Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
File: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft (raw, json)
Hash identifier: WoIwrkEUyD8kdILU1vQ0/Nc5fwvcFCThSaHGCZjRchw=
Subject key identifier: 54:1F:51:A0:C7:29:B6:FC:7A:F2:3D:7B:58:E4:32:71:D0:98:9E:E2
Authority key identifier: 82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
Certificate issuer: /CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Certificate serial: 0198D7A8EA321B9CDC9F020C2F87560CF5C7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
Manifest number: 10D2
Signing time: Sat 23 Aug 2025 16:00:28 +0000
Manifest this update: Sat 23 Aug 2025 16:00:28 +0000
Manifest next update: Sun 24 Aug 2025 16:00:28 +0000
Files and hashes: 1: gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl (hash: bzxuFUI5TI6QslAw9W4dakr22/4G4M9eS2GuwmI2iOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 14:00:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d7:a8:ea:32:1b:9c:dc:9f:02:0c:2f:87:56:0c:f5:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8248c753d46cdc9e98009ee4db8107232c02eaf4
Validity
Not Before: Aug 23 16:00:28 2025 GMT
Not After : Aug 24 16:00:28 2025 GMT
Subject: CN=541f51a0c729b6fc7af23d7b58e43271d0989ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:04:8a:60:6a:43:5a:9c:41:17:2c:06:f4:6c:
d2:6f:1f:8e:f8:19:0f:bf:42:f8:0b:79:1c:65:72:
22:37:77:0a:dd:7b:08:2e:07:49:69:39:4f:1c:9f:
2a:25:98:45:2d:41:19:d8:5d:50:ae:4d:52:db:e0:
89:0e:a3:f7:f5:19:9c:a5:65:8b:30:17:85:9e:fb:
db:f7:ad:9b:36:e7:39:46:1d:89:a2:5a:25:8e:e7:
db:dc:da:42:a2:25:67:2b:40:d3:8d:03:93:d4:dc:
67:12:68:1c:69:da:b2:1a:8e:f1:0a:39:e6:38:47:
54:66:d9:f3:1b:45:df:ba:1c:53:29:42:a2:e1:c8:
cb:60:e4:50:ae:c6:0e:f6:b9:53:fc:62:2c:c5:ec:
7a:7b:07:00:7f:d2:bf:ce:d8:4a:a4:42:1e:5b:6c:
f3:35:6a:c2:3c:b7:35:d9:70:b0:6a:05:74:bf:54:
e9:5c:37:74:ce:8a:56:f9:8b:4f:0e:ea:7a:6d:83:
28:e4:db:b8:34:04:8b:26:4b:18:93:d7:2b:34:d5:
59:d4:c6:dc:4e:a2:84:72:02:ac:04:2c:d2:ab:99:
1d:18:59:78:33:85:33:81:51:e9:e7:8b:e9:58:5f:
bb:2e:fd:0f:bf:1b:28:7e:a2:d8:bd:f5:f9:7d:7b:
d2:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:1F:51:A0:C7:29:B6:FC:7A:F2:3D:7B:58:E4:32:71:D0:98:9E:E2
X509v3 Authority Key Identifier:
keyid:82:48:C7:53:D4:6C:DC:9E:98:00:9E:E4:DB:81:07:23:2C:02:EA:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/1fa426-40d6-4eea-bbac-9133225c9425/1/gkjHU9Rs3J6YAJ7k24EHIywC6vQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:33:e8:52:a3:2d:f4:a4:78:6e:a9:ae:00:75:e3:5a:57:b1:
