Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
File: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft (raw, json)
Hash identifier: 4Ew66nQ6B/UU+X3uMag0NE4oSgk92VL9Cr1G+afEiLQ=
Subject key identifier: B7:7A:FD:DB:75:C9:9D:AF:63:33:84:94:C5:3C:8D:07:36:E0:75:59
Authority key identifier: 80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
Certificate issuer: /CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Certificate serial: 019887D6B52E3673476DDDDE4DA130A8CB91
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
Manifest number: 1625
Signing time: Fri 08 Aug 2025 04:00:51 +0000
Manifest this update: Fri 08 Aug 2025 04:00:51 +0000
Manifest next update: Sat 09 Aug 2025 04:00:51 +0000
Files and hashes: 1: AlDLgq4a_thE-qXe6l8E_xWLXFc.roa (hash: 0ufopEuWXow9IQPbSAY5y6lUJPxjAppqenIRissIhOM=)
2: HbD_TR3_mqlACMnF4iTXIAuOjsg.roa (hash: T3tCAy3O2wLO9qO83uugLqRmkiFNSfdwlXWERB4+Mok=)
3: gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl (hash: 5VfO4wxmY9tqYrCDVRwqgbsGFNvUNpTaBvdhSnKQZBA=)
4: h5Pey3t7ILGJvHcV0wlWm8IDgRE.roa (hash: /bmLdcY/7qOd0oeU6NCbdR7DKpvTkMz1r7GZ1d675P4=)
5: nId42Q0uPKxNBDzBg-GOcY-a01Q.roa (hash: 43G2ltR87FjAzlwjOiHc7NglbtaxLWslqx/bREI6WQw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 09 Aug 2025 04:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:87:d6:b5:2e:36:73:47:6d:dd:de:4d:a1:30:a8:cb:91
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=80ad8c520bb9677461ddc4ec09b76d733b7d8370
Validity
Not Before: Aug 8 04:00:51 2025 GMT
Not After : Aug 9 04:00:51 2025 GMT
Subject: CN=b77afddb75c99daf63338494c53c8d0736e07559
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:18:c4:a1:6b:9d:0c:38:65:43:ed:fd:e6:ce:
31:77:b8:c8:91:f1:26:08:aa:11:c4:62:00:30:c7:
20:f4:a6:be:c0:9f:56:3f:61:d5:05:15:0f:2c:02:
d4:15:84:6d:87:55:09:d1:1f:20:c4:c2:e2:d8:74:
31:cf:18:bc:02:51:44:77:62:e4:95:34:f9:ef:86:
45:27:d2:a8:d5:ac:be:7a:28:ff:62:fa:de:82:5e:
08:17:01:04:cf:9d:2a:1f:e4:63:41:ef:fd:28:c8:
4c:a8:7b:ba:77:30:d7:e8:f9:37:a6:17:ae:af:0a:
64:65:cd:1a:ae:07:5b:45:53:db:44:ae:b1:0c:58:
7e:de:4b:d0:c6:a8:bf:42:d6:ea:0c:d7:8a:a4:c7:
49:8b:dc:ff:24:9f:b3:7f:e3:97:34:aa:80:7b:f4:
4a:c8:82:1f:a0:53:52:ca:9c:29:cc:86:77:0a:62:
cc:22:1d:01:45:82:0d:c8:d1:e2:de:55:98:23:50:
e9:e0:88:be:f5:b1:ef:28:7b:7e:4d:8a:cb:56:76:
fd:cd:f7:fe:88:09:2f:5d:46:78:f1:e9:70:96:55:
2d:d5:e9:74:d0:f1:5b:ac:dc:41:ba:54:d1:8a:f7:
fc:e2:e3:79:42:1a:2e:03:44:39:88:b2:8b:ad:89:
dd:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:7A:FD:DB:75:C9:9D:AF:63:33:84:94:C5:3C:8D:07:36:E0:75:59
X509v3 Authority Key Identifier:
keyid:80:AD:8C:52:0B:B9:67:74:61:DD:C4:EC:09:B7:6D:73:3B:7D:83:70
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/225ec3-0387-4b5d-88c1-c61751c6b195/1/gK2MUgu5Z3Rh3cTsCbdtczt9g3A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:a8:df:3b:6a:33:c2:3d:db:79:4a:6c:5b:1b:32:c7:c6:f8:
01:16:b7:6d:05:5d:1f:53:b5:92:49:37:40:30:62:b5:1f:e4:
8d:e3:2e:96:9f:7a:98:df:ec:7e:20:60:46:98:b3:ab:2b:02:
56:27:01:44:14:6e:5c:b9:f0:6e:3b:f4:df:9b:86:db:bb:ba:
45:ec:a9:31:05:c6:a7:ac:a6:06:f3:67:b9:2b:c7:1e:e7:b2:
3a:aa:b0:7e:96:95:82:86:46:b9:87:0e:62:65:9a:b4:7e:d9:
9a:7b:c1:36:e2:99:49:23:7f:e9:7e:96:04:f3:39:27:f1:f6:
4f:16:0d:f0:40:ef:15:d0:a8:93:22:53:c5:d9:e3:c3:6b:50:
2f:75:ed:ad:cd:9e:20:49:75:b0:98:77:44:3c:e8:b9:d2:85:
ca:33:ae:2f:15:4d:67:90:b9:6d:ad:b0:4b:ec:6c:97:5e:9f:
7b:f1:b3:3f:59:bd:61:55:6f:0f:4f:98:a5:f9:f2:d1:84:9e:
54:39:0a:b0:94:32:4f:74:24:9e:b1:5d:e0:5c:bc:8b:db:86:
cf:30:68:d1:04:0b:84:0b:d7:4d:d0:4c:cf:c8:cc:17:9a:31:
ed:fe:bc:0a:92:96:da:99:05:8b:ec:73:21:cc:ed:36:eb:e2:
4a:12:97:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 8 13:09:26 2025 by rpki-client