Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
File: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft (raw, json)
Hash identifier: 0AA4etojyOVNdQhmrpsY6Zcn718I+eNY7D7pj064mK0=
Subject key identifier: 37:4F:39:57:A1:F4:12:0F:E0:38:9C:48:B0:08:6A:BD:9E:FB:C1:1D
Authority key identifier: 82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
Certificate issuer: /CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Certificate serial: 0199FF229BF52F78F30ECD7B0A6B4C3F76D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
Manifest number: 116B
Signing time: Mon 20 Oct 2025 01:01:22 +0000
Manifest this update: Mon 20 Oct 2025 01:01:22 +0000
Manifest next update: Tue 21 Oct 2025 01:01:22 +0000
Files and hashes: 1: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl (hash: AWmeOzUOWOn1Z2ByyRaDPm4lrsoSQ2onTkalxRXqtjI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 20:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:ff:22:9b:f5:2f:78:f3:0e:cd:7b:0a:6b:4c:3f:76:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Validity
Not Before: Oct 20 01:01:22 2025 GMT
Not After : Oct 21 01:01:22 2025 GMT
Subject: CN=374f3957a1f4120fe0389c48b0086abd9efbc11d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d9:3c:6d:5e:09:d2:9a:05:04:e5:00:b5:60:
45:4f:09:fb:cd:c0:96:12:e3:b7:d3:44:0a:e6:a5:
16:a5:75:ff:f0:9c:28:e9:42:36:6f:aa:90:78:0b:
7a:65:43:94:97:c6:e4:90:39:66:4b:4d:d2:d5:02:
41:0e:5e:e0:32:d3:12:42:57:d0:83:20:34:93:11:
67:b5:7b:a6:b7:89:f0:8f:c4:8e:5c:3b:61:62:5f:
d1:5d:98:17:19:87:df:e4:b8:32:a3:1a:48:c0:60:
41:6b:5f:20:23:1b:70:9b:71:bf:85:72:44:b0:55:
9d:cb:89:74:a4:9d:1c:65:eb:35:92:f9:91:bc:86:
a1:7b:6a:ab:72:79:ac:6c:ee:b9:bd:38:5d:d4:0c:
81:e6:2d:29:62:b1:af:af:60:7c:49:4f:cb:e5:bf:
5a:38:a0:44:75:4b:ba:29:7a:98:26:7a:a5:61:58:
ed:35:f5:33:7e:f2:9d:88:19:da:f0:46:3f:39:66:
6a:11:ec:07:8d:f0:1a:76:ee:a6:72:1d:3a:cf:df:
a8:c7:b9:b5:bc:21:a6:d0:36:26:17:a6:0d:ba:63:
a4:20:c9:34:57:41:9f:60:01:c1:0d:4b:a7:a5:7b:
fe:da:bb:f9:d7:70:35:8a:a5:18:f3:d0:7e:00:c4:
75:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:4F:39:57:A1:F4:12:0F:E0:38:9C:48:B0:08:6A:BD:9E:FB:C1:1D
X509v3 Authority Key Identifier:
keyid:82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:48:e1:e6:e3:8e:5f:72:75:e8:da:27:e1:77:b0:a1:9a:1b:
9b:d1:b4:69:84:00:8f:0f:d9:eb:71:be:91:0e:3d:8e:d6:fb:
a7:e2:72:3f:f4:84:38:2b:ea:20:2f:c5:81:b2:26:dd:3b:ce:
33:02:cf:e6:ce:ef:ba:e8:fb:7a:09:ad:48:40:e5:59:01:d4:
8e:50:c3:ad:12:f7:ec:a7:41:8e:ea:1d:4e:f3:25:a8:60:8d:
c1:c8:94:00:3b:ed:04:99:f4:11:a2:c4:ba:a7:2d:1d:b2:60:
20:e4:86:24:1b:dc:12:31:76:6b:28:13:7b:73:d7:64:18:0c:
01:d2:cc:c9:ed:ec:14:6f:65:8d:f0:23:0b:9b:ac:9f:58:42:
c4:52:ea:c0:67:ab:6a:12:e3:72:72:92:c0:95:90:58:fe:4b:
1d:47:d4:7f:fb:83:d5:32:c4:45:9a:4a:9d:7f:1e:38:2c:46:
d5:f4:03:fa:12:05:18:10:c8:0c:ef:57:23:2b:4c:d0:ff:1d:
1b:f4:e1:7d:9a:b6:51:99:d6:d9:17:54:db:da:95:50:01:79:
5b:2b:8d:0f:66:4c:d8:ef:6e:39:2c:cc:0a:e4:2f:b4:3d:6e:
41:87:40:0b:87:c4:cb:2f:2e:c8:3d:6d:6f:1e:16:83:8a:6c:
9e:34:31:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 04:48:21 2025 by rpki-client