Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.mft
File: gOtx0BmkgyJcMkyIxsSAIO-fEWg.mft (raw, json)
Hash identifier: Zr6+pmRrriWmGuTZSXAOItWjEKEbQkV6Vs2D3oNNGIM=
Subject key identifier: 6E:F2:6B:F0:73:B0:5F:29:E8:3D:5C:42:26:DD:45:1E:57:13:25:37
Authority key identifier: 80:EB:71:D0:19:A4:83:22:5C:32:4C:88:C6:C4:80:20:EF:9F:11:68
Certificate issuer: /CN=80eb71d019a483225c324c88c6c48020ef9f1168
Certificate serial: 01992255225C23AE39ED79BCE11955BC63B9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gOtx0BmkgyJcMkyIxsSAIO-fEWg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.mft
Manifest number: 166E
Signing time: Sun 07 Sep 2025 04:00:28 +0000
Manifest this update: Sun 07 Sep 2025 04:00:28 +0000
Manifest next update: Mon 08 Sep 2025 04:00:28 +0000
Files and hashes: 1: gOtx0BmkgyJcMkyIxsSAIO-fEWg.crl (hash: SUYR+ky3A7Z+yHirA+4APF78u2Lc0YJ52HdSOcgoRGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gOtx0BmkgyJcMkyIxsSAIO-fEWg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:22:5c:23:ae:39:ed:79:bc:e1:19:55:bc:63:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80eb71d019a483225c324c88c6c48020ef9f1168
Validity
Not Before: Sep 7 04:00:28 2025 GMT
Not After : Sep 8 04:00:28 2025 GMT
Subject: CN=6ef26bf073b05f29e83d5c4226dd451e57132537
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:bc:f3:75:33:82:dc:bc:f5:48:b2:c8:e4:b9:
74:79:27:80:07:61:b7:4e:33:27:19:fe:d5:c4:fa:
3f:f9:98:55:44:69:b3:4a:c8:56:1e:d4:61:a1:b4:
b9:96:5a:29:98:ce:43:ed:3b:57:fc:b9:e4:98:cf:
d0:10:13:e5:e3:2d:f4:ff:ab:98:17:a0:ba:0e:76:
e8:1a:e6:a7:8a:a4:d8:45:b4:a9:50:80:da:ba:64:
b3:ae:78:98:40:ff:42:2e:ad:05:bf:1c:10:a8:3b:
96:72:41:98:16:c0:9b:14:b5:a8:92:a0:10:b4:7d:
7a:2a:b3:d1:1f:47:eb:93:23:9e:e7:18:c7:8c:10:
2d:62:3e:ff:99:05:02:7e:c5:b4:78:fd:a9:81:9e:
01:7f:30:2a:53:33:14:5a:21:aa:b6:5e:85:6f:67:
d6:ad:3c:ef:a6:b1:96:f1:da:1c:75:10:4c:98:65:
c5:0b:ca:6c:c3:4a:f5:83:59:48:3a:8d:dd:17:6f:
04:9c:c9:40:5f:4c:62:83:2c:b5:61:47:76:84:53:
84:5d:13:ba:38:59:9c:93:b6:69:b2:3b:6f:b4:bf:
d7:1a:db:ee:31:4e:d4:58:84:17:1f:05:0c:44:c0:
9b:9e:21:5e:79:75:7e:84:d7:46:eb:3e:c6:8d:fc:
6a:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:F2:6B:F0:73:B0:5F:29:E8:3D:5C:42:26:DD:45:1E:57:13:25:37
X509v3 Authority Key Identifier:
keyid:80:EB:71:D0:19:A4:83:22:5C:32:4C:88:C6:C4:80:20:EF:9F:11:68
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gOtx0BmkgyJcMkyIxsSAIO-fEWg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/290789-1922-4eb0-8ad4-fed89d170da4/1/gOtx0BmkgyJcMkyIxsSAIO-fEWg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:b3:51:e4:10:57:f8:47:17:11:18:7d:69:41:3b:12:2f:37:
df:14:2f:9a:c1:c5:4e:33:e4:c5:c2:cf:aa:aa:41:cd:62:43:
09:13:73:0f:bd:e2:e6:6b:26:76:39:a7:32:ec:fd:8f:51:e3:
ed:4e:c4:2e:5a:6c:a0:8e:c7:bf:24:29:ec:30:48:cb:d0:bf:
fd:22:cc:20:ef:cf:7c:78:e9:55:5d:dc:71:3e:f8:16:7b:70:
65:7c:df:26:cc:3a:42:76:2b:c9:4a:9f:25:04:18:a9:a9:55:
65:b7:8b:12:67:e3:63:50:2c:93:82:8c:6f:37:48:80:da:d6:
16:2b:ef:5d:91:2c:46:f9:2b:2b:40:e1:44:e0:8c:a3:59:ca:
34:31:cd:3c:35:1d:9f:cd:89:f7:5e:dc:59:3d:c7:27:a8:36:
82:ca:5d:fa:14:e9:59:cf:13:b7:83:3f:95:01:67:57:9a:de:
70:67:54:6a:13:0d:f0:24:ca:cc:8b:c9:e2:e6:cb:77:0f:a6:
45:d8:45:0d:c7:59:2f:72:b3:c1:e4:9c:2e:d2:99:5d:b0:8a:
57:e2:b2:02:8e:56:35:ad:10:1e:76:88:f5:2f:70:49:79:44:
d6:86:9c:c9:ff:0c:a8:b4:16:68:74:43:f4:db:55:c2:96:fd:
e3:92:dc:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:24:23 2025 by rpki-client