Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: ODpjMQoeuZ6CpNJtc0QTAT5V0nQeEpkYxY+AToH88us=
Subject key identifier: 6D:98:5A:50:FA:09:E2:4F:4E:F4:EB:50:5D:14:7D:3F:92:C7:16:E0
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 01977B3064A31C540265C5B1044FECD277BB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 03EE
Signing time: Tue 17 Jun 2025 00:00:58 +0000
Manifest this update: Tue 17 Jun 2025 00:00:58 +0000
Manifest next update: Wed 18 Jun 2025 00:00:58 +0000
Files and hashes: 1: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: xc4Vf1Nu420Kfr3WRpzSAensw6gb8kAQ45uT7H/NC4w=)
2: knOts_9A8gA0IVqYk7a99kaTuRI.roa (hash: kCE50cAQS4imaI4wXAlSfVZnkYJchZQUkd+tGc4tAWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Jun 2025 23:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:7b:30:64:a3:1c:54:02:65:c5:b1:04:4f:ec:d2:77:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Jun 17 00:00:58 2025 GMT
Not After : Jun 18 00:00:58 2025 GMT
Subject: CN=6d985a50fa09e24f4ef4eb505d147d3f92c716e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:70:3b:40:ff:71:81:6c:88:37:37:e9:d3:ec:
c5:2b:be:43:d1:2b:b2:3d:f7:75:c1:f9:03:10:e8:
be:5c:cb:d1:8d:17:e2:ef:ac:92:66:4d:22:fb:70:
68:44:37:c1:37:cc:b2:48:6a:be:65:9b:2e:d6:2e:
cd:8c:c1:65:80:c5:4b:91:b9:e9:50:23:74:7e:e2:
b2:1f:4a:b2:1e:ec:ed:1d:be:a1:0d:b4:79:a8:6f:
5e:eb:8a:6a:a9:8f:39:32:0c:12:97:e1:81:e6:35:
a3:32:10:35:61:25:a4:cc:00:b6:e5:a4:ab:fd:6b:
33:e2:46:c5:12:f7:76:55:f3:34:02:82:95:64:25:
05:d8:79:68:81:12:03:fc:a6:3f:43:cc:fe:1b:6b:
5c:46:9c:d0:72:c2:85:11:3c:05:5e:cc:b8:0c:1f:
0f:24:60:6b:28:ae:c2:2f:ce:c5:38:08:cd:26:ec:
2d:b9:c5:e0:5f:e3:44:2c:12:fb:89:6b:97:d4:a7:
e6:34:94:04:a8:39:b7:62:10:24:9d:82:8b:29:38:
b1:48:b6:07:d2:2d:2b:35:b6:62:ef:ab:25:47:34:
d0:80:43:ce:ab:af:c9:e9:bc:ad:7e:8e:3b:5e:a5:
0a:90:ec:18:91:49:56:b2:30:d0:27:0b:96:69:22:
4f:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:98:5A:50:FA:09:E2:4F:4E:F4:EB:50:5D:14:7D:3F:92:C7:16:E0
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:4a:8b:f8:82:a2:7b:48:e0:d9:e4:2c:33:36:9d:25:14:68:
3a:00:1f:6d:52:d0:d1:b8:72:4f:7f:c2:52:90:5c:2a:49:21:
f4:c2:09:9b:86:fe:76:1e:9c:df:e4:b3:bf:0c:2c:b9:99:84:
8f:e7:8c:c2:b4:60:74:02:f1:e1:61:0d:59:36:44:b1:44:f4:
e3:d3:35:a8:12:01:06:13:24:a2:e6:3d:7e:bf:7a:ee:dc:54:
7c:fc:c9:84:6f:b4:17:0d:3f:99:cd:9d:f6:e1:54:3f:f1:16:
18:52:ae:65:15:cb:49:ea:7c:70:3f:1b:37:6f:38:09:b3:01:
2c:aa:d0:bf:f9:e9:1d:24:ac:28:c3:27:6d:e7:a5:5d:0b:4f:
60:66:7e:f6:c5:1c:18:e2:5a:6f:44:09:fc:86:9d:45:4b:05:
89:3d:87:d8:87:d0:20:30:9f:4d:05:0a:de:7b:98:53:05:51:
8e:5f:52:4c:bb:6c:52:eb:c1:59:97:69:af:69:bd:06:0e:38:
80:05:90:51:c9:fc:9b:e5:0b:24:91:ae:26:58:ab:f1:1c:4d:
4f:a1:3a:48:d8:09:e5:ea:92:4c:63:f3:34:ec:f0:bc:04:5a:
8d:1c:7f:f6:d0:2f:e8:0d:8f:dd:72:20:f5:b2:43:9a:dd:73:
d1:21:9e:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 17 10:04:15 2025 by rpki-client