Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: ZbDKE7O0dkHxn7dYjeMzxLSLRkitbzphNGqnCLdOVMQ=
Subject key identifier: 0C:6F:86:B0:BF:4A:97:34:DB:18:02:0E:74:5E:B6:44:78:81:27:93
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 0199FC58628403C0D818ED49B5718570D835
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 053A
Signing time: Sun 19 Oct 2025 12:01:14 +0000
Manifest this update: Sun 19 Oct 2025 12:01:14 +0000
Manifest next update: Mon 20 Oct 2025 12:01:14 +0000
Files and hashes: 1: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: alucgMRXJu+QDwIJpX9Zi+fQEnmlta6Ti0WCpetwzBE=)
2: knOts_9A8gA0IVqYk7a99kaTuRI.roa (hash: kCE50cAQS4imaI4wXAlSfVZnkYJchZQUkd+tGc4tAWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 11:18:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:58:62:84:03:c0:d8:18:ed:49:b5:71:85:70:d8:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Oct 19 12:01:14 2025 GMT
Not After : Oct 20 12:01:14 2025 GMT
Subject: CN=0c6f86b0bf4a9734db18020e745eb64478812793
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c3:ef:74:d9:e1:04:14:8a:73:ef:b4:7c:5d:
92:2d:2a:4b:ce:fc:1a:83:f5:42:87:8b:4c:45:5c:
0b:3b:18:70:eb:63:d7:62:dc:34:6b:29:93:a1:c4:
79:0e:c2:d9:31:e7:aa:2e:59:40:93:6b:54:b4:f2:
44:51:3b:b8:c2:32:f1:85:01:4e:56:75:e9:dd:f7:
78:c8:49:6e:dc:72:af:30:d2:fd:8e:9c:22:92:e7:
42:ba:e5:27:a0:e3:81:2f:92:07:f8:c0:d0:68:04:
11:ac:78:5c:84:04:36:1c:00:f0:16:7c:19:19:a8:
e8:94:c2:2c:69:76:36:38:69:e8:85:e6:6a:4a:ca:
4c:8e:b7:db:01:83:13:85:42:3d:52:49:4c:60:3b:
64:6a:fc:f5:04:84:ea:e7:25:8e:94:e5:e4:d2:df:
35:af:13:c7:0b:97:ba:6b:4d:6c:13:e9:1e:92:33:
4f:54:7d:ee:35:cf:6a:23:3c:79:1e:c8:19:8a:3a:
d4:dc:8a:84:f6:ea:57:97:dc:d9:31:f0:57:d2:aa:
b1:82:d9:16:7f:13:3c:53:e0:ba:b0:d4:8d:72:63:
63:9d:03:4b:f4:73:73:0b:7e:6e:c6:01:8e:11:63:
58:ea:f7:10:08:0a:ef:15:ad:bf:63:71:2c:d7:8c:
81:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:6F:86:B0:BF:4A:97:34:DB:18:02:0E:74:5E:B6:44:78:81:27:93
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:23:7a:0e:e5:9a:ad:54:c0:b7:73:e9:a4:de:5e:11:a8:43:
bd:ef:64:2b:96:b0:d8:c9:b6:e1:7e:f5:af:4b:be:e2:14:eb:
0d:4f:d6:31:cc:92:fd:c0:16:c6:0e:d1:e6:0a:33:8e:ba:88:
da:0f:b4:8d:b1:d7:fd:bf:64:c5:40:15:95:c7:ac:53:45:35:
31:d4:79:5c:25:5e:33:18:66:3f:48:ba:85:6d:a8:52:3a:26:
74:1d:a5:d8:27:33:ae:ba:90:58:d0:86:29:62:dc:09:59:f6:
3e:7c:e0:85:6c:69:2c:79:70:0b:c5:ae:52:cd:6e:95:d1:b3:
65:b9:3a:4e:74:ea:1d:6f:c5:30:e3:76:14:b0:0e:13:31:04:
f8:f9:88:cb:80:e5:b8:30:aa:46:44:98:65:9d:5c:77:7e:db:
36:47:66:70:89:20:41:36:2c:18:3d:54:d7:63:e0:ae:eb:68:
ee:b9:40:93:f8:e3:5c:26:c1:8b:7c:cb:96:18:20:49:8e:85:
42:b7:65:ed:70:38:b7:43:22:9c:30:cb:ae:d0:fa:e1:80:d1:
a3:db:42:36:53:de:44:2b:92:b5:ea:44:d1:9c:51:45:a8:be:
6e:50:17:e0:95:10:15:92:32:eb:1a:49:ec:b8:44:8a:a1:80:
ce:ab:65:ee
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8WGKEA8DYGO1JtXGFcNg1MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgwYTkyMTQwODQzM2I2NmVhNTBhNDAwMGFhY2UxMGQyYWRk
MDZhODUwHhcNMjUxMDE5MTIwMTE0WhcNMjUxMDIwMTIwMTE0WjAzMTEwLwYDVQQD
EygwYzZmODZiMGJmNGE5NzM0ZGIxODAyMGU3NDVlYjY0NDc4ODEyNzkzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnsPvdNnhBBSKc++0fF2SLSpLzvwa
g/VCh4tMRVwLOxhw62PXYtw0aymTocR5DsLZMeeqLllAk2tUtPJEUTu4wjLxhQFO
VnXp3fd4yElu3HKvMNL9jpwikudCuuUnoOOBL5IH+MDQaAQRrHhchAQ2HADwFnwZ
GajolMIsaXY2OGnoheZqSspMjrfbAYMThUI9UklMYDtkavz1BITq5yWOlOXk0t81
rxPHC5e6a01sE+kekjNPVH3uNc9qIzx5HsgZijrU3IqE9upXl9zZMfBX0qqxgtkW
fxM8U+C6sNSNcmNjnQNL9HNzC35uxgGOEWNY6vcQCArvFa2/Y3Es14yBcwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAxvhrC/Spc02xgCDnRetkR4gSeTMB8GA1UdIwQY
MBaAFICpIUCEM7ZupQpAAKrOENKt0GqFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ0traFFJUXp0bTZsQ2tBQXFzNFEwcTNRYW9VLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9kODA5YjEtZmFmNy00MGMyLTk0YmEt
ZjE4MTVhNDFhMDMzLzEvZ0traFFJUXp0bTZsQ2tBQXFzNFEwcTNRYW9VLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9kODA5YjEtZmFmNy00MGMyLTk0YmEtZjE4MTVhNDFhMDMz
LzEvZ0traFFJUXp0bTZsQ2tBQXFzNFEwcTNRYW9VLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARyN6DuWa
rVTAt3PppN5eEahDve9kK5aw2Mm24X71r0u+4hTrDU/WMcyS/cAWxg7R5gozjrqI
2g+0jbHX/b9kxUAVlcesU0U1MdR5XCVeMxhmP0i6hW2oUjomdB2l2CczrrqQWNCG
KWLcCVn2PnzghWxpLHlwC8WuUs1uldGzZbk6TnTqHW/FMON2FLAOEzEE+PmIy4Dl
uDCqRkSYZZ1cd37bNkdmcIkgQTYsGD1U12Pgruto7rlAk/jjXCbBi3zLlhggSY6F
Qrdl7XA4t0MinDDLrtD64YDRo9tCNlPeRCuStepE0ZxRRai+blAX4JUQFZIy6xpJ
7LhEiqGAzqtl7g==
-----END CERTIFICATE-----
Generated at Sun Oct 19 18:38:49 2025 by rpki-client