Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: ET4ISNTkuyCz1glX9xbaUYn3KbC4ADct6ib9JjX0oHw=
Subject key identifier: 86:10:40:2E:4C:A8:07:29:0A:85:DB:A1:CC:32:12:2B:F5:21:5B:2D
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 0197B8FD8F281A6869C8B9EC1B3A67A962E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 040E
Signing time: Sun 29 Jun 2025 00:01:54 +0000
Manifest this update: Sun 29 Jun 2025 00:01:54 +0000
Manifest next update: Mon 30 Jun 2025 00:01:54 +0000
Files and hashes: 1: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: Ena/X+dN58Jh78TwACUHgt38cIdcIwbYJX2/wvxM9Bk=)
2: knOts_9A8gA0IVqYk7a99kaTuRI.roa (hash: kCE50cAQS4imaI4wXAlSfVZnkYJchZQUkd+tGc4tAWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Jun 2025 00:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b8:fd:8f:28:1a:68:69:c8:b9:ec:1b:3a:67:a9:62:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Jun 29 00:01:54 2025 GMT
Not After : Jun 30 00:01:54 2025 GMT
Subject: CN=8610402e4ca807290a85dba1cc32122bf5215b2d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:17:eb:ac:0b:05:6c:01:cb:96:ef:dd:5d:f2:
77:52:7e:f2:86:b3:5c:72:3d:2f:61:7e:70:b7:5c:
11:14:80:bd:55:17:3b:d4:fc:06:16:63:a1:fb:fa:
47:ab:13:4c:b7:b4:a1:3e:99:d9:9e:f6:51:af:e5:
af:c5:21:3b:f7:fa:69:28:52:1a:ee:13:ee:11:30:
1a:f2:51:70:e7:e7:33:e3:bd:98:58:d1:5c:ee:16:
0a:77:52:52:84:ca:54:a6:6d:7e:72:b4:46:89:60:
6a:cf:dd:3a:4b:17:80:b2:f0:c2:e4:77:86:9c:82:
8e:6f:af:dd:69:a1:64:aa:c9:da:f7:ec:68:b8:59:
79:d8:ab:d4:49:0e:56:a7:f0:a3:9c:5d:c4:f6:cd:
b4:39:21:ea:88:89:39:f2:f1:3a:15:2e:26:4f:48:
a8:0d:ff:4d:07:45:4b:e7:ee:09:2f:14:90:ca:b2:
81:f7:84:ac:17:db:ec:6d:0f:b6:43:ca:7b:4a:ee:
d9:6b:f0:b1:de:6e:f0:65:34:c5:95:b6:5a:0e:d7:
4f:35:c6:65:98:19:65:71:39:66:2b:33:34:f9:e9:
65:4c:f7:01:c7:49:ce:1d:ed:f4:b6:83:42:27:a2:
b9:10:13:b2:64:08:74:d4:ba:64:3e:f4:4b:b3:7e:
62:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:10:40:2E:4C:A8:07:29:0A:85:DB:A1:CC:32:12:2B:F5:21:5B:2D
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:2c:82:a3:c6:04:ba:16:49:08:b5:d0:76:f9:9e:08:0b:88:
28:a6:53:b8:2c:d6:45:29:25:ca:c8:b6:c2:b3:e7:ec:2f:5a:
40:90:9e:d1:b7:03:90:2f:c5:00:c7:b4:a4:6f:4c:0c:fe:3e:
df:32:1a:12:71:98:fb:00:90:71:0e:cb:e9:5a:9c:f7:2f:21:
58:35:68:41:a2:dc:87:86:ae:78:e4:06:06:49:b6:3c:d5:6c:
3c:58:e8:ff:d8:8e:5d:8c:9e:e4:bd:62:e2:f3:78:13:4e:59:
7a:aa:34:b4:87:a7:49:3d:ae:58:e3:fe:31:98:42:13:f2:db:
a2:d3:0c:1c:87:64:7f:29:81:bb:27:52:7b:a9:af:e8:0d:66:
cb:0f:ab:10:f8:8c:45:75:c9:65:1f:f8:81:34:4a:21:c3:42:
24:2d:cd:9d:1a:99:54:3b:96:51:7d:f4:01:97:a5:76:93:d0:
ca:6a:78:71:b0:7b:48:4f:9c:c3:e6:a5:1c:cf:df:6b:b5:55:
65:87:32:a2:e8:80:f4:32:6c:ca:2c:b6:ff:ae:f3:72:ff:fe:
2b:14:53:3d:77:2f:59:00:d3:30:ef:ec:da:ac:6a:39:77:4e:
84:13:da:cc:e5:1c:a6:fa:cd:42:13:1f:0f:2e:ce:55:98:d5:
75:65:99:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 29 09:32:25 2025 by rpki-client