Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
File: gSdW6ySj41K9bonR9aoISIlhpnQ.mft (raw, json)
Hash identifier: Bftoup6lAbfj99bViRO1exzcx1nr+syC0jSXz/sM18c=
Subject key identifier: 41:96:1F:97:46:9A:FF:5F:CB:27:3C:2B:07:84:BC:DD:AB:37:12:76
Authority key identifier: 81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
Certificate issuer: /CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Certificate serial: 019A4D07150654212826BD9AD09308027B6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
Manifest number: 0A23
Signing time: Tue 04 Nov 2025 04:01:40 +0000
Manifest this update: Tue 04 Nov 2025 04:01:40 +0000
Manifest next update: Wed 05 Nov 2025 04:01:40 +0000
Files and hashes: 1: gSdW6ySj41K9bonR9aoISIlhpnQ.crl (hash: +oLUXvHaNmj9aLcdEIRd6NrZR/BNcuDE9fUNqfoU0IA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 04:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:07:15:06:54:21:28:26:bd:9a:d0:93:08:02:7b:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Validity
Not Before: Nov 4 04:01:40 2025 GMT
Not After : Nov 5 04:01:40 2025 GMT
Subject: CN=41961f97469aff5fcb273c2b0784bcddab371276
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d6:c5:6b:5c:a0:eb:db:ae:ab:b4:f5:d0:26:
9e:af:f4:b4:d5:93:cb:1b:82:fa:57:1a:b9:f6:e9:
eb:c2:c0:2c:b6:87:22:91:72:50:0d:d1:80:48:bf:
4b:9a:9d:65:63:68:ab:36:be:c2:71:97:3a:c4:0e:
70:33:8a:d9:fd:17:93:e5:53:ee:da:c0:9b:ed:31:
e6:82:35:50:ea:2c:a0:21:56:1e:3a:00:b5:c1:ee:
34:99:b8:62:c6:c8:22:3f:ba:45:2d:65:7d:73:42:
8e:7e:2a:f3:eb:3e:3c:ee:2e:73:d2:d7:24:cd:0e:
09:b7:34:62:ef:01:76:d6:4a:5a:85:7d:86:b7:71:
ef:e8:a0:c8:54:f9:41:b5:92:ad:86:e8:f9:29:34:
5f:ea:24:7d:80:c1:d1:de:ab:77:c6:2b:a8:e4:1c:
72:9f:9b:ef:83:07:a6:60:18:d1:f6:76:c1:cd:33:
6b:45:cd:15:cb:0e:07:9d:f9:77:7b:78:bb:fc:d5:
7a:a6:d5:ce:b2:2e:38:25:9c:3c:2d:87:90:93:d1:
85:06:08:7f:40:0a:0e:40:5f:2e:ad:2d:3c:e4:48:
24:13:0d:71:7f:f7:77:8d:a9:a9:a2:be:bf:16:94:
41:c3:db:6f:4a:42:32:69:aa:d9:59:a7:69:61:9b:
af:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:96:1F:97:46:9A:FF:5F:CB:27:3C:2B:07:84:BC:DD:AB:37:12:76
X509v3 Authority Key Identifier:
keyid:81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:9c:af:a7:95:98:4f:a9:d2:e8:f6:dc:97:81:96:f5:b1:4c:
42:ed:ac:cb:34:2c:9a:93:33:91:cb:4b:dc:a3:ba:18:c2:a8:
53:ba:77:6b:fa:c3:92:a6:4b:93:1f:bb:58:f3:1f:93:ac:0f:
f4:07:a8:e6:75:6a:5b:77:c2:b9:43:d7:18:75:71:4a:29:07:
01:d9:e6:5d:7b:04:9b:0e:f2:d6:96:85:b7:49:b7:89:5b:4e:
a7:e1:a6:61:40:c5:ef:a8:ef:90:72:00:c5:94:b8:e9:5b:f8:
b2:ba:44:4e:e5:e9:95:4a:c0:38:bc:3f:0e:f1:8e:56:1a:9e:
0a:85:d6:ef:c4:92:34:87:33:e2:42:c0:43:64:4b:96:29:79:
15:88:8f:11:03:5f:c9:81:5a:c1:fa:95:37:bf:92:dc:90:59:
2a:0e:f9:c9:98:8e:b7:6a:c2:e6:67:95:e7:0c:21:b1:80:2a:
9e:52:8f:b1:1d:c5:3d:bb:7e:dc:4e:df:39:c1:02:0c:c1:f0:
7a:16:bd:be:87:be:f3:a9:8e:f4:c7:12:13:05:ac:25:a5:8a:
b4:25:0f:14:e1:ae:31:1d:4a:a1:1e:f5:aa:c9:30:a6:28:03:
6d:d7:15:44:aa:4c:8c:4e:50:8e:39:24:5a:6c:6f:3b:c8:d1:
cc:b8:14:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 10:52:34 2025 by rpki-client