Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
File: gzVETFgRYcWIroS-AZZbyOg3gLg.mft (raw, json)
Hash identifier: RcwyTTLboFsdgsgBqd3cptDRI+x5xbCy3sKVRfm4jns=
Subject key identifier: B4:9D:3B:AA:61:49:2C:C6:42:C5:43:8D:DB:EC:C9:C9:0C:FA:62:FB
Authority key identifier: 83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
Certificate issuer: /CN=8335444c581161c588ae84be01965bc8e83780b8
Certificate serial: 019A522C3AEF8748A9CB07DAEE8686242051
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
Manifest number: 1439
Signing time: Wed 05 Nov 2025 04:00:21 +0000
Manifest this update: Wed 05 Nov 2025 04:00:21 +0000
Manifest next update: Thu 06 Nov 2025 04:00:21 +0000
Files and hashes: 1: 52xHcZKMiLkJfC48D6ah-VZ8yTA.roa (hash: jrz3bp7KHkqbn8SdD2JCqFdwlcK3RRhyL/xchThJ/cc=)
2: gzVETFgRYcWIroS-AZZbyOg3gLg.crl (hash: SctuYKJWMbjpXavaXZPBTAE9p/bNiY2tWH9kfZ1ZGCk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:37:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:2c:3a:ef:87:48:a9:cb:07:da:ee:86:86:24:20:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8335444c581161c588ae84be01965bc8e83780b8
Validity
Not Before: Nov 5 04:00:21 2025 GMT
Not After : Nov 6 04:00:21 2025 GMT
Subject: CN=b49d3baa61492cc642c5438ddbecc9c90cfa62fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:00:37:ab:bd:24:b8:b2:89:b3:41:b1:b8:85:
6b:87:19:cb:8f:5e:c2:f8:e0:e7:d0:78:e0:ce:42:
67:6b:a1:ac:85:20:57:c7:33:ad:d8:70:8e:d2:a1:
9b:86:6e:f2:4d:32:71:a1:8d:4c:a0:cb:8f:69:53:
dc:fa:fb:c3:b2:0f:fa:80:60:e8:1c:2f:88:0e:f1:
0e:8e:bb:d2:a8:ee:d8:0a:9a:16:f4:ce:f7:b9:09:
43:55:07:77:57:0b:bf:c4:07:89:ff:b6:e0:32:d7:
db:88:ce:ba:83:f7:9b:3b:0d:63:03:02:bd:88:94:
6e:ee:47:48:7e:2f:1a:8f:d2:91:bb:1c:3b:df:cf:
80:c3:ef:fc:6c:14:09:5d:d4:8e:b0:9b:e9:ab:0a:
89:54:0f:e3:79:ed:88:76:75:d4:62:b2:d8:da:a9:
af:9d:6a:10:00:b5:c9:f6:bc:d5:1c:96:c0:19:3e:
cb:6d:0f:1c:f9:3e:14:87:9a:81:75:60:66:96:e6:
3e:df:8e:03:b8:9c:59:34:a1:02:11:2e:b1:98:05:
ad:3b:d2:0a:fd:d0:2c:ea:a3:8d:15:93:b8:20:cc:
76:68:1a:b5:9f:4b:e0:be:61:b7:0c:a9:f5:dc:03:
d1:76:eb:39:8e:8e:f5:1d:55:1d:72:42:34:ef:87:
9f:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:9D:3B:AA:61:49:2C:C6:42:C5:43:8D:DB:EC:C9:C9:0C:FA:62:FB
X509v3 Authority Key Identifier:
keyid:83:35:44:4C:58:11:61:C5:88:AE:84:BE:01:96:5B:C8:E8:37:80:B8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gzVETFgRYcWIroS-AZZbyOg3gLg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/30/04b91a-e349-40cd-b901-1f13f55d0059/1/gzVETFgRYcWIroS-AZZbyOg3gLg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:9e:5a:26:eb:d1:7e:82:05:2a:59:12:8b:58:e2:9b:57:7b:
