Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
File: gNZ6hECc7boCLusDW9itYg1oPqc.mft (raw, json)
Hash identifier: Ddt5qYkszjVAzO9IDtJzlEjWXjfal34qnw/0VvCG9JI=
Subject key identifier: 41:A2:39:38:B8:D2:88:5F:38:C6:FD:77:48:D8:02:34:61:18:43:7D
Authority key identifier: 80:D6:7A:84:40:9C:ED:BA:02:2E:EB:03:5B:D8:AD:62:0D:68:3E:A7
Certificate issuer: /CN=80d67a84409cedba022eeb035bd8ad620d683ea7
Certificate serial: 019A52D2B0C7AF149CDBD433A7096219111C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
Manifest number: 16A4
Signing time: Wed 05 Nov 2025 07:02:10 +0000
Manifest this update: Wed 05 Nov 2025 07:02:10 +0000
Manifest next update: Thu 06 Nov 2025 07:02:10 +0000
Files and hashes: 1: HckIWldHWwqX0CJ7X-XU88JAoY8.roa (hash: 0kYehz1g3idStzqPQ6DNbC0IwoRnTc8QtqRoQ8JJZs8=)
2: gNZ6hECc7boCLusDW9itYg1oPqc.crl (hash: eodk8QlEWiYPhpUsaEfKQGMp3rMSiQsmmgVBi6JF+7s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d2:b0:c7:af:14:9c:db:d4:33:a7:09:62:19:11:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80d67a84409cedba022eeb035bd8ad620d683ea7
Validity
Not Before: Nov 5 07:02:10 2025 GMT
Not After : Nov 6 07:02:10 2025 GMT
Subject: CN=41a23938b8d2885f38c6fd7748d802346118437d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:ea:5e:66:7a:0a:a0:c2:84:44:e9:41:c3:e3:
ac:83:55:7f:17:6b:9b:9a:32:ea:17:06:6e:96:f7:
9c:da:53:98:1e:74:16:19:58:f2:d7:38:94:29:ff:
46:f0:0e:dc:d3:c8:e8:02:f5:a8:19:98:36:da:f7:
c7:9a:5b:4e:28:15:74:b1:b6:c4:fb:fd:8e:26:00:
cc:7d:d9:a9:4a:62:47:16:ad:4b:6e:af:1c:43:9e:
ca:92:ab:ef:13:0a:3a:6a:0c:a2:94:82:4b:a6:47:
25:c8:02:92:52:74:91:12:fb:0d:70:6c:d1:cd:b0:
81:94:ab:04:83:4a:1f:d6:9c:0c:43:38:33:5a:25:
2d:8f:ea:48:21:89:62:26:6a:38:f0:06:61:af:99:
38:15:55:fe:1a:39:87:66:40:0c:ba:1b:16:95:21:
da:a0:c6:70:de:98:79:7e:c5:e2:bc:7f:0d:56:62:
40:fb:fe:9f:cc:ee:c6:1e:26:22:82:8e:07:6f:a5:
b3:cc:59:b9:55:19:a8:9a:fc:d2:02:07:2d:3e:97:
e6:5f:52:ff:7c:5c:c9:91:f3:a2:cf:13:f4:ac:cb:
e4:84:c5:f1:89:fe:d6:0f:86:96:4d:ab:75:53:3b:
7f:93:5b:9b:e5:66:5f:30:f2:b9:7f:45:4d:54:c4:
e4:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:A2:39:38:B8:D2:88:5F:38:C6:FD:77:48:D8:02:34:61:18:43:7D
X509v3 Authority Key Identifier:
keyid:80:D6:7A:84:40:9C:ED:BA:02:2E:EB:03:5B:D8:AD:62:0D:68:3E:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gNZ6hECc7boCLusDW9itYg1oPqc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/13d50b-7db3-4d10-8a4e-6eb3aa6a21af/1/gNZ6hECc7boCLusDW9itYg1oPqc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bc:0f:10:55:15:36:a3:7b:40:6f:a6:0a:fa:eb:79:02:06:b0:
16:8f:0a:3a:ef:32:3b:6f:a8:cf:b9:4c:5b:c3:97:6e:ab:6d:
a2:cb:93:81:8e:31:9e:78:3c:f8:3d:50:8c:13:d8:6a:b2:6a:
37:05:34:a2:08:ff:9b:98:d1:54:ab:21:3c:fb:e9:d4:a8:96:
64:42:2e:d5:af:c0:73:7d:e1:0f:e3:c9:9d:e0:cf:19:22:2d:
ff:13:7b:ac:c8:7b:e4:5b:0c:e2:ad:9d:5a:8a:ee:26:be:6f:
15:eb:0e:ad:e9:60:e6:42:9a:7a:51:5b:ee:2e:08:3a:a9:f9:
30:5c:05:5b:fa:00:16:48:9e:77:86:d6:ce:f6:e2:1d:f5:a0:
56:63:4f:ad:7f:0a:83:bf:b4:14:f6:dd:33:1a:3d:d6:e7:eb:
17:3d:dd:c4:50:79:5d:73:52:aa:f8:5b:07:d6:94:1e:b0:f2:
7e:91:ac:24:28:37:9f:a8:3b:18:25:37:05:11:3b:93:b8:3c:
03:6c:32:18:31:b1:9c:d7:4a:8c:64:a3:13:a8:34:d5:c9:57:
1f:7c:8f:db:ba:ea:71:f4:91:0e:a9:a5:43:72:e0:c3:4d:c8:
5e:b6:66:f0:43:88:6d:3f:6a:3d:46:b3:75:3e:b7:74:3f:29:
fc:1a:43:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 11:43:40 2025 by rpki-client