Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
File: gq09xArNGFL8dKzdN9jwe7sCXRg.mft (raw, json)
Hash identifier: 11UhWbKlw2De0BXhZKUGq/WjmZEnEYfyVEDZdHc4zs8=
Subject key identifier: 93:8E:14:70:9C:6E:A8:5F:A5:91:BD:F0:08:09:A5:87:8F:B8:A9:8E
Authority key identifier: 82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
Certificate issuer: /CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Certificate serial: 0198CC13FC4CC09AD4DF6FABA4B9497BAFE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
Manifest number: 022C
Signing time: Thu 21 Aug 2025 10:01:58 +0000
Manifest this update: Thu 21 Aug 2025 10:01:58 +0000
Manifest next update: Fri 22 Aug 2025 10:01:58 +0000
Files and hashes: 1: gq09xArNGFL8dKzdN9jwe7sCXRg.crl (hash: H197HWBTxeteAabMUGiO/UldBIq9YDkaZgzcMpk8C1o=)
2: moIHrCUIysvqre1db9iG8YhXiD4.roa (hash: 3qmhRdBwt3IbZM/x/JJkjl8tv0bK7oEsrL8A8nVm2tw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 22 Aug 2025 08:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:cc:13:fc:4c:c0:9a:d4:df:6f:ab:a4:b9:49:7b:af:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=82ad3dc40acd1852fc74acdd37d8f07bbb025d18
Validity
Not Before: Aug 21 10:01:58 2025 GMT
Not After : Aug 22 10:01:58 2025 GMT
Subject: CN=938e14709c6ea85fa591bdf00809a5878fb8a98e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:3f:7f:b2:70:37:38:45:3e:a8:21:53:59:4d:
46:ff:56:de:f3:51:9e:42:b4:48:0b:22:ea:cf:c4:
d5:8a:f9:9f:a8:36:24:42:49:a2:79:7e:be:07:07:
da:ae:dc:c9:98:a1:06:07:75:60:44:ec:5c:af:c5:
85:ef:48:17:7b:39:d5:e0:5b:a9:41:59:6a:db:6a:
58:43:f9:38:31:8d:c7:c5:b3:42:3f:de:44:e0:c6:
b2:92:17:c2:12:03:1e:34:dc:66:ae:84:f6:32:b7:
4c:07:cf:73:e7:32:bc:07:a4:6a:c9:cc:37:1c:cd:
78:13:04:a0:50:23:42:24:ae:eb:e6:80:51:4b:85:
f2:56:ca:76:13:68:d3:12:d8:32:80:59:00:eb:d9:
77:01:53:dc:2d:95:6e:db:dd:36:7c:7c:e9:86:e3:
7a:8c:53:e0:0d:fd:8f:6d:eb:07:4d:b7:6b:8e:a1:
36:2d:cb:c0:c2:f7:f6:2e:72:4f:99:7c:57:6e:e1:
e9:03:a5:da:9a:01:d9:13:a5:b2:9a:47:21:7c:61:
a2:2c:23:4e:ce:e2:6f:76:90:0f:57:84:3c:1d:31:
87:dc:28:ba:cd:64:48:53:a4:a4:20:40:4c:61:a0:
36:3a:06:7f:da:9d:c7:47:a9:a0:93:97:f3:81:b2:
2d:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:8E:14:70:9C:6E:A8:5F:A5:91:BD:F0:08:09:A5:87:8F:B8:A9:8E
X509v3 Authority Key Identifier:
keyid:82:AD:3D:C4:0A:CD:18:52:FC:74:AC:DD:37:D8:F0:7B:BB:02:5D:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gq09xArNGFL8dKzdN9jwe7sCXRg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/92/217b73-0562-476e-8d83-849c5c88dbfc/1/gq09xArNGFL8dKzdN9jwe7sCXRg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:9c:22:27:aa:f2:a9:31:15:92:f0:b1:7e:ef:b1:bc:8e:29:
46:71:89:49:7d:fb:44:31:51:32:0e:fb:e6:31:5c:ef:86:a6:
17:f1:c5:36:a8:ae:21:96:49:0a:ee:b3:fd:24:15:b8:51:35:
c9:d6:fe:36:00:7b:18:c5:9c:7f:75:cf:7a:6c:a5:c3:3a:3d:
71:99:7c:c0:37:cd:a4:21:5a:0d:e2:56:17:e1:43:49:47:36:
a5:d3:6d:2e:4d:b5:47:d2:5f:37:53:05:88:3d:77:bc:4e:b6:
f3:6d:81:e7:30:ff:bd:f7:e7:27:a7:f1:d0:94:5d:32:71:b3:
23:e8:66:bb:66:7f:13:57:6f:8c:e2:41:20:f4:b6:8d:07:6d:
59:fe:c4:11:15:f7:29:e6:d7:88:1c:b6:b0:89:a2:5e:25:01:
ad:e0:4f:b3:f7:bc:07:bc:3b:90:7e:58:99:ac:55:eb:f3:d6:
67:1d:ee:36:14:ff:51:8e:d4:d4:57:e6:b5:92:fc:89:0e:a6:
49:ec:9d:70:eb:e7:6c:a6:29:19:78:9d:ab:bc:f9:fb:18:f1:
fa:00:72:c8:ef:e3:c2:dd:8e:bd:4a:96:bd:53:a1:3b:89:74:
0a:91:f9:c6:41:d0:4f:59:a0:a1:b4:0a:a7:2a:6b:c4:8a:ed:
be:70:b6:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Aug 21 14:52:41 2025 by rpki-client