Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
File: gzVETFgRYcWIroS-AZZbyOg3gLg.mft (raw, json)
Hash identifier: GEh+N8fs/JBYiFxCqzw2w87+W++Yt0BD3m65E4AiQ0o=
Subject key identifier: E0:8A:B7:80:2E:03:E4:35:CA:3F:53:BC:7F:18:8D:40:37:17:F7:36
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 0198868CF8B4D48EFB8D9CEABEE20DED8C19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
Manifest number: 134B
Signing time: Thu 07 Aug 2025 22:00:42 +0000
Manifest this update: Thu 07 Aug 2025 22:00:42 +0000
Manifest next update: Fri 08 Aug 2025 22:00:42 +0000
Files and hashes: 1: 52xHcZKMiLkJfC48D6ah-VZ8yTA.roa (hash: jrz3bp7KHkqbn8SdD2JCqFdwlcK3RRhyL/xchThJ/cc=)
2: gzVETFgRYcWIroS-AZZbyOg3gLg.crl (hash: OG5zyjZEuEMdOqCvQ7qgaM9dbQYwcXKw3Z30P0TSp8E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 Aug 2025 16:13:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:86:8c:f8:b4:d4:8e:fb:8d:9c:ea:be:e2:0d:ed:8c:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Aug 7 22:00:42 2025 GMT
Not After : Aug 8 22:00:42 2025 GMT
Subject: CN=e08ab7802e03e435ca3f53bc7f188d403717f736
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:41:90:07:44:6e:68:33:3a:1a:b1:c6:a8:d2:
c9:0b:cd:84:c8:c1:61:f6:4c:10:91:40:d5:cb:29:
db:ce:4d:31:80:cd:02:46:3a:62:88:d9:32:95:92:
bd:0c:a2:e5:2c:88:ff:a9:26:8c:d5:a8:14:7e:8e:
50:4f:98:31:e5:9c:ba:82:47:91:d4:65:c4:17:ea:
cf:50:fe:b7:58:63:9a:22:e9:18:ef:ce:be:b4:1c:
6a:db:61:25:d7:62:19:40:a9:41:bb:e5:1d:bf:96:
41:e2:18:c8:5b:82:69:0f:2f:ab:a4:3f:81:e2:f9:
aa:fc:3d:02:86:77:ec:42:2a:da:db:62:d3:b8:06:
50:29:46:55:79:70:8e:9d:ba:30:9c:07:5c:4e:36:
5e:3f:ef:93:24:4b:87:6c:a4:1e:75:2a:33:fc:b9:
85:54:4f:cf:17:72:24:b1:5b:9e:ce:80:45:b3:c8:
52:7c:9b:73:f7:c4:75:04:ba:d0:0e:63:c8:f8:75:
7d:a1:00:65:64:a5:56:ad:26:71:32:c8:1c:25:36:
be:00:66:3c:8c:a1:c2:6b:ca:a4:88:e5:6e:19:3e:
b0:5f:05:30:2f:94:2c:1e:b8:13:13:50:4c:63:9e:
52:af:60:b5:00:dd:60:59:1d:50:85:97:81:67:89:
b5:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E0:8A:B7:80:2E:03:E4:35:CA:3F:53:BC:7F:18:8D:40:37:17:F7:36
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:6e:70:4d:61:54:2f:0c:76:bf:f1:b6:b9:bd:65:91:6a:c1:
8e:9f:2a:f7:40:a3:6e:4e:88:bb:e0:fa:b1:2c:64:e8:a9:bd:
ff:84:f3:dd:0e:5e:d3:6b:30:3a:ee:b7:f6:f1:e9:52:81:9b:
30:a8:09:86:f6:b5:31:c8:17:a3:08:ed:50:bf:c6:86:ed:3c:
42:9b:44:38:bc:9e:e7:9d:b1:8a:82:02:44:52:37:d1:e6:38:
68:15:85:63:21:dd:59:5f:8e:18:20:de:72:14:63:e8:d2:f4:
e8:92:3e:7c:2c:e5:02:d8:5d:5e:62:4c:4c:b1:7a:80:f6:22:
26:a7:7c:dd:bd:79:41:89:0d:05:84:a3:e0:ac:56:31:46:7f:
f1:3d:9f:b9:90:71:42:25:00:ea:0a:8f:99:5b:b3:19:86:df:
9e:41:1e:72:00:5b:35:30:b8:45:0f:1c:78:03:86:84:33:48:
c1:d6:31:99:cd:d4:3e:a3:d3:53:6b:cf:30:af:ae:ca:4f:a2:
2e:0d:f1:68:88:46:04:c8:00:53:9a:e1:c6:6b:ea:8b:ba:fd:
ba:0b:17:86:ed:25:6d:12:3e:af:25:04:44:15:0d:21:77:b6:
db:6e:ed:e5:d0:55:5a:37:d2:7a:30:d2:48:72:74:ba:ab:c5:
37:28:eb:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 00:04:16 2025 by rpki-client