Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
File: gKOAANS1q9FTKiU4HLJhXuwe3KA.mft (raw, json)
Hash identifier: 6BnKV+CY2ONnfEvo2hEESLkgrmFmy6AjBJHxCSSKLu4=
Subject key identifier: FE:55:40:60:44:02:55:E2:71:78:6B:EB:A2:D6:E5:C7:7B:09:B7:7C
Authority key identifier: 80:A3:80:00:D4:B5:AB:D1:53:2A:25:38:1C:B2:61:5E:EC:1E:DC:A0
Certificate issuer: /CN=80a38000d4b5abd1532a25381cb2615eec1edca0
Certificate serial: 019A240A4850B1E6BEB0D829EC05D386D67D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKOAANS1q9FTKiU4HLJhXuwe3KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
Manifest number: 0711
Signing time: Mon 27 Oct 2025 05:00:44 +0000
Manifest this update: Mon 27 Oct 2025 05:00:44 +0000
Manifest next update: Tue 28 Oct 2025 05:00:44 +0000
Files and hashes: 1: HuWSmht5WAvI31ALVxohsMAOFVU.roa (hash: NEqYNw5Ua7Qih23DC5eW2LfJiM7edWxcLo1N0yMRd5I=)
2: gKOAANS1q9FTKiU4HLJhXuwe3KA.crl (hash: eucIN5dOlsfyI9zCer1r42LBA+D7cmUYNkqel7qZM9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKOAANS1q9FTKiU4HLJhXuwe3KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Oct 2025 05:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:24:0a:48:50:b1:e6:be:b0:d8:29:ec:05:d3:86:d6:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a38000d4b5abd1532a25381cb2615eec1edca0
Validity
Not Before: Oct 27 05:00:44 2025 GMT
Not After : Oct 28 05:00:44 2025 GMT
Subject: CN=fe554060440255e271786beba2d6e5c77b09b77c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:15:fb:63:44:dd:73:12:bb:03:71:d5:49:e4:
53:8b:86:29:e4:71:52:6f:a7:8d:59:0d:1a:44:01:
a9:09:77:92:c6:64:4c:74:30:c7:74:95:e7:95:59:
1f:04:e6:a5:72:d3:b2:08:3e:33:35:3f:dd:6b:1f:
a2:af:05:67:df:21:c5:42:1c:a3:3f:83:12:06:9b:
81:51:6c:8f:8e:17:cc:c0:2f:07:1c:5e:1d:7a:d8:
d0:fe:5d:a1:f7:78:5b:41:b5:55:e4:a3:b6:45:e4:
3a:ab:ef:7b:9d:35:cd:74:d5:71:ef:72:08:0b:ec:
72:58:4f:22:61:06:06:a6:cf:9a:2e:5e:ce:e5:70:
a2:66:9e:37:41:d4:33:79:e0:cf:cf:ac:63:f1:fc:
56:a0:2f:b6:04:21:7e:3c:08:9a:bb:06:d4:3d:1d:
ca:e0:db:7a:64:27:99:3c:3a:9f:46:ed:b9:1a:bc:
a3:b4:22:89:a4:39:31:f3:44:33:d4:a5:5c:5b:e8:
d9:9a:35:04:47:e6:3d:37:68:d9:6c:80:10:1f:7c:
79:74:f3:43:ef:27:3f:9b:58:9f:33:b6:26:78:7f:
c1:8e:42:cb:34:4e:34:6f:fc:0d:fc:07:c1:03:e1:
25:5b:24:f7:08:b3:9d:1c:34:68:f6:c1:f5:1a:db:
60:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:55:40:60:44:02:55:E2:71:78:6B:EB:A2:D6:E5:C7:7B:09:B7:7C
X509v3 Authority Key Identifier:
keyid:80:A3:80:00:D4:B5:AB:D1:53:2A:25:38:1C:B2:61:5E:EC:1E:DC:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKOAANS1q9FTKiU4HLJhXuwe3KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:af:5b:ec:01:45:44:00:28:d3:e6:20:26:f9:61:36:d6:3a:
4e:01:99:61:f4:91:3b:0e:c2:88:7e:a9:e8:2b:ba:fc:b5:30:
f5:29:59:2c:6d:3a:4d:7a:2a:54:28:98:16:49:0e:cf:4d:05:
f4:a4:b9:69:8e:ff:55:42:0a:0c:86:01:b3:bf:48:e2:96:cd:
a0:12:04:12:69:2e:82:16:7b:b1:98:a0:59:bf:ea:9e:f1:f4:
6c:e9:36:bb:ca:f8:73:55:72:de:4c:8c:f8:d1:5f:7a:04:06:
9a:b1:fe:33:5c:46:d9:01:57:f8:b3:b8:c7:86:dc:4d:26:58:
9a:46:f4:30:48:46:51:12:4d:76:22:46:63:b0:f6:76:ea:43:
88:2b:53:c6:de:0f:89:e3:b0:a9:d2:2a:eb:29:fa:c8:93:f5:
d6:4b:7b:64:d5:07:88:6b:de:f5:6d:f0:a1:b3:83:f0:a0:bc:
c1:cb:76:48:c5:40:8a:db:3f:3a:61:5d:b4:1e:da:1e:0f:9b:
1d:5b:5b:2b:78:01:96:91:b3:39:94:eb:e9:f1:13:06:60:b6:
68:38:a6:d9:60:c5:b5:56:b3:32:1a:20:ce:df:55:c2:97:03:
2c:fe:1c:92:62:d0:53:68:96:43:ee:de:bc:62:15:e0:b2:79:
53:93:87:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 27 11:19:17 2025 by rpki-client