Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
File: gEH-6hI_ywfocqjLS92at7jaL88.mft (raw, json)
Hash identifier: 9hD0o3ed3BcyRG1MI3ajTEqmLzk+im24A96/Kys2fiY=
Subject key identifier: 4D:EB:17:2A:FD:65:C9:04:5D:3B:DC:E2:10:84:A5:27:02:50:A3:60
Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
Certificate issuer: /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Certificate serial: 0199225513697DD2A399A5BD20D5C924462D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
Manifest number: 0A88
Signing time: Sun 07 Sep 2025 04:00:24 +0000
Manifest this update: Sun 07 Sep 2025 04:00:24 +0000
Manifest next update: Mon 08 Sep 2025 04:00:24 +0000
Files and hashes: 1: 5QlNV7-3Q34zZfQ5XbNLc8wKA40.roa (hash: T1GmpANOUDoxZLUDnHoNMN2ENMK9C/xESzMwTNL0s2Y=)
2: gEH-6hI_ywfocqjLS92at7jaL88.crl (hash: yN/IICpja6Ir5H+zWBm1ONBuTAHsHQkK73qZ6aMEsuk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:55:13:69:7d:d2:a3:99:a5:bd:20:d5:c9:24:46:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Validity
Not Before: Sep 7 04:00:24 2025 GMT
Not After : Sep 8 04:00:24 2025 GMT
Subject: CN=4deb172afd65c9045d3bdce21084a5270250a360
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:43:45:79:21:54:c1:83:90:fd:69:21:c9:6c:
70:ff:fc:45:16:7b:57:2a:d0:c1:14:2a:e6:bc:e8:
5a:5c:93:8f:76:5d:3a:7e:c7:37:37:be:9e:72:fd:
ae:3e:a2:c2:9f:fb:9b:1c:22:cd:e7:92:5b:24:e7:
e1:8d:8a:42:b2:85:6a:68:a0:e5:5b:25:c7:d9:7e:
4f:22:71:ae:61:8b:33:34:3d:70:3c:97:a7:66:48:
ba:b7:ce:b1:b2:5a:e0:97:60:c7:b1:6d:c2:61:2f:
4a:bf:4c:b0:b2:03:99:23:00:28:ee:19:8a:4e:f2:
0a:4c:8a:4f:cd:7c:da:26:dc:d5:6b:18:31:98:ec:
6a:32:33:23:cb:46:6b:6e:78:d5:18:16:f4:a4:7c:
9c:cb:5a:e1:cd:82:99:b0:9c:a8:e6:4a:8d:b8:f2:
a6:f5:0a:fd:7b:2f:0d:00:89:58:19:54:df:70:fd:
da:d1:75:73:fb:e6:86:a1:ce:8a:a0:76:2a:c3:e6:
a0:06:b9:1a:02:a6:b9:33:45:d3:f9:75:9a:2b:77:
ae:f3:f4:24:65:2f:c5:13:19:ac:90:5e:74:41:1f:
0e:85:69:ba:3d:bb:c0:a5:1d:a4:71:17:1e:15:19:
cf:39:76:55:26:47:e6:13:93:88:97:70:8e:67:0f:
4d:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:EB:17:2A:FD:65:C9:04:5D:3B:DC:E2:10:84:A5:27:02:50:A3:60
X509v3 Authority Key Identifier:
keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c1:e3:e5:9b:3c:9b:90:4d:7f:b5:5f:d0:ee:12:11:d0:c5:63:
88:cf:bc:d2:94:10:ba:51:03:e6:68:6c:09:c5:a3:0d:7f:67:
e0:3c:03:59:35:29:21:95:da:ad:02:90:90:32:b1:30:21:33:
7f:ac:02:87:21:b6:9f:36:e5:ab:a8:fb:1c:7c:15:fd:e0:9f:
ee:3d:44:f6:e9:10:33:99:1e:fd:f1:03:bd:ea:48:bd:13:3d:
df:fd:c0:29:86:e6:57:f7:51:5d:00:e3:f5:26:3a:50:62:49:
47:16:44:3a:af:af:c4:af:b5:96:68:67:08:82:72:4b:b7:18:
64:a3:bb:75:05:1c:49:ab:4b:fe:22:95:1a:3e:e6:97:ad:9a:
ff:8c:5a:0b:60:a9:0e:7b:03:0e:5a:33:39:b7:3a:c0:d4:3c:
42:91:7d:47:1e:ed:48:9a:5a:76:f5:78:ba:26:6b:a1:a7:8d:
8c:ee:88:28:cd:4a:a6:ec:2c:28:2f:24:2b:80:50:22:08:12:
62:03:31:6d:f7:15:69:ed:61:cd:4f:51:0f:73:98:21:62:fb:
44:96:cb:df:2f:81:60:c4:26:4f:6e:e8:cb:46:a9:ef:3d:e0:
b8:d8:16:df:48:0b:16:f5:8a:f7:97:90:63:bc:a3:f1:bd:8a:
04:d7:2f:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:13:49 2025 by rpki-client