Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
File: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft (raw, json)
Hash identifier: 3MbEkawmr34r4uJwq/Vt3XJ+10O6yhhjDDcYkic4T5M=
Subject key identifier: D9:CD:89:5F:23:0F:C2:A8:57:91:AB:7A:12:BF:A5:D9:CA:5F:54:2F
Authority key identifier: 82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
Certificate issuer: /CN=827313247c486fe434833c09087a00a900301840
Certificate serial: 019791EF2401FD8E9A255496E9622EEC67D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
Manifest number: 159F
Signing time: Sat 21 Jun 2025 10:00:57 +0000
Manifest this update: Sat 21 Jun 2025 10:00:57 +0000
Manifest next update: Sun 22 Jun 2025 10:00:57 +0000
Files and hashes: 1: 7G9OAa8ebUxYvLbiABAZAGXs6yI.roa (hash: Q8FJVCv7ZP8KepVRkOgfjY1xOHET+UVMaI0qQvaXpcQ=)
2: gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl (hash: XjBAj9UZRN4wbBCEVZPqUTv8lIHzVZ25lvHntgohihM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 22 Jun 2025 07:00:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:91:ef:24:01:fd:8e:9a:25:54:96:e9:62:2e:ec:67:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=827313247c486fe434833c09087a00a900301840
Validity
Not Before: Jun 21 10:00:57 2025 GMT
Not After : Jun 22 10:00:57 2025 GMT
Subject: CN=d9cd895f230fc2a85791ab7a12bfa5d9ca5f542f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:2c:2e:5b:79:33:b1:6f:86:b9:87:80:87:4b:
05:b4:29:0e:6a:2e:75:44:9b:86:5c:a1:62:28:7a:
1e:1f:62:7a:55:ef:f7:02:77:a6:4a:db:f1:b5:60:
67:b1:a6:2d:0c:9d:c5:a0:ae:9e:49:0c:a4:4d:ab:
cb:c1:f6:26:b5:7a:5e:f3:b7:2b:17:b6:84:8d:f3:
bd:ac:af:26:ed:09:80:10:8d:ae:dc:8f:d5:58:03:
27:1a:45:aa:45:a7:f0:29:62:0b:35:ca:07:af:5d:
ec:a3:ed:50:d3:48:26:d7:d3:12:23:80:cb:10:ca:
b5:cc:e3:e1:24:be:ba:da:2a:04:57:22:8b:e4:3b:
77:0d:dd:2a:ef:4e:26:3e:88:79:49:c9:37:12:6b:
d0:5d:84:39:72:bd:43:33:43:67:bf:61:6b:24:a1:
2f:42:bb:fc:73:e2:ba:fe:0a:e7:01:83:8b:21:15:
ef:3b:48:79:9d:69:3c:b5:84:38:cb:04:6d:0e:43:
80:51:c4:dd:42:a4:3c:3b:e0:ea:5b:48:39:05:fd:
be:12:d5:91:f1:e0:ea:34:6d:c5:7d:da:77:e3:cd:
a0:c9:a4:c8:23:ac:9c:b2:d3:8e:fe:9b:4d:14:04:
08:d6:93:65:32:20:60:ea:c9:b1:90:33:b3:f6:5e:
5a:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:CD:89:5F:23:0F:C2:A8:57:91:AB:7A:12:BF:A5:D9:CA:5F:54:2F
X509v3 Authority Key Identifier:
