Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
File: gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft (raw, json)
Hash identifier: 7/bh1qsBmj4uJBLACWpjFrA93C2g/N7XDgpHi+aQ9Gg=
Subject key identifier: D9:D2:88:F5:F7:D3:77:25:21:19:A0:9E:CB:EA:B5:EC:49:29:C1:D5
Authority key identifier: 81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
Certificate issuer: /CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Certificate serial: 019A71B929191DE1306C162A5EA4CA2F6503
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
Manifest number: 108D
Signing time: Tue 11 Nov 2025 07:02:31 +0000
Manifest this update: Tue 11 Nov 2025 07:02:31 +0000
Manifest next update: Wed 12 Nov 2025 07:02:31 +0000
Files and hashes: 1: gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl (hash: 3+Pf6WbnnHZ4jLafsDIQ2/VOqV/LcGnJRVv2HyQE+60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:29:19:1d:e1:30:6c:16:2a:5e:a4:ca:2f:65:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81cd0262a221c35a67cf173a60d1ecd9afabddb5
Validity
Not Before: Nov 11 07:02:31 2025 GMT
Not After : Nov 12 07:02:31 2025 GMT
Subject: CN=d9d288f5f7d377252119a09ecbeab5ec4929c1d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:e9:e0:86:04:3a:38:f0:4e:66:1e:4c:7a:0c:
be:50:09:f7:8c:29:7c:ed:fd:b1:f8:5f:d9:72:a6:
e6:f9:3f:99:c9:fe:79:fc:26:fa:49:cf:6c:e2:19:
8b:85:0f:bb:70:86:72:45:3a:80:8a:44:a6:ad:0d:
26:a0:f1:e3:42:0e:51:7c:db:f6:85:3b:4f:b2:06:
2d:81:2b:5c:18:67:24:f9:25:91:20:9c:91:4f:19:
09:54:8a:c1:73:0c:1e:ed:34:0e:56:19:f6:c6:e0:
b9:f6:ed:3c:86:f2:d5:a9:9b:ab:27:32:33:1e:05:
dd:4e:e2:a1:24:82:8f:4c:e5:ff:6a:77:c2:8e:2e:
d0:15:80:50:cd:36:84:33:50:05:4d:f3:d5:ea:18:
d3:ab:4b:85:6e:76:02:2b:b2:99:69:17:22:3a:bd:
3d:58:6f:5c:65:1e:48:73:e1:4f:ce:0f:d3:2f:9e:
39:6d:f8:c6:8d:f4:bc:f6:d1:30:49:f3:5e:3e:67:
b0:db:56:1a:d6:b0:cc:f1:b0:d0:5d:ea:01:98:f4:
f6:8b:e3:ff:a0:3c:f8:db:c1:18:31:7c:73:23:0f:
d3:70:07:5d:3c:41:02:98:79:f3:a9:87:9d:62:76:
9c:0f:3b:ac:70:d1:06:9b:3b:ac:01:40:4a:97:cb:
21:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:D2:88:F5:F7:D3:77:25:21:19:A0:9E:CB:EA:B5:EC:49:29:C1:D5
X509v3 Authority Key Identifier:
keyid:81:CD:02:62:A2:21:C3:5A:67:CF:17:3A:60:D1:EC:D9:AF:AB:DD:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gc0CYqIhw1pnzxc6YNHs2a-r3bU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/740813-9180-406f-af6a-fdd0962ceaab/1/gc0CYqIhw1pnzxc6YNHs2a-r3bU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:51:f8:5c:ec:02:c6:62:f1:1b:9b:1b:4d:f5:3d:3d:bf:65:
a8:f0:63:74:2b:4d:4e:39:fe:e4:d8:d1:2a:da:ba:eb:4f:42:
d4:8a:7d:2e:9b:52:92:9d:2e:2c:52:f9:3d:e4:8f:88:37:86:
54:30:32:f3:9c:a8:ce:c8:3c:18:bb:78:59:81:bd:fb:eb:77:
23:08:e4:1e:9d:fa:67:90:26:3f:03:45:8e:d8:f3:dc:fa:a4:
f5:3c:cc:d9:2e:29:de:7c:a3:89:c4:db:c0:90:2b:2d:ff:a4:
6e:e7:12:e2:ef:ac:9b:38:cd:62:b1:c0:8a:f8:c6:5a:d3:3b:
08:d5:88:17:0e:07:df:c2:3e:80:2a:aa:71:ae:6f:5d:42:d9:
2c:8d:7a:a2:cf:81:30:df:ea:01:74:9a:d0:9c:00:d9:46:88:
9f:d5:b2:dc:8f:25:a6:67:c3:b4:a6:e4:2a:39:d9:23:3f:0d:
51:b3:06:1b:e5:ed:15:b1:fa:c9:e6:5c:cd:a2:1a:45:a9:7f:
4e:03:34:6a:20:f0:75:7e:52:8e:84:52:54:b8:84:e0:e8:e5:
3c:c4:98:eb:db:10:54:95:14:f7:cb:d5:a8:52:c9:a3:09:99:
0b:f4:ce:4e:7f:f9:4d:19:7c:b0:80:e7:aa:dd:9b:e4:65:92:
bd:82:a3:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:43:07 2025 by rpki-client