Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
File: g1-7knspUGK30KcgR7a0qhsPmyk.mft (raw, json)
Hash identifier: f+FvsJPWB3r4vcIt7k5c2i/V8/IFuHv2WsXTyUxlNbM=
Subject key identifier: A0:69:2D:D0:AF:0A:D3:79:DA:71:F3:05:3A:7C:A4:FD:89:D4:21:AD
Authority key identifier: 83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29
Certificate issuer: /CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29
Certificate serial: 0199FE46E7A46325A71FF26EAA297BF6F663
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
Manifest number: 0C14
Signing time: Sun 19 Oct 2025 21:01:23 +0000
Manifest this update: Sun 19 Oct 2025 21:01:23 +0000
Manifest next update: Mon 20 Oct 2025 21:01:23 +0000
Files and hashes: 1: Xz1rL6dK4mQZieGCdBgSZgZHbZ4.roa (hash: gmK1QKVfo/W+VuZX9S2XVVxCk24nsYt3d8ghU+Ddwrs=)
2: g1-7knspUGK30KcgR7a0qhsPmyk.crl (hash: FjqrI+/d+H0PpnoSReswIbKN6h2MaCuMNZ744DVHmrE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 15:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fe:46:e7:a4:63:25:a7:1f:f2:6e:aa:29:7b:f6:f6:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=835fbb927b295062b7d0a72047b6b4aa1b0f9b29
Validity
Not Before: Oct 19 21:01:23 2025 GMT
Not After : Oct 20 21:01:23 2025 GMT
Subject: CN=a0692dd0af0ad379da71f3053a7ca4fd89d421ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:3c:50:d6:32:98:fe:09:af:fd:9b:e1:b2:6b:
3a:cf:d0:d5:20:d5:5d:80:97:20:47:95:b2:8b:fb:
00:bb:ab:d6:a2:e5:e6:e9:da:08:0e:1e:7b:a6:ae:
ee:c9:1f:05:e3:a0:df:9c:c9:33:00:92:b2:20:70:
fa:cf:46:c9:20:a9:b8:75:70:f9:25:72:62:8b:1e:
a9:6d:7a:62:37:93:59:bd:fe:76:b1:75:93:3c:ce:
e4:68:35:7c:3e:3d:89:9a:68:fa:28:9e:9f:91:a0:
27:90:28:81:72:86:7a:a7:be:ef:8f:c7:75:e8:00:
e5:f3:b9:54:86:79:af:6e:d3:11:b2:33:9e:00:50:
62:8a:fe:cc:9c:a1:f4:31:ce:ba:24:90:85:a7:04:
a4:bd:e2:74:c6:6d:07:6f:16:92:31:57:53:56:97:
1a:10:7b:7b:02:0e:19:4a:28:80:3e:2e:45:d8:58:
6a:6a:5d:25:65:17:90:3f:f8:c3:7c:66:53:e2:37:
85:6c:ea:e7:21:06:38:c5:3e:28:ab:98:13:2b:d7:
5b:1a:16:95:1e:8b:67:77:60:ce:57:c4:49:7a:8f:
f8:89:3a:d5:5f:35:89:55:b4:b0:05:41:0f:52:2d:
73:4d:a4:b8:93:a4:e9:eb:4e:11:d8:e5:b8:07:cd:
9e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:69:2D:D0:AF:0A:D3:79:DA:71:F3:05:3A:7C:A4:FD:89:D4:21:AD
X509v3 Authority Key Identifier:
keyid:83:5F:BB:92:7B:29:50:62:B7:D0:A7:20:47:B6:B4:AA:1B:0F:9B:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/g1-7knspUGK30KcgR7a0qhsPmyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/c64bf4-c605-461a-bb74-b18f8f7d90e8/1/g1-7knspUGK30KcgR7a0qhsPmyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:a3:4d:eb:eb:c7:10:93:63:d2:64:b2:15:e0:17:93:59:b9:
11:e1:fc:29:59:72:4f:c8:0a:fa:a5:72:42:b9:be:ca:50:fc:
44:94:f0:9f:aa:6a:f5:6e:79:3b:c3:bb:e3:fc:34:ad:8a:0e:
f3:fa:64:42:8b:90:0b:83:e7:cb:16:cc:f3:e7:e1:a6:01:c0:
10:f7:1c:e9:e0:9a:d4:68:cb:7d:96:53:41:64:26:3a:60:4f:
95:93:0a:59:aa:ea:ed:df:9f:2b:af:de:d2:f7:cf:51:1e:d8:
2d:2c:86:e1:10:d0:f1:8b:1b:ff:7e:53:a2:b4:a4:73:92:de:
9e:8b:28:63:ce:bc:c8:fc:46:65:ea:cb:3b:26:94:2d:4d:5d:
e5:bf:09:99:d7:0f:2b:01:01:7c:9e:60:f4:5d:61:c2:54:21:
e8:e0:86:74:91:a4:d6:cd:81:3e:d7:b2:cf:a8:77:2a:49:5a:
a5:05:9b:86:30:f2:76:65:9b:8d:9e:f3:18:96:11:ca:11:f4:
7f:0d:14:75:7e:41:62:a5:27:2f:c5:45:aa:54:8a:47:7e:06:
b3:25:04:a1:57:f9:19:d9:b3:38:ce:04:c0:35:f3:c4:54:b1:
ec:a4:78:00:37:78:70:5e:05:dd:42:55:43:a4:ef:3c:17:fc:
16:3d:33:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Oct 19 23:06:27 2025 by rpki-client