Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
File: gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft (raw, json)
Hash identifier: GAj3irERHSypbkIlb/F3oz0uymwtHae3TjeTxEZKHPA=
Subject key identifier: 8C:58:2E:7B:15:6D:3F:95:64:7F:0A:23:92:A9:99:9F:5E:C5:AC:46
Authority key identifier: 80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
Certificate issuer: /CN=80a921408433b66ea50a4000aace10d2add06a85
Certificate serial: 01974CD6CE2A538F02899C208AD61BC2E541
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
Manifest number: 03D6
Signing time: Sun 08 Jun 2025 00:00:35 +0000
Manifest this update: Sun 08 Jun 2025 00:00:35 +0000
Manifest next update: Mon 09 Jun 2025 00:00:35 +0000
Files and hashes: 1: gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl (hash: AC+V1RLHBP8DjHvBPAeqaWPksnre21Mzj80n+Kpb7XU=)
2: knOts_9A8gA0IVqYk7a99kaTuRI.roa (hash: kCE50cAQS4imaI4wXAlSfVZnkYJchZQUkd+tGc4tAWc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 08 Jun 2025 20:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:4c:d6:ce:2a:53:8f:02:89:9c:20:8a:d6:1b:c2:e5:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80a921408433b66ea50a4000aace10d2add06a85
Validity
Not Before: Jun 8 00:00:35 2025 GMT
Not After : Jun 9 00:00:35 2025 GMT
Subject: CN=8c582e7b156d3f95647f0a2392a9999f5ec5ac46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:17:4f:7c:af:8b:dc:d0:0a:7e:3a:92:ea:16:
ad:2a:29:c2:01:ef:e0:82:35:f7:20:ef:cb:f3:0b:
c4:2b:50:a0:45:62:88:ea:35:65:92:39:b1:b6:6f:
ab:c2:53:0d:fb:9f:3f:f6:aa:c1:67:17:2b:02:3b:
84:0e:51:74:90:7e:fa:09:f0:5d:48:66:91:d5:b8:
5c:69:4d:23:50:07:86:28:5c:8e:f0:2b:91:1f:60:
27:c8:d1:88:ec:98:b0:d3:bf:63:85:07:33:1e:de:
35:50:e0:c6:22:cc:99:f9:f7:1f:fc:d0:3e:75:55:
9a:f0:ba:94:31:90:b3:96:0e:86:e1:70:2e:8e:da:
1d:1e:0c:3b:d9:13:02:d6:32:e4:64:c5:50:e9:3d:
31:44:92:2c:20:dc:6d:0d:ce:dd:49:c0:b8:97:9b:
bd:d9:be:27:ca:c9:1a:39:0a:b2:27:ee:a5:a1:f9:
2d:4d:df:ea:2f:c4:a2:58:c9:bd:ee:97:e0:de:00:
15:88:32:61:e2:5c:f3:ff:4e:0d:0e:77:50:75:41:
37:74:22:fd:48:62:93:d1:38:a2:a6:fc:58:e0:dc:
b6:56:14:31:8b:ea:46:c5:91:d6:f1:ba:9e:b6:4b:
44:41:fc:86:52:c8:58:85:72:65:2b:85:78:06:77:
b6:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:58:2E:7B:15:6D:3F:95:64:7F:0A:23:92:A9:99:9F:5E:C5:AC:46
X509v3 Authority Key Identifier:
keyid:80:A9:21:40:84:33:B6:6E:A5:0A:40:00:AA:CE:10:D2:AD:D0:6A:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gKkhQIQztm6lCkAAqs4Q0q3QaoU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/d809b1-faf7-40c2-94ba-f1815a41a033/1/gKkhQIQztm6lCkAAqs4Q0q3QaoU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:44:a2:23:da:df:08:06:3d:e5:12:dc:d5:53:05:a9:f0:21:
1e:3b:1c:51:62:11:ba:13:f3:62:23:ae:3e:7f:9a:c3:a7:7f:
b0:ee:5a:b3:27:11:6b:b3:4d:61:88:f8:4d:42:61:41:7e:ea:
00:0d:7c:b6:ca:67:28:ff:dc:e4:a6:b2:de:f9:f3:02:ee:33:
df:7d:0f:59:02:bc:fa:54:e4:f2:d3:f2:56:79:15:1e:1e:9b:
98:e8:38:06:2a:ef:c9:e3:31:82:e2:f8:67:4c:74:7e:f0:e1:
b0:04:9a:c7:0a:9c:44:7a:8f:53:1c:2f:64:5d:03:32:03:84:
48:6c:27:a7:48:e1:44:38:94:4c:b9:f6:7f:84:b5:bf:f0:b8:
0b:c3:01:4c:94:ab:a0:6f:cd:5d:30:4a:61:05:9d:4e:8a:24:
19:a3:25:53:49:5f:dc:a7:3b:1e:b2:b5:65:b5:30:70:e7:d4:
77:d5:76:e9:dc:64:d0:ea:ec:ba:28:44:c3:01:59:99:2d:6b:
8e:89:88:f0:30:e8:fe:21:77:db:e0:a0:dc:37:d1:4d:50:b6:
a0:4f:7a:ec:b3:83:87:8c:02:54:47:c3:4f:ef:5f:8e:22:6f:
52:8b:69:d2:e1:b3:f8:ed:94:f8:42:dc:72:05:d3:dc:9b:ea:
f3:e3:39:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 8 06:22:42 2025 by rpki-client