Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
File: gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft (raw, json)
Hash identifier: kmG1C+X0aV00Ut0+IoLFR8/PXtgFnih9nVHxdRmagCQ=
Subject key identifier: EB:3B:90:13:2B:B4:76:75:E7:E1:86:70:BC:A8:0D:9F:87:82:C8:6F
Authority key identifier: 81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
Certificate issuer: /CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Certificate serial: 019873E2236C33E65BC03B15A31BE31E8714
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
Manifest number: 0F85
Signing time: Mon 04 Aug 2025 07:00:56 +0000
Manifest this update: Mon 04 Aug 2025 07:00:56 +0000
Manifest next update: Tue 05 Aug 2025 07:00:56 +0000
Files and hashes: 1: gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl (hash: M1j3G9cOWqTf8FJdEoGsvfLgIfGHnpok3ZD5JV0uuus=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e2:23:6c:33:e6:5b:c0:3b:15:a3:1b:e3:1e:87:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Validity
Not Before: Aug 4 07:00:56 2025 GMT
Not After : Aug 5 07:00:56 2025 GMT
Subject: CN=eb3b90132bb47675e7e18670bca80d9f8782c86f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:0e:2d:82:0e:7f:e6:94:4d:76:d8:cb:32:cb:
cf:ba:47:66:bb:e0:bf:40:e1:29:96:0a:00:60:08:
0e:3e:a9:bf:86:8a:b5:e1:7c:07:3e:d1:73:52:3f:
c5:82:a1:18:97:2a:16:cc:bf:ad:0c:64:b0:ad:cc:
73:b6:55:78:a4:e4:60:b3:c1:5d:40:a4:f5:fb:a3:
db:53:ee:e4:83:65:12:af:ce:ba:24:9c:40:6f:16:
04:bd:41:1c:b1:6c:04:73:7c:76:ed:43:88:9c:55:
12:69:58:b2:a8:c8:44:07:2d:19:1c:1f:b3:81:71:
1d:01:e2:64:9c:d2:b8:47:d8:29:0a:29:47:c1:47:
89:3b:ea:7a:91:22:e9:ba:d8:b0:4e:52:79:5b:d5:
af:8a:48:15:30:bb:81:99:8c:e3:4e:46:5c:3c:cf:
dd:8e:b9:ee:71:d6:2b:e8:a7:71:09:7c:e4:92:8a:
18:3a:ff:1c:60:8b:ff:71:cb:77:20:45:37:37:34:
e3:dd:bd:dd:3c:4e:97:45:8a:c4:f7:0c:28:3c:30:
d9:0d:7d:c7:4d:29:94:68:68:25:77:77:d5:cf:e8:
d4:1e:da:84:6d:ff:48:cb:40:77:47:55:3d:68:08:
5f:b1:6b:87:45:be:f2:ed:ae:b5:42:05:f8:4b:b6:
b8:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EB:3B:90:13:2B:B4:76:75:E7:E1:86:70:BC:A8:0D:9F:87:82:C8:6F
X509v3 Authority Key Identifier:
keyid:81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:f7:d8:32:ca:78:73:f8:fd:16:91:3d:89:8d:0e:1b:98:03:
63:ca:00:ad:10:98:86:76:7a:c5:7e:97:58:f8:ef:f9:34:ec:
d4:a1:89:8c:78:0d:5d:81:20:58:c1:bd:b9:6d:a8:74:ed:68:
78:60:48:f8:3c:5c:e9:a3:af:1b:dd:b0:1f:f2:70:db:57:d0:
c7:20:99:fd:4b:bd:6a:6e:1c:f0:a9:a9:bd:83:97:6f:e0:79:
a5:b4:55:97:2e:ce:da:8c:3c:1b:1d:d2:1c:ba:60:3d:9a:0e:
1c:38:a1:f5:d4:6a:bb:f4:57:7c:43:d8:cc:28:08:86:1c:e1:
fa:de:92:c6:31:b4:f9:4c:df:8c:48:06:51:a1:82:84:bc:58:
15:a4:d9:10:dc:df:5e:11:4d:45:0c:ec:9d:d4:6d:eb:49:9a:
60:2e:16:d7:cd:a3:d1:e7:c1:7c:ec:82:38:ac:0a:bd:92:14:
82:59:b8:67:4f:e8:3c:02:96:cc:a3:35:fb:1c:92:22:09:8d:
bd:c0:25:a3:5a:4c:02:b4:c5:a1:ed:fc:a4:f3:6f:72:d6:95:
7f:19:21:39:3d:d2:b8:43:b5:38:67:60:5b:69:fd:de:3d:20:
52:6f:30:81:5f:3f:bd:b1:f4:c4:ce:f6:1c:33:67:4b:1f:86:
de:0b:3b:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:08:43 2025 by rpki-client