Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
File: goZyzXNrV-Hj38fdc2872KYWuoE.mft (raw, json)
Hash identifier: QsY0zQPyHbV85D9vwHxTrzqO6Mcpj+cJ+C1zoX2Zbgw=
Subject key identifier: 5E:9A:45:89:64:33:92:57:6D:AA:8F:6C:2C:C7:E9:84:5B:CE:B9:E0
Authority key identifier: 82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
Certificate issuer: /CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Certificate serial: 01988A3297F9074D0DFAE3238A4DD6F5F265
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
Manifest number: 1622
Signing time: Fri 08 Aug 2025 15:00:28 +0000
Manifest this update: Fri 08 Aug 2025 15:00:28 +0000
Manifest next update: Sat 09 Aug 2025 15:00:28 +0000
Files and hashes: 1: f-v99B7kzDMwcYPXZ1yHUB7PuHk.roa (hash: PLEFeVBVmPy00pfwBVn43bz19/5DH4Ktxjb7rCdDKxc=)
2: goZyzXNrV-Hj38fdc2872KYWuoE.crl (hash: qsbxsAVstScUANmnUxbG5VFkGO3P3uvV0eO0CXsS22A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 15:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:8a:32:97:f9:07:4d:0d:fa:e3:23:8a:4d:d6:f5:f2:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=828672cd736b57e1e3dfc7dd736f3bd8a616ba81
Validity
Not Before: Aug 8 15:00:28 2025 GMT
Not After : Aug 9 15:00:28 2025 GMT
Subject: CN=5e9a4589643392576daa8f6c2cc7e9845bceb9e0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:0a:bd:b2:44:8b:d2:6f:69:87:73:1f:d3:e9:
d5:23:9f:ff:99:dd:2c:0b:03:20:e9:ec:f7:07:94:
a0:82:0d:c2:16:53:fc:68:73:c2:a1:4a:9d:d7:e2:
9b:89:f7:54:e7:76:e3:d5:bd:d3:a8:9d:41:06:4f:
00:3c:0a:9a:a3:e3:69:8f:34:6d:ff:a9:f4:7a:87:
ff:71:29:56:b5:2b:cf:2b:44:b7:29:3d:6b:c9:b2:
4f:bb:33:0a:9c:7d:84:ab:0e:e3:6e:34:de:a4:47:
f7:4c:e5:fe:14:71:ec:e8:73:25:89:ee:35:28:b5:
96:51:de:c2:8d:05:f2:51:0f:0c:0f:cf:4f:25:46:
c5:f9:26:eb:40:a8:d4:27:e8:c2:da:bd:c9:c0:1a:
6d:51:40:0a:9f:16:ff:cd:95:05:7d:c8:5d:61:04:
51:c8:b2:b6:c4:b8:f8:fa:66:6e:5d:fc:d3:f5:f1:
af:db:4f:2a:5f:fa:7d:80:99:98:c6:43:79:c2:4d:
8e:a3:a0:47:c4:0f:6b:af:c8:3c:79:fc:d5:62:89:
52:6f:1d:fb:07:3f:ea:67:a8:97:00:54:58:ec:f8:
ad:e0:35:07:da:19:58:cf:e8:0f:32:36:a7:48:95:
a0:22:60:22:61:83:81:0f:85:16:cb:9d:49:c2:b9:
1d:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:9A:45:89:64:33:92:57:6D:AA:8F:6C:2C:C7:E9:84:5B:CE:B9:E0
X509v3 Authority Key Identifier:
keyid:82:86:72:CD:73:6B:57:E1:E3:DF:C7:DD:73:6F:3B:D8:A6:16:BA:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/goZyzXNrV-Hj38fdc2872KYWuoE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/54bb50-01be-4ec6-9418-eee7fae5c037/1/goZyzXNrV-Hj38fdc2872KYWuoE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:91:27:61:a9:ec:56:68:74:32:0c:0c:a0:1c:8b:5e:18:8d:
2b:9b:8a:6f:7b:8a:92:30:9c:d9:36:e3:bb:3b:ff:3b:2c:df:
b0:b6:be:29:b6:19:21:e0:61:3b:a3:ee:c7:3d:dd:ec:51:fe:
72:ef:26:7d:df:96:cf:6b:26:40:fb:41:88:bb:bb:4c:5c:4d:
49:89:17:b9:f9:b3:2d:b0:d8:9b:0c:e4:33:67:61:fc:96:f9:
98:e7:33:d9:6e:52:98:52:d1:80:b0:51:43:83:64:b7:c2:e3:
1e:0f:a2:26:99:0b:4a:da:43:8c:31:8d:ec:3f:b3:60:be:65:
39:67:26:e5:31:eb:85:fc:de:f7:c0:36:2e:4e:37:95:ee:d1:
5e:0e:a3:32:fb:72:04:cb:7c:1f:31:69:91:36:45:6a:e7:77:
db:95:a4:f5:d3:20:f9:90:92:46:10:5d:58:d5:dc:18:97:c5:
99:42:f2:25:b4:dd:16:a0:34:0e:f3:da:ab:e8:b6:3c:64:e3:
e9:32:a2:34:87:92:72:40:a9:cc:a4:16:ba:c9:8c:eb:e1:e1:
b5:df:70:30:d0:cd:b5:fc:c3:ef:0b:33:b2:32:08:1f:a5:03:
a0:64:f1:62:50:33:31:3a:2e:06:67:a4:65:45:38:bb:ef:8d:
03:ad:5c:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 9 00:59:25 2025 by rpki-client