Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
File: GEe1nSHqNrMGL8qAznXBYWr1EZo.mft (raw, json)
Hash identifier: KtydmgSDl5Xm1FOQT+owpZW3qLnl5j91b8nsmtlimzI=
Subject key identifier: 58:4B:39:A8:26:98:95:51:96:63:FC:50:CA:4D:8F:3D:6B:79:55:84
Authority key identifier: 18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
Certificate issuer: /CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Certificate serial: 019A51BE9DE5C66FF6123541F9FB6B862C95
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
Manifest number: 172C
Signing time: Wed 05 Nov 2025 02:00:37 +0000
Manifest this update: Wed 05 Nov 2025 02:00:37 +0000
Manifest next update: Thu 06 Nov 2025 02:00:37 +0000
Files and hashes: 1: 8cLxwhiwZ15o52IG0lIcBm8BfIQ.roa (hash: PFZiPiXQsPniAQ08Y5K+gzotL1tE/fkVxovwe7IBhnM=)
2: ATdlvsN-8JjBYiFvV0fLXKNBL1w.roa (hash: rGaQHa7VU05B9zcOaNjgX5A81WiKe8oN0pECOQZ/WDk=)
3: GEe1nSHqNrMGL8qAznXBYWr1EZo.crl (hash: BqyMGRNxDqT/SHItHD9uHgQOs1ogdJk0IlfgiYM7dpA=)
4: IbLrtVu7pWMSQlpOiD1Ev7CaqPs.roa (hash: JYnvQMjjTKbiZ0EmN4/Su8z6wVek7QvE9FV6m+QtvoI=)
5: Jfkb9wIjflJ9g_nlBWaCF6laiWU.roa (hash: /ljWZ+p/6L9vGqqgT4FUCtEB1Y8qOikrC1+ICoRutK4=)
6: Y5jMZ5wiB26-lsdLVbzn_G1HsrI.roa (hash: ocOdzyaJ6ffFKb9Tf8IUGV5W7XVWSq0CC0ZsXZkA3Mk=)
7: shcI5ksCijvvRLID7bxpTU4Ek38.roa (hash: 5j6UIvbPGZk819fhFv2lIK9RILlN83FerZg8FUEwxJA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 02:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:51:be:9d:e5:c6:6f:f6:12:35:41:f9:fb:6b:86:2c:95
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1847b59d21ea36b3062fca80ce75c1616af5119a
Validity
Not Before: Nov 5 02:00:37 2025 GMT
Not After : Nov 6 02:00:37 2025 GMT
Subject: CN=584b39a8269895519663fc50ca4d8f3d6b795584
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:9a:ce:9a:cf:c7:ce:0b:e3:ad:07:d1:7b:60:
b6:d2:df:73:80:1e:1a:ca:34:55:18:83:3e:18:6e:
57:2a:5e:2d:5b:70:3e:db:c2:58:c5:a4:49:dc:29:
ed:8b:49:44:2f:8d:eb:e6:a9:43:51:0e:2c:0c:a2:
79:06:63:f2:f8:29:91:21:e2:80:af:49:ad:28:c0:
1f:21:92:15:77:67:ca:61:d0:76:cc:92:6d:98:b0:
dc:da:7f:a9:35:5a:49:aa:ad:f2:d6:a6:67:f5:0a:
dd:a0:f0:84:53:36:6a:77:bf:ed:58:8d:5b:52:b5:
d4:21:36:a6:ea:14:2d:cc:3f:9a:9e:62:13:4f:78:
56:17:ee:3b:c3:07:74:ed:45:74:20:7e:e5:67:53:
b2:45:bd:66:19:ea:20:de:c7:db:28:f0:28:3a:bb:
fa:21:5e:c5:6e:2d:85:e4:4e:a5:68:83:6e:f5:22:
7f:17:3d:82:6b:7d:97:27:78:5f:10:92:3a:be:c8:
a5:21:67:1b:1b:42:aa:90:ca:d2:82:b4:32:68:eb:
49:0e:1b:58:6c:5f:50:32:ed:8a:2f:ca:a4:d8:d5:
9c:74:a7:3c:60:5f:f4:30:2d:ac:2f:4c:0a:e5:96:
c2:c7:39:01:fb:2e:4b:cf:84:13:0f:5b:99:70:49:
c7:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:4B:39:A8:26:98:95:51:96:63:FC:50:CA:4D:8F:3D:6B:79:55:84
X509v3 Authority Key Identifier:
keyid:18:47:B5:9D:21:EA:36:B3:06:2F:CA:80:CE:75:C1:61:6A:F5:11:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/GEe1nSHqNrMGL8qAznXBYWr1EZo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/3824cd-e527-4adc-a412-f91bb5179217/1/GEe1nSHqNrMGL8qAznXBYWr1EZo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:7f:b4:75:14:ba:33:24:ab:ac:0c:b2:c8:43:4f:be:ad:c8:
a8:d4:0b:e0:ca:1d:54:a7:82:74:a8:f2:bd:cf:8b:73:62:be:
44:2f:f3:34:bc:b4:c5:f2:cc:63:66:0f:c6:e7:a6:92:01:17:
d0:8e:1c:1c:da:82:68:63:5b:e1:b5:61:1a:d6:b7:de:a9:7a:
7c:64:58:73:52:a9:1a:68:fe:cc:5a:ff:a6:e7:77:d0:d3:69:
8c:29:e5:0f:ce:ed:b5:44:6c:48:c9:9c:cc:b7:e0:5f:d8:99:
01:61:cd:7f:2f:d1:67:9d:85:78:27:7c:52:8c:3a:2e:2d:ee:
b1:6f:7d:50:d7:be:db:82:2d:7c:5b:33:76:9c:80:ac:67:e0:
ba:f1:9e:0e:04:82:36:bf:fb:87:56:8d:e7:91:f8:d1:c8:6f:
78:35:50:14:57:39:ed:fa:52:35:fc:90:24:be:fd:35:35:12:
8b:35:b4:a0:de:c3:fe:7e:64:e0:26:e4:be:8d:b8:ed:7e:e1:
37:7a:55:f1:f9:20:6e:0d:63:1e:db:b0:84:cd:fd:c2:2c:92:
88:64:33:a1:0d:86:36:9d:7a:ae:33:31:ad:4a:4b:46:25:ad:
03:f3:dd:19:83:cd:38:ae:a1:dd:54:30:2e:23:79:e1:4e:7b:
ce:ed:9b:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 09:09:19 2025 by rpki-client