Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
File: ga5w39QwUnNv6F8A0phM43a3brM.mft (raw, json)
Hash identifier: jglbvdCvNFydOQYkSSJsM6Dzhq780tXDEheeUxyMvh0=
Subject key identifier: 41:38:51:D3:A6:CA:62:EC:CC:5A:46:2E:A8:62:E5:D0:60:41:DF:CC
Authority key identifier: 81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
Certificate issuer: /CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Certificate serial: 019A50E42D47904784E11B1409DAAFBBCDF1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
Manifest number: 0869
Signing time: Tue 04 Nov 2025 22:02:02 +0000
Manifest this update: Tue 04 Nov 2025 22:02:02 +0000
Manifest next update: Wed 05 Nov 2025 22:02:02 +0000
Files and hashes: 1: PWVVCu9dDfBo5aJQ6tlPGGlV6B0.roa (hash: 7Oj98eAXsnZMzEk2r6cNh4fSjsZETDRb2EQ95CICh04=)
2: ga5w39QwUnNv6F8A0phM43a3brM.crl (hash: d89p2jAhUj3tII2a0Mth7uGTqe/n/oPOYH+r1K0uvhQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 22:02:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:50:e4:2d:47:90:47:84:e1:1b:14:09:da:af:bb:cd:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=81ae70dfd43052736fe85f00d2984ce376b76eb3
Validity
Not Before: Nov 4 22:02:02 2025 GMT
Not After : Nov 5 22:02:02 2025 GMT
Subject: CN=413851d3a6ca62eccc5a462ea862e5d06041dfcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:74:b9:62:d0:0f:89:71:7b:ab:45:d2:f0:a9:
c9:9a:78:7e:dc:de:c1:3b:c7:7e:18:17:46:9c:26:
6b:bb:30:1c:af:a9:4e:c1:62:cf:14:46:24:09:e5:
98:1b:de:d0:06:0e:60:9f:f9:5b:01:a7:35:af:bc:
9e:78:f6:cb:09:87:d9:a4:d2:5e:6c:7f:0e:21:b9:
ee:4a:ba:7a:7d:23:86:94:86:dc:97:f2:f1:19:ba:
26:ab:c7:a2:c5:a4:35:b4:8a:00:c1:bd:3f:9c:27:
aa:23:59:5f:b6:b5:a8:2f:f3:01:3f:1f:bd:98:2a:
4d:d6:c9:23:fe:28:82:d8:6a:0f:89:15:ce:9d:d0:
b9:b8:34:e7:e5:fc:c4:79:fb:cb:f5:47:86:e6:8b:
2e:33:c3:14:7b:ce:c2:6f:e5:6d:97:8d:60:db:ea:
94:96:a2:22:8e:24:ad:fb:f7:74:0a:b8:d1:51:b4:
db:98:0a:8e:3e:41:de:70:9a:37:5b:68:91:05:11:
47:96:05:0a:ec:18:f6:52:43:1f:89:03:4f:c8:25:
ca:c4:1f:6c:6c:34:5a:4c:c6:b9:a3:dd:c9:5f:fe:
9e:f4:d6:77:f6:94:0d:2f:65:70:20:bd:c2:53:e5:
cc:ac:d8:19:8b:47:18:ff:37:6d:a1:63:d0:ab:0b:
fd:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:38:51:D3:A6:CA:62:EC:CC:5A:46:2E:A8:62:E5:D0:60:41:DF:CC
X509v3 Authority Key Identifier:
keyid:81:AE:70:DF:D4:30:52:73:6F:E8:5F:00:D2:98:4C:E3:76:B7:6E:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ga5w39QwUnNv6F8A0phM43a3brM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6ea16c-b92f-4041-a508-bb5893a6ac91/1/ga5w39QwUnNv6F8A0phM43a3brM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:c8:b3:f9:15:2a:b8:60:75:95:e1:cd:c7:7a:12:5b:1a:f9:
07:db:c5:6d:d0:8b:60:23:5d:d6:8f:22:b9:97:05:18:df:84:
59:78:51:f0:0b:77:9a:cf:ae:43:a0:b2:43:39:7f:c4:d4:a8:
35:69:11:b3:db:c6:a0:d9:bc:dc:39:89:ff:70:9c:b9:d8:f2:
6a:3a:0c:bc:19:90:a3:bf:f5:c4:59:9c:63:99:28:f3:77:58:
09:0f:e5:90:25:09:23:cd:5d:e2:5c:b5:2f:83:da:8f:92:32:
3d:04:2c:7d:4a:ed:fb:c6:3a:f5:43:59:1c:3e:f4:01:b3:f6:
e3:be:f9:a4:c8:8e:85:50:4f:a1:64:5a:fb:ee:43:ad:1a:b0:
06:34:24:f3:a9:ab:84:54:bd:b9:a2:fc:84:f1:ed:b1:7f:15:
58:e4:e8:4a:a6:df:24:9f:41:51:4f:29:90:bc:e9:85:0d:a9:
f2:c2:23:32:1c:af:80:48:d8:7f:82:33:3b:83:6f:dd:db:f1:
cd:b7:86:98:b1:8f:a5:aa:3a:12:df:88:66:86:fc:35:de:08:
44:1a:bf:3d:04:ea:fe:aa:85:33:ef:30:f1:7d:b9:95:d0:42:
87:9d:9b:d8:ca:bb:77:0c:58:aa:39:56:2e:63:76:b4:2a:3e:
21:26:55:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 5 08:19:13 2025 by rpki-client