Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
File: gSdW6ySj41K9bonR9aoISIlhpnQ.mft (raw, json)
Hash identifier: 6o0uQj86Fr1JCAYAteY/l/PyoOivli1k9l1nQs/oJSs=
Subject key identifier: 2A:43:E8:3E:63:06:A7:6C:92:21:04:F6:04:96:98:DD:8D:FA:C7:E0
Authority key identifier: 81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
Certificate issuer: /CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Certificate serial: 019873E4053B734EBAA48B64EFCF53FD4E8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
Manifest number: 092E
Signing time: Mon 04 Aug 2025 07:03:00 +0000
Manifest this update: Mon 04 Aug 2025 07:03:00 +0000
Manifest next update: Tue 05 Aug 2025 07:03:00 +0000
Files and hashes: 1: gSdW6ySj41K9bonR9aoISIlhpnQ.crl (hash: CADUyHZJoovJTJ8o0E7f3D0T84sp28l/mUPJrfgLysQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 07:03:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e4:05:3b:73:4e:ba:a4:8b:64:ef:cf:53:fd:4e:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Validity
Not Before: Aug 4 07:03:00 2025 GMT
Not After : Aug 5 07:03:00 2025 GMT
Subject: CN=2a43e83e6306a76c922104f6049698dd8dfac7e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:4f:72:4b:9f:f0:cb:75:9e:ac:aa:03:db:f4:
a2:77:b7:2c:50:0d:e1:28:69:bc:1d:73:9d:11:32:
c2:0b:61:34:39:3b:80:bf:51:df:53:4d:9c:63:2d:
d5:a7:e9:6a:d7:98:07:32:95:e2:8d:83:05:f9:63:
94:14:3a:62:d5:87:fd:b1:c9:66:21:8a:ba:94:b6:
4a:41:d9:8b:97:58:ca:22:b7:77:7f:59:79:b7:a8:
00:54:be:47:ba:10:c4:f2:42:25:dc:5a:28:85:9a:
9a:55:ca:96:67:5f:e1:39:2e:e1:43:76:fa:fd:72:
cc:ed:9a:a3:d4:77:e4:48:d7:b8:fe:42:98:a5:f2:
93:69:f6:e0:6c:d7:f5:f1:e5:d6:c0:60:cd:d1:7a:
7a:77:4e:54:2f:9f:80:62:ff:47:f8:43:bb:cd:e1:
54:70:f7:2a:f3:5a:b9:2c:a0:82:47:c3:79:0d:e9:
76:e7:d8:8a:0d:b5:16:17:25:f1:d5:f1:dc:07:c1:
d6:79:82:fc:d6:81:74:d8:82:23:c5:51:eb:e7:f3:
09:a1:a1:8e:75:6f:f9:fb:d8:d1:61:f8:27:18:f7:
ef:72:a1:cb:a5:9a:f0:d8:1a:82:d0:78:4b:5e:b2:
3f:9f:24:cf:5a:cc:f1:ff:db:14:a1:ef:b1:63:ef:
59:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:43:E8:3E:63:06:A7:6C:92:21:04:F6:04:96:98:DD:8D:FA:C7:E0
X509v3 Authority Key Identifier:
keyid:81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:18:6f:b1:8f:88:24:d6:f3:19:70:48:48:a6:74:b3:ac:85:
16:e7:3c:cd:cd:6e:02:3f:c0:b0:d8:e3:ce:31:b4:6e:8c:e3:
47:c6:e1:1d:c3:aa:be:d6:eb:7d:5a:e6:13:1e:66:8e:db:c9:
3c:61:52:3f:be:42:b4:e5:56:75:ba:9a:19:7a:2e:b9:2e:74:
30:d6:1e:2a:92:36:da:a7:65:90:42:2c:53:e0:bf:5a:57:98:
02:b7:56:ea:24:69:ec:88:44:da:48:34:a8:b5:41:54:bf:5b:
13:31:10:90:7f:e2:ce:60:9c:24:24:d4:11:d7:0d:7d:b0:44:
cf:5e:eb:a0:f0:c7:13:52:e9:d9:b8:15:3e:81:f6:b7:c7:a8:
4e:49:33:f6:0a:2c:e3:bd:08:e7:e1:6f:65:3a:3a:93:ec:5f:
e8:ad:68:e9:52:8c:ec:f0:61:f0:81:90:e5:bd:36:87:5b:8d:
26:81:aa:27:f9:16:5c:78:00:43:88:2c:00:e2:5b:3b:4d:e2:
90:64:5b:8e:e2:01:ee:20:f5:f3:ca:58:b1:13:95:29:03:20:
e6:b8:14:b2:2d:17:e5:b7:51:5e:69:05:7e:cf:14:26:6c:f7:
d9:f3:d4:b7:b5:ed:9b:c2:7f:1d:df:13:6c:cc:2e:ae:7b:ad:
16:87:a8:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 16:05:23 2025 by rpki-client