Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
File: ga5w39QwUnNv6F8A0phM43a3brM.mft (raw, json)
Hash identifier: y3ul+zJP3pN2FZGYp37xjoHT2fZRIeB92QJbLExrVoY=
Subject key identifier: 18:86:23:25:A5:42:8A:9B:87:51:B6:1E:A3:15:E5:C9:A7:2F:64:4F
Authority key identifier: 81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
Certificate issuer: /CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Certificate serial: 019A52D2498D3FCD4727523AC1BC0116020E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
Manifest number: 086A
Signing time: Wed 05 Nov 2025 07:01:44 +0000
Manifest this update: Wed 05 Nov 2025 07:01:44 +0000
Manifest next update: Thu 06 Nov 2025 07:01:44 +0000
Files and hashes: 1: PWVVCu9dDfBo5aJQ6tlPGGlV6B0.roa (hash: 7Oj98eAXsnZMzEk2r6cNh4fSjsZETDRb2EQ95CICh04=)
2: ga5w39QwUnNv6F8A0phM43a3brM.crl (hash: XPMtPp6QqAiBrsmxBbQMMt+5IpY0cxo0/sbrryCR7k8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 06 Nov 2025 03:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:52:d2:49:8d:3f:cd:47:27:52:3a:c1:bc:01:16:02:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Validity
Not Before: Nov 5 07:01:44 2025 GMT
Not After : Nov 6 07:01:44 2025 GMT
Subject: CN=18862325a5428a9b8751b61ea315e5c9a72f644f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:bb:44:06:ae:e3:07:26:08:c1:ce:0b:14:7d:
52:f8:f3:68:42:32:fd:c6:7a:c8:aa:4a:5e:ad:c9:
a2:e5:e0:c0:67:7c:55:db:f6:bf:67:ab:d6:8f:a6:
24:21:35:c0:67:18:3e:1d:54:a9:cc:37:43:24:f5:
8c:a9:b0:f7:14:76:6b:ba:ff:84:82:eb:f7:e7:19:
3c:00:e3:1f:d0:34:cb:89:14:7f:17:00:db:13:ec:
ff:30:a3:d4:9d:e6:5e:9d:54:aa:a6:99:80:40:c2:
4b:6c:de:03:63:1d:58:07:2a:be:42:6f:40:fc:89:
75:0a:36:7f:2b:05:a9:68:e9:cf:28:19:32:ba:e4:
48:c8:66:49:c3:5e:35:96:15:af:5a:30:a5:18:fb:
7d:58:7a:a7:9e:5a:44:25:3a:ed:c9:c8:30:b4:56:
9d:7e:11:0f:83:12:ca:f7:67:cb:10:91:2a:87:94:
2c:19:45:1d:12:54:b4:93:5c:dd:86:60:9e:56:8f:
8f:31:69:c9:a1:a6:65:05:9f:27:0a:ee:f4:de:db:
cd:9b:10:26:d5:c9:ce:25:00:fb:59:83:aa:c0:db:
26:1f:d6:c9:08:b7:76:50:2e:ea:20:1c:44:b6:4d:
21:51:c4:38:7f:1c:2d:b0:c0:71:c7:20:d4:d2:16:
48:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:86:23:25:A5:42:8A:9B:87:51:B6:1E:A3:15:E5:C9:A7:2F:64:4F
X509v3 Authority Key Identifier:
keyid:81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:23:25:9e:d1:22:f8:2e:f5:5a:70:d4:01:a1:a8:0a:e0:af:
4a:9a:b4:17:f3:fc:48:7d:9b:d3:ee:6b:9c:07:80:05:7f:3a:
ab:41:cf:4a:42:d7:55:4b:ff:b3:83:67:2a:e8:37:be:7d:6d:
42:2e:38:57:dc:25:01:ff:59:75:69:1b:f7:04:12:09:82:41:
fa:46:5c:ec:2e:8d:97:0f:54:4c:6a:62:dd:23:f5:fd:c4:63:
27:bd:a3:7e:52:40:a5:47:7e:2e:af:5c:ad:69:b5:db:d6:69:
4e:4f:46:c3:7a:87:06:4b:40:09:c3:94:58:e0:f1:a3:0d:b6:
03:06:69:81:4a:29:27:89:b0:0e:99:c9:b7:cc:14:fb:4c:37:
e6:23:7a:4d:05:15:1c:d8:39:31:12:b1:91:90:84:7b:b2:6f:
d7:9f:6d:51:39:08:15:d2:06:f4:27:84:da:af:73:86:e6:7c:
5e:b8:3b:2e:29:63:1d:a3:ed:2a:9b:da:97:ea:c8:9a:e8:55:
0d:fc:8a:c0:03:9d:2a:8e:d3:28:19:f8:85:28:c2:fe:99:7d:
ac:67:03:77:2a:3e:1b:04:06:d5:c5:9b:ff:78:a7:b3:6f:ba:
31:c9:82:cb:ae:9b:43:0a:6e:79:87:18:77:ed:46:5e:c4:40:
e7:96:e2:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 10:44:05 2025 by rpki-client