Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
File: gSdW6ySj41K9bonR9aoISIlhpnQ.mft (raw, json)
Hash identifier: JHDs20QfWsUZj1EDpjShy3ivXf9IhR6vcALM5mQeUMM=
Subject key identifier: C8:EA:69:56:A6:7F:CA:40:45:80:A5:9D:E2:B0:BA:CC:F5:16:C8:DF
Authority key identifier: 81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
Certificate issuer: /CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Certificate serial: 019A71B90BBDFFC44127070CDEB421225110
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
Manifest number: 0A36
Signing time: Tue 11 Nov 2025 07:02:23 +0000
Manifest this update: Tue 11 Nov 2025 07:02:23 +0000
Manifest next update: Wed 12 Nov 2025 07:02:23 +0000
Files and hashes: 1: gSdW6ySj41K9bonR9aoISIlhpnQ.crl (hash: mfFY4Dbeulv9K9SFf9WYevBknwQbSjzRrw4+bxB028E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 07:02:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:b9:0b:bd:ff:c4:41:27:07:0c:de:b4:21:22:51:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=812756eb24a3e352bd6e89d1f5aa08488961a674
Validity
Not Before: Nov 11 07:02:23 2025 GMT
Not After : Nov 12 07:02:23 2025 GMT
Subject: CN=c8ea6956a67fca404580a59de2b0baccf516c8df
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:34:ae:48:14:11:0e:3f:db:28:de:dd:08:e3:
58:84:a1:37:bc:7a:a4:62:a4:f8:ec:c6:b2:78:5d:
08:6f:3c:74:ad:2b:70:d9:ba:27:33:e5:45:81:c1:
6d:be:a1:9a:37:15:a7:26:43:bd:b9:eb:d5:30:54:
8f:13:69:41:77:77:b0:6a:11:61:31:e0:69:6f:5d:
1e:d9:15:75:73:ef:ad:18:1f:22:b1:a3:09:b0:c9:
63:ff:8a:5d:d9:b3:06:15:fa:af:d4:17:26:d1:d3:
3a:0b:48:19:fc:23:e1:a5:00:af:40:3d:1d:7c:cd:
12:e5:69:53:db:27:b1:06:d5:b4:be:36:fb:96:64:
ab:90:26:88:06:b1:5d:58:a8:b2:3c:96:83:81:d8:
01:c3:b4:5c:5d:13:a7:9b:79:60:7f:59:8a:d1:29:
2f:23:73:c9:64:23:b1:88:17:85:e1:4c:52:12:60:
3a:67:b7:26:31:42:6c:0f:d2:29:7f:bd:13:b1:e9:
38:e0:85:48:d8:e3:da:f0:2a:7b:c0:80:7e:2e:d5:
9e:e5:3d:42:d4:4e:fd:dd:c7:31:b8:81:54:47:8f:
b1:d2:28:eb:34:9d:cb:c3:81:ae:60:f3:2d:b8:7a:
ab:3d:51:68:50:cd:eb:4c:8e:6f:00:18:c9:e3:01:
6e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:EA:69:56:A6:7F:CA:40:45:80:A5:9D:E2:B0:BA:CC:F5:16:C8:DF
X509v3 Authority Key Identifier:
keyid:81:27:56:EB:24:A3:E3:52:BD:6E:89:D1:F5:AA:08:48:89:61:A6:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gSdW6ySj41K9bonR9aoISIlhpnQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/ba6634-e915-4036-a997-6d521bc474f4/1/gSdW6ySj41K9bonR9aoISIlhpnQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:5a:8b:2b:df:e0:e5:62:9e:f9:37:a8:19:67:c9:da:a2:be:
fa:df:5b:d6:e4:e9:4c:78:17:d5:05:49:80:ed:3b:05:69:8f:
96:e1:2d:7a:fc:82:74:c3:12:b8:a0:31:06:02:89:df:97:9a:
20:8d:8f:93:a4:5a:e8:ee:32:87:b1:d2:82:59:50:37:bd:68:
80:4b:76:19:0a:2a:0d:4d:a0:86:66:70:87:81:07:87:d2:35:
b8:2b:b5:1b:5f:8e:fb:4f:47:1d:cf:ab:d3:28:4e:ff:c1:98:
ef:4c:d6:1d:a1:75:ed:7a:cb:3a:1d:a5:38:27:bf:8f:91:35:
d9:ff:cb:f9:4f:48:f1:4b:08:83:dd:42:a3:93:df:4b:0f:87:
ba:af:a5:a0:13:b4:13:8b:c9:85:0f:29:b8:51:30:bd:28:f0:
29:95:ea:e3:38:ac:49:f0:29:3a:f5:10:81:87:2c:e8:f4:37:
19:f0:a2:aa:03:ae:59:7b:06:8e:fb:34:d1:a1:ae:9b:92:6b:
57:a3:a9:fd:5c:c8:5f:81:7f:6e:11:95:ab:a6:67:62:92:b9:
16:ea:10:90:e7:75:7f:8e:b3:45:94:1c:d3:6d:f3:f4:32:84:
ee:c5:73:52:49:92:97:67:ed:cd:85:b9:e4:91:7b:36:2e:55:
8c:49:16:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 12:51:41 2025 by rpki-client