Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
File: mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft (raw, json)
Hash identifier: zRAivI1PfHfw98Y5eZUMQNEFfXgFF32mAlB/oJqRzZU=
Subject key identifier: AC:5A:AD:47:4B:CE:B9:FB:41:31:C2:2F:96:76:ED:71:C9:E2:EF:12
Authority key identifier: 98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
Certificate issuer: /CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Certificate serial: 019A4F994F43B947F626D68DD4BC4ADCC10F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
Manifest number: 0805
Signing time: Tue 04 Nov 2025 16:00:38 +0000
Manifest this update: Tue 04 Nov 2025 16:00:38 +0000
Manifest next update: Wed 05 Nov 2025 16:00:38 +0000
Files and hashes: 1: J5SKCaGOc1EmK2ciMl5AsL0Yt6k.roa (hash: G1OhQbiptYNimu4j0r+tzGfxHpXqGX5AtlwZt3l6QBs=)
2: TMwrQ9VEC3dWwdOdSzhchqd9LKU.roa (hash: ddLT4suSyGT63FePBoB4o2Q5fl/qPXcvtKn+r4yKT0g=)
3: mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl (hash: YGcCaKtqz0zL0guLC+Izt6HIc7oX5MdHuRwdW+x7If4=)
4: qjXXTFXVdVVWr7-MSHZr7AQqbSo.roa (hash: Sp8Mn3EU/O89RIW7deIN1lZCT2/D8tgJU4hIx0BHNRE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 16:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4f:99:4f:43:b9:47:f6:26:d6:8d:d4:bc:4a:dc:c1:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9863354a111af6d5e1ad10da38ad8144b6be868e
Validity
Not Before: Nov 4 16:00:38 2025 GMT
Not After : Nov 5 16:00:38 2025 GMT
Subject: CN=ac5aad474bceb9fb4131c22f9676ed71c9e2ef12
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:68:96:2f:a4:33:79:b0:4d:13:88:64:05:53:
40:30:50:eb:4e:b8:b0:f9:ad:66:78:50:c5:c5:e7:
57:48:02:84:79:3a:fe:94:05:52:fc:71:95:08:f9:
57:89:f2:1f:97:17:ab:80:f6:ea:9a:f6:43:62:56:
a8:6e:da:b9:20:f3:c7:0f:65:96:a3:94:29:1e:21:
6b:72:e9:52:da:63:c8:f5:90:b4:7c:39:2a:aa:07:
28:3b:79:4f:65:58:bb:79:22:79:92:85:79:c5:a8:
27:0a:25:07:e0:57:f8:ef:f8:2b:77:df:8d:15:d4:
48:78:f8:19:b2:03:2b:c5:17:6b:bf:fe:9f:46:2e:
bd:3a:65:8c:59:36:a2:0b:ef:71:56:2c:97:96:d5:
7e:a3:e3:5d:54:ba:f2:bc:f3:ac:ee:9a:28:f6:f7:
f2:c9:03:09:67:ef:d5:22:3e:38:6f:09:29:65:cd:
41:2b:f1:ba:92:c5:fc:30:24:da:53:3d:9c:bc:55:
f4:30:a4:19:43:19:16:8d:85:a5:9e:a1:38:7b:1f:
12:ab:eb:4f:d9:de:97:55:e7:3e:15:f0:6d:9f:ee:
e0:62:05:15:b8:55:4e:88:0a:d3:1d:79:54:eb:2c:
3c:bd:92:b2:c4:65:7f:10:80:5e:a4:fe:d7:19:ff:
89:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:5A:AD:47:4B:CE:B9:FB:41:31:C2:2F:96:76:ED:71:C9:E2:EF:12
X509v3 Authority Key Identifier:
keyid:98:63:35:4A:11:1A:F6:D5:E1:AD:10:DA:38:AD:81:44:B6:BE:86:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mGM1ShEa9tXhrRDaOK2BRLa-ho4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/bea847-a783-489d-ae4b-53f57504ef35/1/mGM1ShEa9tXhrRDaOK2BRLa-ho4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6a:96:e3:ee:cb:6d:e4:09:9d:75:23:73:32:ed:e5:31:fa:08:
4f:69:06:09:e4:d4:0a:10:a9:03:ca:ef:57:41:f2:02:f7:8f:
c8:98:48:82:de:c0:bb:2f:45:43:04:f0:fb:7a:b0:73:a5:4e:
ac:7f:4c:ad:99:15:4e:d4:5d:dd:d2:fb:26:7e:0a:7d:56:f7:
43:4c:31:6f:e8:6e:06:f1:8b:85:14:dc:97:27:c1:90:b2:1d:
01:60:cc:3a:23:47:f1:7a:f2:3a:c8:e2:a4:a8:34:4a:9a:62:
d1:02:5e:6f:8c:5b:84:31:cf:78:9f:17:e4:93:05:af:5e:ea:
59:0e:6f:20:f7:51:fc:66:07:b5:f5:86:76:37:a1:59:d0:a7:
43:09:65:8a:6f:08:5d:48:c8:2d:e1:c6:7e:ba:12:b5:b3:99:
a4:a0:74:be:23:5b:59:f5:6d:7e:78:66:cd:ba:67:82:d1:40:
52:93:4d:59:5a:e1:fc:be:27:6c:f3:ea:32:d5:3e:39:d2:c5:
f0:d4:6e:40:66:60:29:1a:7e:21:af:94:99:fe:8b:2d:9f:1f:
f3:a8:1f:eb:a3:08:11:75:57:bc:e0:ea:84:d0:1e:3e:32:04:
d2:50:36:87:16:98:e2:e6:ed:e1:ef:90:f8:ca:1b:13:37:67:
15:ef:2c:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 20:27:31 2025 by rpki-client