Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
File: 1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft (raw, json)
Hash identifier: tjq18KxH87DIqUH+cJVDwoQb+31+Cis//lnNBnekZnA=
Subject key identifier: 9E:86:63:F5:F6:8B:20:5F:C5:51:A5:29:EE:19:55:28:0B:75:1A:29
Authority key identifier: D4:69:86:7D:1D:69:3E:79:A6:A5:EE:90:14:E4:13:F0:39:EB:50:D8
Certificate issuer: /CN=d469867d1d693e79a6a5ee9014e413f039eb50d8
Certificate serial: 019922FAA1EA89A02CB2DA9B84B3CFBF0FBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
Manifest number: 10A2
Signing time: Sun 07 Sep 2025 07:01:14 +0000
Manifest this update: Sun 07 Sep 2025 07:01:14 +0000
Manifest next update: Mon 08 Sep 2025 07:01:14 +0000
Files and hashes: 1: 1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl (hash: o9uXwfH6c3YtKleEKo/NlqUeAnH3nb/xsBcc2cVVIY8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl
rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:22:fa:a1:ea:89:a0:2c:b2:da:9b:84:b3:cf:bf:0f:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d469867d1d693e79a6a5ee9014e413f039eb50d8
Validity
Not Before: Sep 7 07:01:14 2025 GMT
Not After : Sep 8 07:01:14 2025 GMT
Subject: CN=9e8663f5f68b205fc551a529ee1955280b751a29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:35:71:c8:aa:1e:6e:69:7e:bf:80:33:ba:6b:
58:ca:91:06:d7:d6:a8:26:71:58:41:58:1d:47:1f:
17:c5:41:7b:7c:fb:2a:b8:58:2a:bf:e0:61:72:2b:
82:e6:5e:7b:2d:e7:43:b4:b8:7b:44:ee:6f:6e:03:
dc:e9:21:0d:0d:ca:62:27:f7:be:8a:41:67:67:88:
4f:f6:90:89:ba:34:bc:a8:36:de:57:e4:a7:59:f5:
92:8e:8b:1d:fd:1b:af:40:cc:72:07:1d:7d:61:a3:
97:d6:d0:f0:b8:fd:41:04:4d:51:6b:30:db:2b:8a:
17:10:91:f5:69:75:e2:5e:03:13:81:7c:a1:3a:e4:
6b:72:81:b6:6b:ff:79:b9:0c:79:96:62:f0:ec:89:
f5:e6:0e:91:b6:1f:72:c3:4e:9f:00:ed:55:76:70:
6d:8f:d4:39:c2:cd:33:0a:9d:02:ff:30:4b:b9:c8:
05:d0:af:28:d6:48:f0:11:a4:09:35:89:b1:f3:b8:
30:85:3a:1b:08:72:1d:b4:27:a7:ee:d4:81:27:73:
18:ff:fd:39:1c:25:8c:25:63:3e:7f:46:2a:5b:a0:
b1:1f:01:44:fb:a7:7f:f1:4c:e4:75:39:66:91:90:
aa:74:b5:83:21:cd:f4:f9:fe:92:f8:33:c3:26:52:
e6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:86:63:F5:F6:8B:20:5F:C5:51:A5:29:EE:19:55:28:0B:75:1A:29
X509v3 Authority Key Identifier:
keyid:D4:69:86:7D:1D:69:3E:79:A6:A5:EE:90:14:E4:13:F0:39:EB:50:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1GmGfR1pPnmmpe6QFOQT8DnrUNg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/b485d9-eedc-4706-a9e6-41de97dc9b6c/1/1GmGfR1pPnmmpe6QFOQT8DnrUNg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:0d:97:07:df:8a:72:d3:ec:c3:39:6f:1d:49:a2:98:68:f7:
a0:0d:51:47:62:d4:93:25:39:d9:10:e4:c5:62:75:01:e9:f5:
51:83:cf:57:22:3b:87:65:ca:93:2e:ab:7a:00:c9:95:6b:b1:
15:fb:b5:de:d6:8d:75:85:aa:8f:78:c5:48:e3:50:66:56:65:
63:6e:52:17:a2:b8:dd:d9:ac:5b:6f:34:eb:0c:bd:9f:68:26:
40:58:ab:e8:d6:19:5b:30:c6:8f:4e:ba:31:ff:36:e2:d0:da:
6c:4d:83:f1:fa:77:3a:8d:ca:c7:e0:76:2c:1e:39:89:60:70:
f5:c0:e3:8b:79:43:41:e7:e1:49:81:03:30:67:b3:c5:bc:5e:
e1:f1:81:cc:50:a7:92:bc:d2:dc:b8:20:1a:4f:90:70:3a:b8:
ce:03:db:82:2f:5b:25:0b:99:38:d2:cf:51:1e:32:c2:0c:60:
ec:bd:3c:ca:0d:e2:12:76:b4:c1:cc:c2:32:69:bc:e0:86:0a:
a9:95:cf:26:a2:a2:39:1e:a1:5e:10:ea:de:90:9a:1c:a0:cc:
8d:2b:d8:8c:7b:50:6f:35:27:35:12:db:b1:a5:77:86:7a:54:
cb:eb:0f:13:d9:0f:96:eb:24:d0:4b:f0:1d:c6:d2:d0:5a:90:
4a:94:5e:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 11:22:18 2025 by rpki-client