Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
File: g1-7knspUGK30KcgR7a0qhsPmyk.mft (raw, json)
Hash identifier: ovcsNCUWuCxtCz4x4ED+0OYiA/NGTLRXZBd4FOGsJjw=
Subject key identifier: EA:9C:85:95:85:8A:8E:48:B6:67:E5:FA:97:75:B7:EF:6E:1A:FA:CE
Authority key identifier: 83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29
Certificate issuer: /CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29
Certificate serial: 0198D4E075D215389B2C51879790DD29B5E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
Manifest number: 0B7A
Signing time: Sat 23 Aug 2025 03:02:16 +0000
Manifest this update: Sat 23 Aug 2025 03:02:16 +0000
Manifest next update: Sun 24 Aug 2025 03:02:16 +0000
Files and hashes: 1: Xz1rL6dK4mQZieGCdBgSZgZHbZ4.roa (hash: gmK1QKVfo/W+VuZX9S2XVVxCk24nsYt3d8ghU+Ddwrs=)
2: g1-7knspUGK30KcgR7a0qhsPmyk.crl (hash: JSSQV74vlJh22pQfilhiVFlnSJPg0TXWHCP3jMxgyEw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 03:02:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:e0:75:d2:15:38:9b:2c:51:87:97:90:dd:29:b5:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29
Validity
Not Before: Aug 23 03:02:16 2025 GMT
Not After : Aug 24 03:02:16 2025 GMT
Subject: CN=ea9c8595858a8e48b667e5fa9775b7ef6e1aface
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:d9:9a:0a:82:39:57:06:c6:93:b5:21:d0:60:
61:a8:f6:e0:31:82:98:bb:80:ed:b7:83:a5:81:fe:
73:6b:39:9d:e3:62:a7:a6:cc:a3:d4:8c:41:37:1d:
7d:c5:2e:5b:e5:ad:79:db:94:9a:0b:f3:89:f1:87:
ff:9c:68:77:2b:5d:0e:df:12:20:f0:03:ca:c5:ae:
d6:1a:ae:0a:8f:c2:10:98:64:32:56:75:34:52:ec:
1f:4d:9e:01:9a:43:73:95:93:4c:14:40:53:97:19:
4b:0d:d2:a5:25:3f:76:0a:76:ef:29:cb:ef:67:cf:
35:1d:26:bf:a3:46:59:40:f6:d3:55:8c:be:3a:35:
06:6b:df:0f:31:d5:1d:a7:88:dc:f2:d7:19:14:af:
9f:1b:ea:2d:cd:c4:87:91:1a:d9:a2:df:62:c9:ea:
e2:bb:c6:9f:1b:8c:eb:12:73:c9:c2:47:63:01:17:
1d:ea:b8:15:80:ba:91:b4:54:dc:df:c3:21:f9:ab:
5f:f1:03:b2:54:e8:d8:2d:ab:02:15:b2:b6:7b:76:
be:6f:22:44:da:f9:6a:92:16:2f:e8:c0:d5:02:64:
69:06:41:30:42:25:e6:dc:6a:4f:8c:e2:fe:f3:06:
25:02:04:ee:5e:d2:d0:3c:13:a4:d6:d0:62:79:20:
f0:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:9C:85:95:85:8A:8E:48:B6:67:E5:FA:97:75:B7:EF:6E:1A:FA:CE
X509v3 Authority Key Identifier:
keyid:83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:ab:16:d0:9c:88:dc:83:99:92:54:40:39:df:cd:64:20:71:
11:6c:19:51:1e:3c:62:ae:f4:f1:8c:c9:a1:4b:6f:f6:b8:b4:
a5:2f:e0:01:4c:b6:8d:ac:c5:b9:7a:6c:b2:52:a6:00:8f:0e:
e5:e7:0d:06:5f:85:06:1e:82:b4:d2:83:8a:5d:2e:38:c4:36:
3f:a2:e1:b3:cb:cf:18:c5:6c:93:a4:04:88:56:9b:5c:53:e4:
b2:77:ce:c1:13:22:4f:1a:97:9a:23:9a:9c:fc:55:ec:c8:6c:
fa:19:65:a5:93:3a:c9:20:ae:7a:f3:3f:62:4d:cc:38:70:31:
8b:87:65:2d:9f:08:08:b2:f2:44:7e:ac:15:81:82:f8:99:e3:
d1:32:47:82:d6:ac:e2:29:5a:ce:1a:72:4a:4a:d3:78:f2:81:
8f:c7:39:28:c0:31:95:f1:d3:0d:a3:b6:a5:c6:46:22:d9:53:
b6:64:1b:8e:01:36:b9:85:ac:e6:c2:dc:0d:8e:b0:97:41:59:
92:e8:ed:34:93:de:72:0a:68:2a:64:ed:41:5b:f4:f4:ac:55:
ad:dc:60:27:6a:04:ab:53:b3:ad:20:ab:c9:fb:f3:c0:4b:f9:
a4:32:0b:a4:82:08:fb:3e:dd:79:2e:03:e7:00:7d:c4:15:f7:
f2:80:80:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 13:17:43 2025 by rpki-client