Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: Vq3/yJHGsEcJTWw5Nu5kJELFErcYDxbGBsAZQFHO4Q0=
Subject key identifier: A6:C3:00:3D:49:BB:37:80:31:E1:16:C9:12:21:6C:B0:B0:25:82:BF
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 0198D5BC42EDACE5299A4F9D5DD9D5005888
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 0231
Signing time: Sat 23 Aug 2025 07:02:21 +0000
Manifest this update: Sat 23 Aug 2025 07:02:21 +0000
Manifest next update: Sun 24 Aug 2025 07:02:21 +0000
Files and hashes: 1: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: XTNZkl7Dw9Ojxn+Vz756RUXSfyqFx2hqJ7YVRv5gv5Q=)
2: moIHrCUIysvqre1db9iG8YhXiD4.roa (hash: 3qmhRdBwt3IbZM/x/JJkjl8tv0bK7oEsrL8A8nVm2tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d5:bc:42:ed:ac:e5:29:9a:4f:9d:5d:d9:d5:00:58:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: Aug 23 07:02:21 2025 GMT
Not After : Aug 24 07:02:21 2025 GMT
Subject: CN=a6c3003d49bb378031e116c912216cb0b02582bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c6:c9:7b:97:75:0f:bc:80:4b:f6:25:45:9d:
4c:41:c3:ef:de:a3:be:ea:5f:6b:ae:ce:ef:b1:38:
b2:26:ef:a5:fc:ee:06:09:21:c1:4f:a7:8f:61:f7:
d4:c4:e1:ae:9a:f1:f1:60:49:d2:07:2d:e8:80:be:
50:ea:14:0c:c3:08:2e:da:6d:5b:0f:34:33:12:d0:
c4:27:ce:a2:5a:7a:16:ee:e1:3b:3c:c8:48:f3:3d:
ca:88:42:5b:45:4e:05:e3:e8:67:58:af:cc:5a:2e:
22:46:f9:55:d6:42:16:8d:ea:3d:ab:95:86:a3:0e:
14:64:dc:1a:e4:fd:9a:9e:2c:cd:a8:c4:9c:69:06:
74:9c:06:45:84:e6:6d:34:cd:71:3c:2c:71:f5:9c:
68:1d:81:b4:7c:d7:3e:ef:97:da:5e:51:12:df:89:
7f:68:ef:ac:00:0a:eb:4e:7a:b5:07:06:f8:16:fd:
30:60:5b:5c:7c:a6:5c:4b:71:a1:df:59:b9:30:f6:
63:0f:66:cd:13:c5:e1:d2:91:b2:0d:16:ab:75:61:
7b:51:43:09:b5:b9:5b:86:d8:d2:ca:12:34:5b:8d:
b5:98:7b:e4:dd:1f:f7:36:44:ce:f4:40:cb:69:97:
70:3a:ac:f4:01:6d:66:ad:38:90:e3:1b:0c:b6:aa:
5f:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:C3:00:3D:49:BB:37:80:31:E1:16:C9:12:21:6C:B0:B0:25:82:BF
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:da:66:53:8f:fb:09:8a:c4:ff:8a:b6:9d:93:b5:07:ad:c2:
ad:ea:9c:10:09:02:bf:90:d6:6c:24:a0:45:ac:2f:b3:d9:2a:
42:72:9e:b1:7d:a8:b9:65:b6:10:68:37:47:b7:e9:2f:76:d7:
09:0d:75:49:31:23:8a:8c:db:39:15:2a:5e:ef:70:d7:5e:26:
43:3b:0b:3e:e3:7c:1a:1b:e3:e1:88:5e:ec:45:35:a2:39:d2:
ba:a4:12:aa:df:e5:a3:06:8a:e0:da:1e:ac:5d:28:a2:c7:b0:
75:e7:e1:ce:69:27:2f:7a:c6:ef:7f:02:66:c8:60:03:58:f0:
c7:1d:28:5f:e4:35:e1:c4:91:be:39:b4:6a:95:ad:13:7b:11:
89:7e:a3:74:03:c8:0d:5a:d6:6f:95:cf:31:df:ac:dc:de:25:
3a:82:11:1e:a2:4e:d9:7a:28:2a:d5:c5:a2:c2:f2:e2:0b:00:
ed:1f:7d:d2:7a:22:3d:e7:88:be:98:13:73:4a:f3:45:05:0c:
9e:7e:85:2e:fd:73:29:78:18:98:bf:ef:ef:3d:51:b8:2a:7f:
c2:8f:80:26:a8:8b:60:74:68:33:1d:f1:94:9d:ba:e5:19:d7:
11:76:a2:3c:b8:47:44:ce:36:f7:ef:ed:5c:d4:21:94:5b:cf:
e9:e4:bf:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:28:00 2025 by rpki-client