56:74:e9:62:5e:b5:b0:3d:0f:0d:e6:8a:24:88:bb:3c:d9:e8:
a1:ac:63:5d:e0:04:d0:49:20:2c:50:48:3c:2b:bc:18:1c:be:
18:c2:52:64:3a:49:f6:32:12:47:7e:57:f4:40:d0:d8:19:8f:
48:bf:04:7c:28:46:4f:f5:89:b7:6b:91:1d:0c:a7:f3:6d:01:
7f:57:16:2e:84:c3:54:19:70:8a:7b:ad:61:21:62:8f:77:1e:
ec:f8:3f:06:97:f9:90:1a:34:d2:33:e6:a8:06:a4:a7:8b:67:
a5:77:07:40:e9:8a:0f:8b:27:b4:ec:2b:42:18:28:a8:1c:b4:
c8:af:da:41:a9:83:66:fa:f8:15:8f:1e:92:0b:59:5f:51:37:
3d:6e:02:fa:c1:8e:2d:f8:6d:dd:79:1d:f7:19:a1:a3:6a:54:
9b:33:b2:44:45:76:44:2e:7a:2e:f2:83:88:94:70:d3:4b:5b:
d2:79:fb:fa:b1:fd:13:85:d5:0e:b8:37:c5:bf:70:e5:92:ae:
ba:25:2c:69:07:ff:99:c5:c2:86:ea:47:48:39:7f:9b:26:52:
be:0a:71:a9:cc:50:b4:ff:e1:09:af:72:b5:3c:e5:5a:e0:04:
54:73:ae:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZpSLDrvh0ipywfa7oaGJCBRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgzMzU0NDRjNTgxMTYxYzU4OGFlODRiZTAxOTY1YmM4ZTgz
NzgwYjgwHhcNMjUxMTA1MDQwMDIxWhcNMjUxMTA2MDQwMDIxWjAzMTEwLwYDVQQD
EyhiNDlkM2JhYTYxNDkyY2M2NDJjNTQzOGRkYmVjYzljOTBjZmE2MmZiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqQA3q70kuLKJs0GxuIVrhxnLj17C
+ODn0HjgzkJna6GshSBXxzOt2HCO0qGbhm7yTTJxoY1MoMuPaVPc+vvDsg/6gGDo
HC+IDvEOjrvSqO7YCpoW9M73uQlDVQd3Vwu/xAeJ/7bgMtfbiM66g/ebOw1jAwK9
iJRu7kdIfi8aj9KRuxw738+Aw+/8bBQJXdSOsJvpqwqJVA/jee2IdnXUYrLY2qmv
nWoQALXJ9rzVHJbAGT7LbQ8c+T4Uh5qBdWBmluY+344DuJxZNKECES6xmAWtO9IK
/dAs6qONFZO4IMx2aBq1n0vgvmG3DKn13APRdus5jo71HVUdckI074efMwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLSdO6phSSzGQsVDjdvsyckM+mL7MB8GA1UdIwQY
MBaAFIM1RExYEWHFiK6EvgGWW8joN4C4MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ3pWRVRGZ1JZY1dJcm9TLUFaWmJ5T2czZ0xnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC8wNGI5MWEtZTM0OS00MGNkLWI5MDEt
MWYxM2Y1NWQwMDU5LzEvZ3pWRVRGZ1JZY1dJcm9TLUFaWmJ5T2czZ0xnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zMC8wNGI5MWEtZTM0OS00MGNkLWI5MDEtMWYxM2Y1NWQwMDU5
LzEvZ3pWRVRGZ1JZY1dJcm9TLUFaWmJ5T2czZ0xnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWp5aJuvR
foIFKlkSi1jim1d7VnTpYl61sD0PDeaKJIi7PNnooaxjXeAE0EkgLFBIPCu8GBy+
GMJSZDpJ9jISR35X9EDQ2BmPSL8EfChGT/WJt2uRHQyn820Bf1cWLoTDVBlwinut
YSFij3ce7Pg/Bpf5kBo00jPmqAakp4tnpXcHQOmKD4sntOwrQhgoqBy0yK/aQamD
Zvr4FY8ekgtZX1E3PW4C+sGOLfht3Xkd9xmho2pUmzOyREV2RC56LvKDiJRw00tb
0nn7+rH9E4XVDrg3xb9w5ZKuuiUsaQf/mcXChupHSDl/myZSvgpxqcxQtP/hCa9y
tTzlWuAEVHOuRA==
-----END CERTIFICATE-----
Generated at Wed Nov 5 06:19:55 2025 by rpki-client