Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
File: gKOAANS1q9FTKiU4HLJhXuwe3KA.mft (raw, json)
Hash identifier: h6Codq0Yrl/vt0aR6KISlOLp0VvnKNwt+ok0P/uTP5w=
Subject key identifier: DD:A3:20:3A:11:AC:D8:B7:BC:59:4D:8F:0A:86:CC:2C:2A:16:C3:92
Authority key identifier: 80:A3:80:00:D4:B5:AB:D1:53:2A:25:38:1C:B2:61:5E:EC:1E:DC:A0
Certificate issuer: /CN=80a38000d4b5abd1532a25381cb2615eec1edca0
Certificate serial: 01974BFB6ACB9DC278B3B5B4031C1F4E56D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKOAANS1q9FTKiU4HLJhXuwe3KA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
Manifest number: 0598
Signing time: Sat 07 Jun 2025 20:00:57 +0000
Manifest this update: Sat 07 Jun 2025 20:00:57 +0000
Manifest next update: Sun 08 Jun 2025 20:00:57 +0000
Files and hashes: 1: HuWSmht5WAvI31ALVxohsMAOFVU.roa (hash: NEqYNw5Ua7Qih23DC5eW2LfJiM7edWxcLo1N0yMRd5I=)
2: gKOAANS1q9FTKiU4HLJhXuwe3KA.crl (hash: hDpN9xEWypBKzUeXLPQlKJjRQLwEcqoHokmRUaMBrQU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.crl
rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKOAANS1q9FTKiU4HLJhXuwe3KA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 18:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4b:fb:6a:cb:9d:c2:78:b3:b5:b4:03:1c:1f:4e:56:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a38000d4b5abd1532a25381cb2615eec1edca0
Validity
Not Before: Jun 7 20:00:57 2025 GMT
Not After : Jun 8 20:00:57 2025 GMT
Subject: CN=dda3203a11acd8b7bc594d8f0a86cc2c2a16c392
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:cc:1f:cf:f9:9a:b9:ad:6b:21:17:4f:03:1e:
3f:25:15:24:af:52:7d:1c:f3:d0:df:63:43:ad:14:
0d:fe:db:60:6d:13:a3:33:fc:4c:c0:62:a6:94:09:
bb:93:58:77:79:88:d9:95:28:e5:30:fc:d9:f0:02:
92:10:c7:ae:69:70:00:2c:8a:9f:3c:53:97:f9:3e:
18:d3:b2:3e:9d:a2:a3:1b:96:54:da:4a:c0:57:18:
1a:8c:6b:96:62:6f:20:e5:c5:56:9c:e9:41:b7:7a:
01:ec:2c:1e:60:72:b8:e0:85:4c:d7:26:3a:ab:23:
54:7e:e3:85:a1:9c:da:e5:86:d2:8f:3a:5a:a3:b8:
84:ee:f5:6d:af:11:16:21:ee:66:72:76:fc:46:f0:
b4:5e:63:13:da:bf:26:aa:43:6d:1f:3c:00:11:8d:
4e:b1:11:e6:f4:e6:c1:95:d9:24:f8:61:f5:1e:0b:
92:09:74:db:2d:82:3d:45:58:8a:a2:85:e8:1f:f6:
48:ae:5a:eb:6b:98:2f:7f:ed:f7:b8:e0:5d:7f:d5:
43:91:8a:22:86:1d:6d:45:53:7e:87:3b:37:0f:c9:
e3:fc:a9:38:d6:63:4d:13:30:a5:ee:0d:d2:69:a0:
2d:aa:10:5d:48:9f:9e:85:eb:9b:1c:51:e1:c4:c9:
32:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:A3:20:3A:11:AC:D8:B7:BC:59:4D:8F:0A:86:CC:2C:2A:16:C3:92
X509v3 Authority Key Identifier:
keyid:80:A3:80:00:D4:B5:AB:D1:53:2A:25:38:1C:B2:61:5E:EC:1E:DC:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKOAANS1q9FTKiU4HLJhXuwe3KA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/96/8ef162-e840-4a15-aba6-9e0898f4450c/1/gKOAANS1q9FTKiU4HLJhXuwe3KA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:ea:58:00:5d:90:88:90:b2:48:a6:d7:90:b6:ab:30:65:43:
5f:67:9d:b2:86:23:39:90:d9:1f:cb:ec:ec:1c:4e:2c:55:41:
6d:ea:16:db:ef:0f:13:48:ee:6c:44:f9:29:28:42:33:31:e3:
6d:60:e1:d2:4b:2a:e9:43:12:6e:a1:95:e7:aa:48:6f:79:b0:
3e:f6:4b:c5:55:ee:f8:65:5c:0b:2e:88:bb:34:ba:22:89:7d:
a1:be:ae:05:77:0c:83:3e:a6:eb:e9:ac:0a:d7:63:23:9a:76:
fd:e7:fb:2e:27:5b:1e:e5:e5:b4:85:f3:2d:53:ed:b9:d9:c6:
2f:2d:06:0b:b6:57:95:1c:2f:02:68:a2:40:ef:8a:ef:70:15:
15:54:28:05:50:9b:91:06:ac:af:29:10:fc:78:57:03:e5:05:
90:c6:35:6b:b7:07:d6:5c:1f:85:7a:6d:d0:b2:bc:62:24:2d:
4a:a4:89:08:d8:0c:c5:f9:bb:9b:23:9e:82:77:84:a4:1f:2b:
2f:a4:e5:14:ab:62:29:cb:3b:4c:1b:d0:7d:0a:40:4f:4e:ee:
fa:9a:05:8a:55:4b:a1:17:14:b1:8f:cf:b9:2f:e1:86:79:8b:
61:5b:1a:e3:83:a9:d1:c8:5c:2c:3e:5d:5a:32:db:c7:5c:d1:
54:82:5f:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 00:45:16 2025 by rpki-client