Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
File: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft (raw, json)
Hash identifier: pu/pTqdCzHZLMWlhzxdCgnNMR2qWWjSEb5hRFiIapjQ=
Subject key identifier: FF:EA:D2:2F:01:B0:C8:8E:62:E0:77:65:9F:30:74:13:D7:F0:F4:53
Authority key identifier: 80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
Certificate issuer: /CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Certificate serial: 019A4DAB0431EEFDE5BAC0FEE1A9CB0BF426
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
Manifest number: 1710
Signing time: Tue 04 Nov 2025 07:00:44 +0000
Manifest this update: Tue 04 Nov 2025 07:00:44 +0000
Manifest next update: Wed 05 Nov 2025 07:00:44 +0000
Files and hashes: 1: AlDLgq4a_thE-qXe6l8E_xWLXFc.roa (hash: 0ufopEuWXow9IQPbSAY5y6lUJPxjAppqenIRissIhOM=)
2: HbD_TR3_mqlACMnF4iTXIAuOjsg.roa (hash: T3tCAy3O2wLO9qO83uugLqRmkiFNSfdwlXWERB4+Mok=)
3: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl (hash: uWG+85JU+WRjYXtJNLwHtFekWjklmismRrAXMvJWi/4=)
4: h5Pey3t7ILGJvHcV0wlWm8IDgRE.roa (hash: /bmLdcY/7qOd0oeU6NCbdR7DKpvTkMz1r7GZ1d675P4=)
5: nId42Q0uPKxNBDzBg-GOcY-a01Q.roa (hash: 43G2ltR87FjAzlwjOiHc7NglbtaxLWslqx/bREI6WQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 05 Nov 2025 07:00:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:4d:ab:04:31:ee:fd:e5:ba:c0:fe:e1:a9:cb:0b:f4:26
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Validity
Not Before: Nov 4 07:00:44 2025 GMT
Not After : Nov 5 07:00:44 2025 GMT
Subject: CN=ffead22f01b0c88e62e077659f307413d7f0f453
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8f:17:d8:ea:5c:6f:4d:8e:f2:57:58:8c:51:
d6:d5:7a:27:f3:ac:a8:9b:b5:ee:71:52:b7:4a:3d:
1f:69:de:54:5c:da:99:17:c8:53:f3:63:2a:b1:2d:
c2:1a:7e:92:c1:1d:24:7b:6d:ff:43:d4:9e:a3:6f:
9e:30:65:12:2d:4b:99:d0:d9:cf:a4:fd:a7:fe:16:
c5:3e:5d:4d:b1:6f:37:95:58:7d:4a:d2:43:71:7d:
e5:22:71:fe:0f:8b:92:48:79:c4:95:1e:62:89:31:
2f:20:69:72:88:1f:1a:b2:c3:5b:e9:b2:a0:2e:3f:
f2:10:08:22:49:55:ce:98:e9:98:7d:8c:dd:2a:c1:
fd:ee:59:a0:05:24:c1:8d:8c:bb:3c:24:2d:79:e8:
b7:28:22:50:4c:4a:12:cd:09:26:1f:1d:35:8a:40:
84:b4:51:32:37:4e:7c:16:78:12:96:0d:42:2b:3f:
7a:e2:e7:12:77:67:74:a2:1f:50:01:d4:f3:d8:dc:
67:8c:77:a7:33:cf:62:2e:7a:de:e9:d6:a9:aa:05:
75:38:89:11:44:d4:4e:a0:dd:35:48:79:a6:73:f4:
e1:5a:67:f3:e6:d3:8e:13:b9:67:c2:db:57:3d:f2:
cb:61:25:a6:0a:2a:1a:a4:cc:30:96:c5:65:60:e0:
a4:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:EA:D2:2F:01:B0:C8:8E:62:E0:77:65:9F:30:74:13:D7:F0:F4:53
X509v3 Authority Key Identifier:
keyid:80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:b6:f2:ee:42:fd:a9:09:78:7b:f9:ad:4f:76:06:51:2c:53:
00:9c:5e:44:c5:ab:c1:bf:8d:1b:41:85:2b:0b:77:04:d8:2b:
e7:38:cd:1b:cb:19:38:24:cb:f4:7e:f9:cb:43:24:97:40:53:
a6:b8:fd:92:89:8d:e0:6f:88:69:ba:88:f8:a7:a8:a1:17:ca:
c3:6c:a0:47:62:d3:82:e8:c1:0c:0a:1f:98:6d:03:bd:f1:9a:
ed:6b:65:c6:30:3d:25:d2:04:e7:03:9f:66:51:41:a2:68:ff:
02:93:5a:a5:97:44:a4:6d:16:e3:48:99:45:c6:65:6b:44:a2:
c5:87:82:79:62:dc:bb:26:6e:37:45:46:b3:da:67:b2:3b:1b:
f9:45:25:22:c4:67:28:e3:3c:84:2b:00:5e:c0:5a:3a:5d:74:
d0:32:10:f9:e5:13:05:3e:a6:eb:b6:27:bf:78:8c:2d:36:a6:
9f:d8:5f:c4:6c:ed:cc:5e:86:99:c3:4f:09:95:22:77:f6:f7:
c6:ed:50:79:75:13:95:53:06:2e:38:6a:b6:c8:db:f0:7e:b4:
7d:cd:01:d0:8c:cd:31:03:fa:5c:18:db:cb:f9:c1:d9:9f:40:
73:05:f6:92:91:bf:fd:61:58:69:34:67:81:57:dd:3f:3b:68:
09:4c:5f:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 4 14:54:48 2025 by rpki-client