Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: mlqq/pq2SryBasxgpcQSVb3Zzc3ynvgrnmehXNOMMkA=
Subject key identifier: DC:DE:F4:87:36:E4:74:EE:E7:E0:85:50:5F:3A:33:E6:9E:C0:A4:90
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 01987DF7D55DBD32A28C4CC7C241E219D244
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 0474
Signing time: Wed 06 Aug 2025 06:00:50 +0000
Manifest this update: Wed 06 Aug 2025 06:00:50 +0000
Manifest next update: Thu 07 Aug 2025 06:00:50 +0000
Files and hashes: 1: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: QWm/RzK8SjqBMZ3vKDJ2jnlctQcFyGHv1ptdPoccvik=)
2: knOts_9A8gA0IVqYk7a99kaTuRI.roa (hash: kCE50cAQS4imaI4wXAlSfVZnkYJchZQUkd+tGc4tAWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 Aug 2025 06:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:7d:f7:d5:5d:bd:32:a2:8c:4c:c7:c2:41:e2:19:d2:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Aug 6 06:00:50 2025 GMT
Not After : Aug 7 06:00:50 2025 GMT
Subject: CN=dcdef48736e474eee7e085505f3a33e69ec0a490
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:38:b2:e3:6c:5f:ad:e6:e8:5b:f6:6f:8a:7a:
ff:0e:17:0a:1c:00:ae:58:c3:0c:d3:11:42:65:05:
fc:02:89:2b:94:95:8e:29:9c:b1:a6:50:d6:4e:d4:
86:a3:a7:5c:60:36:f5:80:a7:f7:6c:db:bc:a0:2a:
3b:05:3c:9c:c0:53:c6:94:38:1f:ca:93:02:4a:94:
09:85:c9:e6:27:1d:80:ce:23:64:0c:d7:46:e5:38:
ef:c4:1a:08:41:c4:cd:2c:22:66:46:66:00:d1:96:
43:90:a2:30:c6:24:29:13:f1:b2:f9:32:0a:34:50:
bd:b2:71:00:a4:b5:fe:d3:8d:e7:c8:9c:a4:46:c1:
87:9b:0c:94:4a:cd:fd:9d:36:dc:e2:b0:4a:48:20:
2a:4b:21:65:53:d6:9f:b4:c5:4b:b9:23:71:54:52:
c3:77:64:08:d3:b3:db:65:75:8c:f5:25:b6:cb:0c:
59:ff:62:db:bc:f8:9e:3b:77:b8:0c:eb:58:35:da:
ed:e8:2d:04:f1:cc:d5:48:3d:ea:80:17:59:e4:5e:
2d:8f:63:f8:fe:72:57:4a:b5:83:87:48:ba:0b:14:
f4:12:55:16:cf:8a:62:d8:ac:a2:76:6e:cc:55:c4:
c2:58:cc:91:4c:d8:31:e7:84:b1:69:0c:16:b8:4a:
74:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:DE:F4:87:36:E4:74:EE:E7:E0:85:50:5F:3A:33:E6:9E:C0:A4:90
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:1c:94:68:af:75:a8:f0:e9:62:f6:92:84:99:ba:62:4f:62:
4d:16:4d:24:cf:f2:a0:4b:3a:11:e7:5e:95:41:4b:bb:bc:86:
f2:65:26:18:71:35:60:d1:d8:07:8a:cf:e0:c8:30:94:6f:54:
a8:d9:97:50:5d:aa:00:bc:70:bf:c1:82:43:3c:3d:36:a5:e3:
df:93:d1:09:e7:31:08:48:60:ab:0d:7e:33:b2:dc:2a:93:39:
1a:ad:2b:a7:d4:7b:8c:da:20:13:b9:06:cc:ef:67:ac:27:7b:
61:0f:b2:78:e5:0f:84:c8:a4:cd:8b:1c:10:20:4e:ca:a8:c0:
46:a6:ad:37:0d:bd:73:ef:82:71:44:2b:64:5d:6e:77:f1:9c:
64:c5:a0:36:f8:a5:f3:44:0d:16:b9:14:4e:2a:72:6a:5c:cc:
6d:cd:10:80:81:4a:8e:c5:b2:38:1e:98:90:95:9f:3d:3c:75:
92:35:73:a2:41:86:f5:e7:21:26:a6:26:b5:8f:b9:7b:b6:e7:
e3:34:4e:ec:ef:49:d3:b3:e7:d4:4e:35:bc:de:9d:a4:27:69:
0e:81:0b:83:bd:01:04:37:98:46:e1:d1:fe:bc:84:4e:77:dd:
f7:1a:14:94:1d:0c:d5:30:ca:e4:36:43:47:0b:7b:17:25:82:
83:43:27:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZh999VdvTKijEzHwkHiGdJEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwYTkyMTQwODQzM2I2NmVhNTBhNDAwMGFhY2UxMGQyYWRk
MDZhODUwHhcNMjUwODA2MDYwMDUwWhcNMjUwODA3MDYwMDUwWjAzMTEwLwYDVQQD
EyhkY2RlZjQ4NzM2ZTQ3NGVlZTdlMDg1NTA1ZjNhMzNlNjllYzBhNDkwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTiy42xfreboW/Zvinr/DhcKHACu
WMMM0xFCZQX8AokrlJWOKZyxplDWTtSGo6dcYDb1gKf3bNu8oCo7BTycwFPGlDgf
ypMCSpQJhcnmJx2AziNkDNdG5TjvxBoIQcTNLCJmRmYA0ZZDkKIwxiQpE/Gy+TIK
NFC9snEApLX+043nyJykRsGHmwyUSs39nTbc4rBKSCAqSyFlU9aftMVLuSNxVFLD
d2QI07PbZXWM9SW2ywxZ/2LbvPieO3e4DOtYNdrt6C0E8czVSD3qgBdZ5F4tj2P4
/nJXSrWDh0i6CxT0ElUWz4pi2Kyidm7MVcTCWMyRTNgx54SxaQwWuEp0pwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNze9Ic25HTu5+CFUF86M+aewKSQMB8GA1UdIwQY
MBaAFICpIUCEM7ZupQpAAKrOENKt0GqFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0traFFJUXp0bTZsQ2tBQXFzNFEwcTNRYW9VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kODA5YjEtZmFmNy00MGMyLTk0YmEt
ZjE4MTVhNDFhMDMzLzEvZ0traFFJUXp0bTZsQ2tBQXFzNFEwcTNRYW9VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9kODA5YjEtZmFmNy00MGMyLTk0YmEtZjE4MTVhNDFhMDMz
LzEvZ0traFFJUXp0bTZsQ2tBQXFzNFEwcTNRYW9VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhxyUaK91
qPDpYvaShJm6Yk9iTRZNJM/yoEs6EedelUFLu7yG8mUmGHE1YNHYB4rP4MgwlG9U
qNmXUF2qALxwv8GCQzw9NqXj35PRCecxCEhgqw1+M7LcKpM5Gq0rp9R7jNogE7kG
zO9nrCd7YQ+yeOUPhMikzYscECBOyqjARqatNw29c++CcUQrZF1ud/GcZMWgNvil
80QNFrkUTipyalzMbc0QgIFKjsWyOB6YkJWfPTx1kjVzokGG9echJqYmtY+5e7bn
4zRO7O9J07Pn1E41vN6dpCdpDoELg70BBDeYRuHR/ryETnfd9xoUlB0M1TDK5DZD
Rwt7FyWCg0Mnxg==
-----END CERTIFICATE-----
Generated at Wed Aug 6 14:06:04 2025 by rpki-client