
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
File: ga5w39QwUnNv6F8A0phM43a3brM.mft (raw, json)
Hash identifier: Q5e4ric6gbpQycXC/RjBa1xgNsrFi/E6aElBZekp0Hs=
Subject key identifier: AC:69:36:F3:B8:E0:3F:70:D6:6C:31:94:71:F3:7D:3B:70:7A:2E:93
Authority key identifier: 81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
Certificate issuer: /CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Certificate serial: 019873E3565888AFAFADCF451AA3070043FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
Manifest number: 0772
Signing time: Mon 04 Aug 2025 07:02:15 +0000
Manifest this update: Mon 04 Aug 2025 07:02:15 +0000
Manifest next update: Tue 05 Aug 2025 07:02:15 +0000
Files and hashes: 1: PWVVCu9dDfBo5aJQ6tlPGGlV6B0.roa (hash: 7Oj98eAXsnZMzEk2r6cNh4fSjsZETDRb2EQ95CICh04=)
2: ga5w39QwUnNv6F8A0phM43a3brM.crl (hash: f5CAmS9BpgLBjOu5txT/GjIrlShTsoinFyE9dReoXog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 05 Aug 2025 03:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:73:e3:56:58:88:af:af:ad:cf:45:1a:a3:07:00:43:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Validity
Not Before: Aug 4 07:02:15 2025 GMT
Not After : Aug 5 07:02:15 2025 GMT
Subject: CN=ac6936f3b8e03f70d66c319471f37d3b707a2e93
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:e4:51:59:95:31:f4:bd:a3:9d:c2:76:2d:b4:
14:7c:c2:99:b2:ac:45:3d:3d:e3:25:52:fe:f8:93:
82:db:0b:33:64:e6:71:18:b3:f7:f5:c0:9c:1e:c1:
ba:f6:5c:c1:b6:04:ba:79:32:cb:99:8f:ff:2e:e1:
b3:db:0d:39:86:f4:61:ea:e7:d9:d8:bf:1e:11:45:
c0:74:0c:b8:da:0a:15:3d:8c:bb:4c:98:9c:c2:32:
08:dc:9b:4a:08:28:96:97:a4:12:58:0f:70:dc:b7:
22:50:1f:a8:39:c3:56:87:c8:2c:bc:d4:c2:31:62:
ff:8d:1f:9c:87:57:62:81:a3:98:26:70:89:43:14:
92:ea:ed:ef:c2:22:99:6e:a0:59:cb:83:28:1d:66:
c3:12:c2:a5:6f:64:34:6e:ff:e8:a8:4f:41:2d:89:
5e:41:fb:71:bb:6a:51:a4:b8:98:a2:37:a1:22:9a:
67:fb:fd:eb:eb:28:af:0a:93:4a:6b:92:a5:1c:35:
f7:7b:40:9f:43:23:37:96:7a:fd:58:c4:c1:69:45:
76:3c:3e:0a:0e:27:c3:53:cc:db:f2:ea:a3:e2:c2:
5c:08:50:51:a2:78:5b:57:90:b2:25:f9:ae:9e:82:
ca:2e:cc:dc:ef:b9:2b:02:cf:47:ec:78:ed:06:d2:
f8:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:69:36:F3:B8:E0:3F:70:D6:6C:31:94:71:F3:7D:3B:70:7A:2E:93
X509v3 Authority Key Identifier:
keyid:81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:f8:a2:1f:8b:01:af:2d:21:e3:30:07:b8:6d:9b:93:3f:68:
9c:cc:e1:cd:03:df:86:3a:d2:73:49:8c:53:bd:b1:79:39:f2:
7c:6f:db:19:40:22:a6:98:e5:c1:86:1e:70:6f:03:90:49:d4:
18:7b:05:6d:5f:4f:6e:24:29:9e:89:3e:1e:5a:71:e2:46:d6:
9a:93:c3:b4:96:61:28:27:6e:74:a3:72:ef:fd:e9:62:3f:2f:
0d:04:10:e0:f1:e4:53:ac:40:ca:fb:b4:16:3d:01:60:a6:b8:
a1:58:02:9c:aa:db:ce:89:11:12:5c:02:ba:73:3d:24:87:99:
c6:b7:4a:91:20:88:8e:d4:40:03:85:1b:1a:ad:48:2c:c2:d4:
53:4b:7b:65:ce:65:ba:4d:5c:4d:80:59:98:5a:33:6c:ec:0c:
3b:93:84:71:81:db:e7:43:c2:ad:a8:b9:57:72:fd:cf:69:73:
76:a7:54:23:ab:6f:09:ec:db:f2:1c:8a:cc:d0:6d:74:13:14:
66:dc:bf:ca:9a:dd:20:78:f5:80:7e:56:b6:88:89:b4:ab:e2:
5c:8d:e8:00:ca:72:29:21:5f:8a:86:d8:34:b7:e9:cc:3d:9f:
ab:b1:f6:c4:94:4c:8e:26:31:e1:f8:84:e1:a0:ac:c0:5e:4f:
97:c0:70:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 4 11:03:11 2025 by rpki-client