keyid:82:73:13:24:7C:48:6F:E4:34:83:3C:09:08:7A:00:A9:00:30:18:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/85b043-36d8-4136-9835-8d477259839b/1/gnMTJHxIb-Q0gzwJCHoAqQAwGEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:c1:a2:a8:ee:b2:95:a9:39:d8:4d:46:f6:81:c0:94:1b:2f:
ec:91:02:da:da:fb:13:26:ef:6f:8f:4e:e5:ff:13:10:1e:b3:
28:b4:de:96:8d:2f:d7:6f:a4:cf:ed:6b:7e:83:a6:2b:c9:e8:
d9:ee:d4:5e:99:d4:bc:4c:28:a9:69:76:0f:f2:40:4e:7c:03:
c1:6b:5e:63:6f:91:33:21:04:9a:bf:fa:c8:76:28:1a:99:80:
e7:9a:13:20:55:f1:13:49:1f:b4:47:51:eb:a3:d1:d2:9f:0d:
5c:d6:ef:cc:ef:8a:7e:16:0d:9c:43:4a:5c:d5:5b:1f:72:d8:
94:f1:cd:13:af:4e:f7:a4:ef:ba:0b:42:4c:66:9c:df:f3:07:
89:77:2f:5c:bf:95:7e:b3:6b:80:e9:a7:5a:6c:22:4f:a2:9b:
b4:6d:e8:cc:22:fd:b2:30:de:0e:a1:f3:e3:63:15:6a:6e:8a:
df:c3:50:44:f2:f4:b2:27:10:2f:57:82:bc:5a:20:f8:25:08:
5f:4c:89:30:de:be:5e:4c:94:11:bb:b9:c6:dd:30:ae:83:69:
24:d7:2d:f0:e8:a2:8b:c7:0a:0c:f4:fc:9a:90:55:2c:a2:63:
ea:67:92:86:83:43:81:49:de:76:43:d6:ef:c5:e6:b5:0b:b3:
bc:40:7d:e9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZeR7yQB/Y6aJVSW6WIu7GfSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDgyNzMxMzI0N2M0ODZmZTQzNDgzM2MwOTA4N2EwMGE5MDAz
MDE4NDAwHhcNMjUwNjIxMTAwMDU3WhcNMjUwNjIyMTAwMDU3WjAzMTEwLwYDVQQD
EyhkOWNkODk1ZjIzMGZjMmE4NTc5MWFiN2ExMmJmYTVkOWNhNWY1NDJmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAriwuW3kzsW+GuYeAh0sFtCkOai51
RJuGXKFiKHoeH2J6Ve/3AnemStvxtWBnsaYtDJ3FoK6eSQykTavLwfYmtXpe87cr
F7aEjfO9rK8m7QmAEI2u3I/VWAMnGkWqRafwKWILNcoHr13so+1Q00gm19MSI4DL
EMq1zOPhJL662ioEVyKL5Dt3Dd0q704mPoh5Sck3EmvQXYQ5cr1DM0Nnv2FrJKEv
Qrv8c+K6/grnAYOLIRXvO0h5nWk8tYQ4ywRtDkOAUcTdQqQ8O+DqW0g5Bf2+EtWR
8eDqNG3Ffdp3482gyaTII6ycstOO/ptNFAQI1pNlMiBg6smxkDOz9l5aawIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNnNiV8jD8KoV5GrehK/pdnKX1QvMB8GA1UdIwQY
MBaAFIJzEyR8SG/kNIM8CQh6AKkAMBhAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC84NWIwNDMtMzZkOC00MTM2LTk4MzUt
OGQ0NzcyNTk4MzliLzEvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hZC84NWIwNDMtMzZkOC00MTM2LTk4MzUtOGQ0NzcyNTk4Mzli
LzEvZ25NVEpIeEliLVEwZ3p3SkNIb0FxUUF3R0VBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX8GiqO6y
lak52E1G9oHAlBsv7JEC2tr7Eybvb49O5f8TEB6zKLTelo0v12+kz+1rfoOmK8no
2e7UXpnUvEwoqWl2D/JATnwDwWteY2+RMyEEmr/6yHYoGpmA55oTIFXxE0kftEdR
66PR0p8NXNbvzO+KfhYNnENKXNVbH3LYlPHNE69O96TvugtCTGac3/MHiXcvXL+V
frNrgOmnWmwiT6KbtG3ozCL9sjDeDqHz42MVam6K38NQRPL0sicQL1eCvFog+CUI
X0yJMN6+XkyUEbu5xt0wroNpJNct8Oiii8cKDPT8mpBVLKJj6meShoNDgUnedkPW
78XmtQuzvEB96Q==
-----END CERTIFICATE-----
Generated at Sat Jun 21 12:29:11 2025 by rpki-client