Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
File: gKOAANS1q9FTKiU4HLJhXuwe3KA.mft (raw, json)
Hash identifier: wk8TLIG4RoOw5R2JREeuOuugz1gQBBrbgKBP/pCW0xo=
Subject key identifier: 80:D0:05:BB:FB:1E:E8:7F:40:91:07:B0:77:2E:F3:C0:5A:A5:0A:E8
Authority key identifier: 80:A3:80:00:D4:B5:AB:D1:53:2A:25:38:1C:B2:61:5E:EC:1E:DC:A0
Certificate issuer: /CN=80a38000d4b5abd1532a25381cb2615eec1edca0
Certificate serial: 019923317DA37C1ECF02E1E1CC726FD4A9C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKOAANS1q9FTKiU4HLJhXuwe3KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
Manifest number: 068C
Signing time: Sun 07 Sep 2025 08:01:09 +0000
Manifest this update: Sun 07 Sep 2025 08:01:09 +0000
Manifest next update: Mon 08 Sep 2025 08:01:09 +0000
Files and hashes: 1: HuWSmht5WAvI31ALVxohsMAOFVU.roa (hash: NEqYNw5Ua7Qih23DC5eW2LfJiM7edWxcLo1N0yMRd5I=)
2: gKOAANS1q9FTKiU4HLJhXuwe3KA.crl (hash: qoIjDQJcTGYH600ze9UbhvlPRxdWBEPmN60V4gYSFko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKOAANS1q9FTKiU4HLJhXuwe3KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 08 Sep 2025 05:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:23:31:7d:a3:7c:1e:cf:02:e1:e1:cc:72:6f:d4:a9:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a38000d4b5abd1532a25381cb2615eec1edca0
Validity
Not Before: Sep 7 08:01:09 2025 GMT
Not After : Sep 8 08:01:09 2025 GMT
Subject: CN=80d005bbfb1ee87f409107b0772ef3c05aa50ae8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:09:a6:55:f3:eb:6f:97:0b:9e:33:25:9f:cf:
15:64:64:0d:6d:30:99:d9:ff:c6:44:7f:86:75:ed:
6e:a5:78:35:d0:33:79:ce:f3:25:2f:76:03:eb:e7:
89:5b:b6:c9:7f:7f:d3:52:57:34:45:4d:02:03:28:
d4:0a:93:29:5c:da:ac:1c:da:33:fa:b8:a5:4b:44:
37:02:c9:3b:f8:30:ee:d4:29:fe:e8:34:5b:55:11:
42:4a:29:7d:08:e9:4c:ae:cd:38:f8:23:5a:90:b9:
29:e6:ff:89:cb:00:e0:ac:3d:ba:cd:88:7e:5a:bb:
e2:d7:d6:fd:24:db:59:ad:29:ac:00:7a:be:5d:06:
a8:a0:48:c8:8f:18:81:32:df:4b:97:02:44:c0:3b:
cb:03:86:ee:1a:59:09:1f:44:e4:06:2b:e3:66:37:
e3:ad:55:5e:bf:b8:c0:f8:6b:ab:12:f4:85:df:4e:
38:ac:60:75:6a:21:4c:43:f7:d2:0b:81:2f:f8:58:
e7:ca:3a:0a:57:99:f6:5b:d0:cb:eb:f5:16:5f:33:
3c:cd:d7:13:5b:ed:fc:24:16:59:dc:ba:c7:60:a4:
24:c5:d1:41:9e:0a:a5:59:36:61:fa:42:ac:d5:00:
00:9a:51:98:6a:2b:cc:20:94:87:61:8d:a0:e5:06:
9f:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:D0:05:BB:FB:1E:E8:7F:40:91:07:B0:77:2E:F3:C0:5A:A5:0A:E8
X509v3 Authority Key Identifier:
keyid:80:A3:80:00:D4:B5:AB:D1:53:2A:25:38:1C:B2:61:5E:EC:1E:DC:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKOAANS1q9FTKiU4HLJhXuwe3KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:00:eb:03:18:bc:4f:97:78:77:c1:2e:38:5f:62:9c:fd:c5:
99:a9:c0:0b:93:53:4c:e3:94:01:e9:5b:51:e3:e1:22:a6:07:
fc:61:ff:d2:1d:ba:91:9a:d5:4f:18:93:25:71:24:ee:98:5a:
4b:fa:c6:6a:df:a5:eb:86:1a:69:c6:f6:3d:92:e3:70:94:5b:
b7:5a:3b:c6:57:4a:ee:f2:d9:34:1b:b8:8b:0b:c7:14:6e:27:
65:76:d7:8c:b7:33:12:c3:f3:99:fc:16:59:2d:12:4c:80:e9:
4e:39:08:56:cc:dd:52:9c:97:03:63:26:03:d0:06:58:13:e9:
1a:ae:4f:50:13:97:31:ff:7f:23:77:4f:df:6e:55:e2:65:94:
fa:a5:b7:ee:0f:bb:8f:95:f6:32:d4:1f:6e:d9:f7:31:66:d5:
77:48:98:f2:f4:5e:3e:db:0f:9e:f7:af:7e:ed:f0:02:eb:2b:
74:68:80:7f:d0:90:7e:43:a4:aa:01:ff:96:bd:8e:6e:a5:f5:
97:84:07:cd:db:ba:87:86:b4:05:6a:a4:25:a9:25:9f:ad:1e:
5a:df:ec:09:8c:f6:d0:00:7b:1d:bd:9f:60:db:c2:7c:4e:5d:
17:bd:cb:ff:02:c8:83:cb:a6:90:1f:1b:26:0b:20:0c:6f:f9:
cf:16:4d:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Sep 7 10:15:07 2025 by rpki-client