Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
File: gXRkmx7wDcg8KFOaOdKQs1MO37A.mft (raw, json)
Hash identifier: qB+M4mPee61afQZakttiquiX5NGvQ1E+tPjTBG8iTyA=
Subject key identifier: 8A:5E:91:88:AF:2F:9F:65:3A:B3:62:05:D2:2D:DE:09:EF:39:EB:1C
Authority key identifier: 81:74:64:9B:1E:F0:0D:C8:3C:28:53:9A:39:D2:90:B3:53:0E:DF:B0
Certificate issuer: /CN=8174649b1ef00dc83c28539a39d290b3530edfb0
Certificate serial: 019A02234884199CE465CB32548FB921EB97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
Manifest number: 01F2
Signing time: Mon 20 Oct 2025 15:00:57 +0000
Manifest this update: Mon 20 Oct 2025 15:00:57 +0000
Manifest next update: Tue 21 Oct 2025 15:00:57 +0000
Files and hashes: 1: GQ42kTqn472NU0Utg1aKLG7W0bI.roa (hash: oM3P06tzeH7/sG3RLnC5jVN3WHhv6hvEc5nYDWBm418=)
2: gXRkmx7wDcg8KFOaOdKQs1MO37A.crl (hash: 2FmGbYb5ygVJuGkpM04QNMO7QzXxxgkOg/qzPc7tKG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 21 Oct 2025 13:42:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:02:23:48:84:19:9c:e4:65:cb:32:54:8f:b9:21:eb:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8174649b1ef00dc83c28539a39d290b3530edfb0
Validity
Not Before: Oct 20 15:00:57 2025 GMT
Not After : Oct 21 15:00:57 2025 GMT
Subject: CN=8a5e9188af2f9f653ab36205d22dde09ef39eb1c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:77:83:d9:06:69:32:6d:c9:a6:96:63:d8:9c:
c1:75:34:10:34:ed:39:d3:96:67:c5:f8:ec:af:65:
14:a1:bc:74:68:15:d5:c0:57:7c:75:77:c1:f8:a1:
ff:f5:15:a5:43:51:8c:12:d2:d8:a0:e7:bd:df:b8:
29:79:94:7c:7c:8c:50:03:98:c9:6b:7a:66:d0:c4:
f7:55:0a:e2:1c:43:80:29:97:25:44:66:a9:0e:aa:
2d:7e:d4:1b:bc:78:59:e3:08:50:17:4c:ea:1b:d3:
79:32:2a:8b:4c:fb:ac:b9:9d:ac:dd:bf:92:f9:fd:
25:57:c2:20:fc:82:a6:47:34:cb:f1:7c:5d:4c:e7:
ac:c7:92:25:0f:50:cf:be:cb:6e:68:a1:a4:92:32:
5a:1c:47:8a:f7:23:3f:8c:d2:19:d4:da:97:bb:3a:
d8:1e:63:82:2b:e3:b6:62:5e:7a:42:69:00:25:22:
f1:b3:f4:fa:6c:2a:af:75:c4:0e:74:ca:4c:bf:4f:
b6:9e:b8:7b:5d:80:ec:76:7e:ac:55:02:81:74:fb:
03:78:b6:64:b7:c2:03:1e:08:33:ad:5b:f9:ef:35:
77:01:9b:8e:d7:c3:ee:a6:cc:5d:ad:ef:69:57:03:
96:d6:ed:ca:08:d0:3f:66:a8:1d:ec:41:02:86:8b:
e2:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:5E:91:88:AF:2F:9F:65:3A:B3:62:05:D2:2D:DE:09:EF:39:EB:1C
X509v3 Authority Key Identifier:
keyid:81:74:64:9B:1E:F0:0D:C8:3C:28:53:9A:39:D2:90:B3:53:0E:DF:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gXRkmx7wDcg8KFOaOdKQs1MO37A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/1cec02-26e6-400e-8d9a-32924ef47a1a/1/gXRkmx7wDcg8KFOaOdKQs1MO37A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:ae:83:fc:a5:8c:21:15:92:c1:b7:8b:99:24:6f:36:ff:5f:
8e:57:e9:fa:1b:ec:57:d3:f3:81:ca:6c:bb:0f:d6:8e:d2:46:
dc:fb:3c:48:d5:d4:1e:ce:41:e9:00:c0:96:2a:10:e5:66:9d:
3c:e5:f7:97:fb:35:09:52:a7:82:16:d8:3a:32:ed:af:54:d2:
aa:d8:45:89:b5:ed:80:98:d0:92:49:64:fb:19:a6:ea:6d:90:
4f:c7:ca:20:cf:e0:9b:bd:a8:6c:e0:cf:68:c8:68:7a:47:fd:
ca:18:ab:c8:c1:01:a1:d2:63:bf:44:77:ff:08:65:bd:88:91:
9b:0f:4a:7a:42:40:d1:d3:f4:7f:49:5c:43:9d:94:e7:ee:50:
3d:2a:50:35:36:44:ef:8f:e8:59:c5:e4:5d:1a:87:fa:be:46:
11:7e:22:25:4a:c7:46:40:f1:12:71:d1:5b:24:1f:13:92:cc:
c8:a2:43:ae:a4:94:10:64:5a:fd:c2:6c:3b:76:84:c3:2a:45:
82:14:83:7c:b0:88:8a:73:f9:a4:2a:0c:ed:93:fe:86:4b:24:
9f:93:c2:fe:4b:4d:6c:a6:f9:6a:99:70:64:8b:42:df:33:be:
09:74:55:a0:cc:5f:ac:b2:53:b2:b5:c1:ed:c2:d9:0d:67:86:
a1:9d:3e:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 22:21:20 2025 by rpki-client