0d:27:5f:18:7f:4d:52:cd:89:15:74:82:3c:1b:7c:58:a6:60:
85:b1:fd:e3:42:ba:2b:9f:cc:1f:03:01:a9:60:ff:f1:29:f4:
e5:62:14:4d:3c:9c:8a:21:62:24:db:aa:cf:65:bd:e8:a1:97:
a0:02:f7:6c:70:7d:20:f6:99:32:46:23:1e:83:2f:b0:d4:1b:
e4:07:78:7a:98:bf:7c:0f:4f:80:91:56:c6:83:f1:74:e6:79:
63:66:4b:3f:01:7a:4b:02:14:52:c0:c9:2a:73:cc:89:30:ce:
ee:08:f3:a7:f7:9a:49:4f:e5:00:bd:12:e8:02:d1:aa:6a:df:
d8:41:3a:7e:34:87:dc:72:9b:51:bb:9c:59:b6:6d:0c:19:6d:
74:90:48:1b:de:1e:94:48:a7:e4:f3:10:0d:9b:69:4e:57:c6:
76:5a:9b:55:f1:64:51:5c:7f:91:8e:30:81:3c:31:bb:04:86:
e5:8d:51:27:84:78:05:cb:31:68:6a:17:0d:80:71:04:56:7e:
d4:a2:a4:db:ba:ce:5e:dd:a6:de:a2:b3:df:64:9a:34:ab:e5:
91:db:09:f2:d1:86:8c:70:09:dc:6c:eb:2a:8c:f9:e6:82:23:
cc:26:e8:22
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZjXqOoyG5zcnwIML4dWDPXHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyNDhjNzUzZDQ2Y2RjOWU5ODAwOWVlNGRiODEwNzIzMmMw
MmVhZjQwHhcNMjUwODIzMTYwMDI4WhcNMjUwODI0MTYwMDI4WjAzMTEwLwYDVQQD
Eyg1NDFmNTFhMGM3MjliNmZjN2FmMjNkN2I1OGU0MzI3MWQwOTg5ZWUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQSKYGpDWpxBFywG9GzSbx+O+BkP
v0L4C3kcZXIiN3cK3XsILgdJaTlPHJ8qJZhFLUEZ2F1Qrk1S2+CJDqP39RmcpWWL
MBeFnvvb962bNuc5Rh2Jololjufb3NpCoiVnK0DTjQOT1NxnEmgcadqyGo7xCjnm
OEdUZtnzG0XfuhxTKUKi4cjLYORQrsYO9rlT/GIsxex6ewcAf9K/zthKpEIeW2zz
NWrCPLc12XCwagV0v1TpXDd0zopW+YtPDup6bYMo5Nu4NASLJksYk9crNNVZ1Mbc
TqKEcgKsBCzSq5kdGFl4M4UzgVHp54vpWF+7Lv0PvxsofqLYvfX5fXvSXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFQfUaDHKbb8evI9e1jkMnHQmJ7iMB8GA1UdIwQY
MBaAFIJIx1PUbNyemACe5NuBByMsAur0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ2tqSFU5UnMzSjZZQUo3azI0RUhJeXdDNnZRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8xZmE0MjYtNDBkNi00ZWVhLWJiYWMt
OTEzMzIyNWM5NDI1LzEvZ2tqSFU5UnMzSjZZQUo3azI0RUhJeXdDNnZRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy8xZmE0MjYtNDBkNi00ZWVhLWJiYWMtOTEzMzIyNWM5NDI1
LzEvZ2tqSFU5UnMzSjZZQUo3azI0RUhJeXdDNnZRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFTPoUqMt
9KR4bqmuAHXjWlexDSdfGH9NUs2JFXSCPBt8WKZghbH940K6K5/MHwMBqWD/8Sn0
5WIUTTyciiFiJNuqz2W96KGXoAL3bHB9IPaZMkYjHoMvsNQb5Ad4epi/fA9PgJFW
xoPxdOZ5Y2ZLPwF6SwIUUsDJKnPMiTDO7gjzp/eaSU/lAL0S6ALRqmrf2EE6fjSH
3HKbUbucWbZtDBltdJBIG94elEin5PMQDZtpTlfGdlqbVfFkUVx/kY4wgTwxuwSG
5Y1RJ4R4BcsxaGoXDYBxBFZ+1KKk27rOXt2m3qKz32SaNKvlkdsJ8tGGjHAJ3Gzr
Koz55oIjzCboIg==
-----END CERTIFICATE-----
Generated at Sat Aug 23 19:04:02 2025 by rpki-client