Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
File: G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft (raw, json)
Hash identifier: GCLAXQMuEgrv3ANC9+0gl08pmWDR90UqapDnry+yBRk=
Subject key identifier: 86:D6:0F:2B:C9:8B:04:23:3A:F6:CA:DF:3C:4C:8C:52:BA:C9:7F:6A
Authority key identifier: 1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
Certificate issuer: /CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Certificate serial: 0199239FF64DDA5E3E93674F41A477FAFEA2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
Manifest number: 0218
Signing time: Sun 07 Sep 2025 10:01:49 +0000
Manifest this update: Sun 07 Sep 2025 10:01:49 +0000
Manifest next update: Mon 08 Sep 2025 10:01:49 +0000
Files and hashes: 1: G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl (hash: /h8ip0RmXP6Hg+hIZvGvnj4BBrHf9hHJpvCtxMmAdA8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:9f:f6:4d:da:5e:3e:93:67:4f:41:a4:77:fa:fe:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1b69301fa8d788e02f7eb2fa8802109074206cfe
Validity
Not Before: Sep 7 10:01:49 2025 GMT
Not After : Sep 8 10:01:49 2025 GMT
Subject: CN=86d60f2bc98b04233af6cadf3c4c8c52bac97f6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:50:62:f7:8e:cc:d3:35:d7:cd:36:56:f4:2b:
04:d7:1c:3e:73:d8:63:41:30:0a:97:61:38:69:97:
30:4d:de:31:69:40:20:58:52:12:82:76:99:33:a0:
e2:67:49:43:4c:bc:f6:f8:b2:c9:e7:16:5d:c5:7c:
61:93:34:96:5f:45:04:f1:07:9a:6d:4a:51:7e:65:
54:a5:37:9b:3c:ce:08:26:0f:16:33:1e:93:8a:44:
c1:8c:6b:d2:dd:3f:63:fe:8a:23:a8:ac:a7:35:c6:
10:da:40:c0:a5:27:a0:4f:fd:72:01:04:6d:e9:7a:
81:c4:77:19:53:51:de:60:c6:e9:7d:f8:3c:59:02:
17:58:50:96:40:74:b5:c4:e2:08:8d:b7:5b:0e:11:
fe:a8:8b:27:91:d3:3f:56:b7:d0:26:2d:86:fa:1f:
bc:12:fa:e7:69:93:c8:7b:8a:06:44:dd:ef:40:ee:
6f:f4:d6:37:95:9a:55:70:7b:f5:41:d8:7b:f8:81:
09:d5:c0:4c:da:21:b6:48:be:2d:8c:42:31:b0:af:
8b:cb:b5:47:77:06:a8:5c:af:18:d3:af:58:4d:0c:
40:ec:ef:64:b4:fd:91:20:e5:4c:5b:93:9b:fa:d8:
ba:d9:24:35:67:e8:78:3c:9b:56:af:c5:a2:f3:97:
9e:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:D6:0F:2B:C9:8B:04:23:3A:F6:CA:DF:3C:4C:8C:52:BA:C9:7F:6A
X509v3 Authority Key Identifier:
keyid:1B:69:30:1F:A8:D7:88:E0:2F:7E:B2:FA:88:02:10:90:74:20:6C:FE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/G2kwH6jXiOAvfrL6iAIQkHQgbP4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/51/5d728a-93da-480b-a735-416c28798fe2/1/G2kwH6jXiOAvfrL6iAIQkHQgbP4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:b6:f5:43:cb:10:a6:d0:8d:4b:78:da:70:39:11:95:fd:8e:
49:c2:9b:52:b1:42:ba:ef:e9:a5:79:88:20:1e:9c:2d:70:5f:
ec:3b:77:c8:e1:40:6b:0b:40:6b:9f:fe:1c:a7:9c:5a:7f:b7:
89:1a:68:20:7c:36:39:bb:e0:2d:a1:55:6e:7f:96:9f:05:aa:
1b:6f:03:8a:77:86:44:b8:67:29:3d:58:30:c2:6c:f1:5f:c6:
70:53:59:8c:16:da:6f:60:4b:0d:5e:2b:56:86:0c:b6:83:0f:
06:8f:af:93:a4:5e:c2:7d:ab:43:67:9e:17:1b:59:a4:18:eb:
c4:48:42:38:3f:d2:a9:cd:bc:f2:48:73:ba:fd:2d:1c:c2:38:
64:de:d8:b1:76:c4:d4:35:f8:a4:a9:b9:6d:bc:93:4c:aa:7c:
a8:86:0c:7c:45:71:a7:e5:5f:9c:02:87:24:da:01:76:ec:8b:
8f:c9:49:d0:22:59:b5:cb:7d:41:82:c9:79:a9:c9:79:a1:1d:
8f:91:b8:56:28:cc:29:5c:22:4e:e3:9a:d0:34:b2:91:3f:0f:
63:a3:83:41:71:0d:ca:5f:62:65:c9:f8:a1:2f:70:10:45:9a:
fe:af:e5:ba:65:da:c5:1e:47:a4:07:03:55:b2:6b:b6:c7:54:
e2:27:92:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 12:26:54 2025 by rpki-client