a9:c0:2e:af:0d:8c:
96:e1:4a:00:8f:26:d5:c5:a9:f5:0c:25:76:32:a4:
cc:27:81:16:bf:bf:b8:59:2a:4e:1a:9a:cd:36:e0:
2f:49:29:9c:9f:d8:38:ac:51:17:64:b2:cf:87:a3:
fc:3c:54:66:6a:20:90:a4:61:e2:96:9c:01:87:a9:
51:1b:ec:e0:2f:01:b9:6b:2f:e6:a7:63:96:1a:47:
b4:f6:f8:e3:38:35:d2:21:d0:64:c8:d2:bc:94:6f:
32:49:84:8d:0e:65:e6:d0:35:ed:f5:34:57:84:92:
d7:f9:db:50:9a:a0:a5:ac:76:d2:38:af:79:48:e3:
95:8a:b7:93:e8:88:24:27:65:7f:d2:b5:f6:63:21:
7d:56:7c:4d:57:cb:aa:c7:2e:91:b1:ea:8d:3e:c8:
e7:93:a1:8f:97:0c:03:75:88:8b:7f:04:a1:76:bf:
c5:29:92:b8:59:28:32:e8:ee:d9:85:ea:2d:e5:db:
e3:58:78:5f:e2:27:a9:6b:c9:78:a9:14:82:b2:f2:
57:53:40:04:72:16:2d:2e:c3:0d:e3:90:75:d0:a5:
97:d1:47:04:73:d6:31:73:70:82:64:ef:44:a6:e6:
94:6f:3e:22:0b:e0:4a:25:06:1b:c9:37:31:6e:fd:
be:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:D5:1B:BB:61:7F:89:DB:72:98:31:77:2A:FB:B2:84:06:90:4F:E9
X509v3 Authority Key Identifier:
keyid:1A:4D:09:23:EC:10:66:77:60:AD:88:2E:6A:F9:A1:56:99:C0:5E:F8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gk0JI-wQZndgrYguavmhVpnAXvg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5e/3564e7-11d4-4d7a-8bcc-a953768fde2f/1/Gk0JI-wQZndgrYguavmhVpnAXvg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:18:2a:b4:cf:4f:b1:d4:5c:75:76:3a:01:ec:d8:99:cf:7a:
84:87:5f:0b:49:df:0c:7a:b4:a5:37:ed:85:c9:dc:0f:6b:1d:
1d:0f:b4:85:e9:c8:24:e0:e8:25:c0:e6:06:f1:a8:2d:c4:76:
37:0d:04:dc:36:b4:b3:f4:fa:f9:97:5b:69:d0:8e:f4:c0:7e:
12:e8:e3:cc:08:77:97:d0:e2:7d:c2:d4:7a:a4:ca:19:9b:79:
42:a9:09:c2:04:ba:d0:46:04:c1:ee:56:c9:66:65:f8:a9:72:
4d:c4:dc:00:58:9f:59:fa:db:db:c6:24:ba:bb:79:33:0c:41:
ba:15:56:51:e4:d8:38:23:f7:b9:40:33:f7:66:41:92:07:19:
c1:2e:cf:f2:8f:26:0d:6d:9f:44:e4:ee:11:a8:55:74:4f:2f:
d8:44:56:f0:b1:81:06:a7:57:f3:a0:ef:11:23:50:d7:cf:96:
77:42:6a:a8:61:d5:2b:39:0a:59:86:33:3d:a6:69:36:33:11:
52:a7:f0:ac:ab:60:75:ff:14:d8:d4:e1:20:2d:43:d5:cd:f8:
12:41:86:4d:9c:e3:99:9c:71:cd:e8:77:c6:2e:99:7e:11:77:
6d:be:32:6a:50:79:00:4c:94:90:8a:a4:6d:9c:28:3f:a4:31:
77:bb:9f:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 13 02:16:33 2025 by rpki-client