Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
File: Gwm9TWooxfH75oPPKs1ei_K65MQ.mft (raw, json)
Hash identifier: 8OqQBi2e+fvPFRnedlmoe9LuZBT91LBmL3xreUgHcV4=
Subject key identifier: 23:52:9A:1E:8D:FE:D0:7F:D3:8E:10:30:D6:7A:57:E6:FA:A4:5D:3C
Authority key identifier: 1B:09:BD:4D:6A:28:C5:F1:FB:E6:83:CF:2A:CD:5E:8B:F2:BA:E4:C4
Certificate issuer: /CN=1b09bd4d6a28c5f1fbe683cf2acd5e8bf2bae4c4
Certificate serial: 0198D66104A0F65481D2658F40DF764C8D09
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Gwm9TWooxfH75oPPKs1ei_K65MQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
Manifest number: 0413
Signing time: Sat 23 Aug 2025 10:02:19 +0000
Manifest this update: Sat 23 Aug 2025 10:02:19 +0000
Manifest next update: Sun 24 Aug 2025 10:02:19 +0000
Files and hashes: 1: Gwm9TWooxfH75oPPKs1ei_K65MQ.crl (hash: GSZgQD9KmBio3w3WU39fU7jCL086Zw6FrG/PmMNFsg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Gwm9TWooxfH75oPPKs1ei_K65MQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 05:01:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d6:61:04:a0:f6:54:81:d2:65:8f:40:df:76:4c:8d:09
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b09bd4d6a28c5f1fbe683cf2acd5e8bf2bae4c4
Validity
Not Before: Aug 23 10:02:19 2025 GMT
Not After : Aug 24 10:02:19 2025 GMT
Subject: CN=23529a1e8dfed07fd38e1030d67a57e6faa45d3c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6d:d6:51:6e:19:be:89:a9:ed:9e:ee:c2:11:
69:2e:3b:e2:c1:bd:f4:7e:c3:6c:c4:e4:08:88:30:
05:07:b2:77:51:c7:f3:3b:67:9c:a7:11:d5:8d:05:
06:2d:44:15:78:cb:35:2e:d7:67:1d:3e:31:29:4d:
3e:ad:99:f6:d7:21:0e:e9:03:cf:1b:ae:95:78:6a:
9d:b0:65:92:cb:4c:84:3f:6b:2a:1d:20:e6:c4:b9:
0e:01:80:e8:fc:ea:3c:6c:5d:31:b6:db:ff:f7:85:
6e:4c:b9:f4:54:ce:d6:af:50:63:26:21:9a:2d:b1:
b7:17:5e:de:9c:ec:24:42:fc:f7:5d:ec:01:b5:7e:
fc:89:19:18:92:2d:41:4a:59:29:e5:e9:09:4f:79:
57:80:f3:54:10:d0:08:9d:a5:4f:ae:44:34:4e:0e:
fa:58:be:b8:f3:72:04:43:c5:5a:29:6e:d0:ee:9f:
c1:88:d6:9b:00:d4:74:85:4a:f9:4d:82:d8:9b:50:
16:32:24:9d:5a:90:4c:7e:25:73:1f:8d:fe:66:96:
86:a9:2f:55:ea:9f:77:bc:3d:31:10:af:fb:f1:d9:
02:07:02:a7:e3:a8:62:74:41:be:27:00:72:15:ad:
fe:e0:9b:64:1b:a5:b3:c1:c7:5b:a3:02:f8:15:b6:
2c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:52:9A:1E:8D:FE:D0:7F:D3:8E:10:30:D6:7A:57:E6:FA:A4:5D:3C
X509v3 Authority Key Identifier:
keyid:1B:09:BD:4D:6A:28:C5:F1:FB:E6:83:CF:2A:CD:5E:8B:F2:BA:E4:C4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Gwm9TWooxfH75oPPKs1ei_K65MQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/86b54c-b980-4817-8df6-dce7781a2c5c/1/Gwm9TWooxfH75oPPKs1ei_K65MQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:fc:9a:dd:8e:4a:f6:43:85:3f:1a:26:a1:d5:50:93:fd:7c:
77:5a:62:f2:2a:4e:06:e9:02:cf:3c:0d:ea:46:c5:fd:6e:03:
d9:1f:d3:13:8c:e7:3e:7b:45:6e:04:21:87:cc:22:4e:fb:33:
d8:03:23:3d:f6:71:5b:22:0e:38:6f:99:19:04:a1:0c:3f:f4:
78:47:d4:52:93:df:ef:eb:ca:21:99:e9:93:84:7d:68:f3:88:
7f:96:4d:aa:1c:9c:1a:3b:5d:45:16:06:e7:cc:8a:ea:1c:4c:
95:9e:d8:4a:b0:5b:06:7c:87:89:c2:69:63:1e:43:ff:d5:83:
d4:f7:ba:04:08:1c:48:a8:ee:3a:e5:9b:45:4a:a0:1b:47:d6:
f9:27:f3:c6:5a:e3:ae:04:12:42:9b:5e:9d:5e:36:19:42:5f:
99:01:75:c8:1f:64:e8:c3:34:d6:bb:79:6a:c1:ad:69:3f:0b:
b5:03:8c:6d:ea:e6:19:70:70:21:50:7a:f8:0a:31:df:2b:28:
70:d4:ce:12:b0:d3:df:4e:e4:c3:5c:75:6d:67:6a:18:5e:49:
01:20:66:96:13:81:6c:73:1c:5f:a6:41:7b:e2:f7:26:eb:9b:
bd:51:ed:85:34:35:40:fb:b1:6d:cd:3e:68:4f:1e:26:59:8c:
0a:68:06:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 12:11:39 2025 by rpki-client